Last night I found my computer was infected with a rogue security program called "Internet Security 2013". It was announcing false positives, hogging resources with a fake svchost process, and redirecting google searches. After running TDSSKiller and Combofix, it looks like I've removed any trace of the rogue program-- at least, there's nothing hogging the cpu or memory, and I'm not being redirected to obvious fake security-related sites.
So here's my problem: when I was running ComboFix, it asked be to de-activate Microsoft Security Essentials. When I tried to open the MSE control panel, I got some generic error window (sorry, I didn't write down what it said). So i decided to uninstall MSE throgh the "add/remove programs" panel. After running ComboFix, I was able to download the legit MSE installer from the microsoft website. I thought I'd be able to reinstall MSE easily, but whe I run the install wizard I get an error message saying the installation can not be completed.
It gives this error code: 0x80070643
I did some searching, and apparently this error happens when you have other anti-virus software installed that conflicts with MSE. I don't have any other AV software, and I thought I uninstalled my old MSE correctly (it no longer shows up in my add/remove programs window). I used this microsoft fixit thing to uninstall Microsoft Security Client, but when I try to instal MSE again I get the same error.
A related problem: when I look in "C:\Program Files\Microsoft Security Client" I see the following subfolders: "Antimalware", "Backpup", "Drivers", and "en-us", but if I try to open any of them I get the error:
C:\Program Files\Microsoft Security Client\Drivers is not accessible.
The file can not be accessed by the system.
So I'm really stumped here. I can't instal my antivirus program because I can't remove my old one. Have I corrupted my install of Security Essentials, or is there possibly still Malware on my system?
Edited by hamluis, 10 May 2013 - 01:12 PM.
Moved from XP to Am I Infected - Hamluis.