?
Solved

Windows Firewall options are greyed out

Posted on 2006-11-09
8
Medium Priority
?
4,568 Views
Last Modified: 2013-12-04
A user recently traveled to Asia, and during his trip his laptop started behaving strangely with internet browsing issues and VPN issues.  When he returned, I verifed that his computer was having issues.  For example, the laptop could get onto the internet, but couldn't open any web pages.  I could ping sites all over the Internet but his IE browser would simply not display anything.  DNS was fine, but I noticed his Windows Firewall screen would not allow me to turn it off or on...the radio button options were greyed out and the firewall was set to "on".  There were also a few services that I didn't recognize, which I shut down as well.  His laptop has our Symantec Corporate AV installed on it, so I made sure the virus defs were up to date, and ran a full system scan in safe mode.  Sure enough, it found various spyware and trojans.  I ran two more safe mode scans and then a scan in normal windows and the third safe mode scan came back clean...as did the scan in normal windows.  After Symantec AV cleaned the trojans and sypware, his computer started to operate normally...at least with browsing the Internet.  However, he still has some strange servcies (which are disabled) and his windows firewall is STILL not changable...it's just stuck in the "on" position and I am not able to modify it.  I clicked the advanced tab and requested that the firewall be set back to default, but that still didn't make a difference.

Any thoughts?  Other than to wipe the hard disk and re-install? (which I am planning on doing here in the next day or two).

Thanks.
Jeff
0
Comment
Question by:jbobst
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
  • +2
8 Comments
 
LVL 44

Expert Comment

by:zephyr_hex (Megan)
ID: 17909836
symantec AV won't catch the majority of spyware out there... although the issues you are mentioning sound more like virus than spyware.

it's possible that the malware has damaged system files.  try sfc scannow or repair install.
0
 
LVL 47

Expert Comment

by:rpggamergirl
ID: 17910858
These keys are probably created by the virus:

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
"EnableFirewall"=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
"EnableFirewall"=dword:00000000


values set to zero --> disables it and it greys out the buttons so it can not be changed
values set to 1      --> enables it and greys out the buttons so that it can not be changed
The value has to be removed so that the firewall is not set either way and he has control over it.



OR:
Also check here:
http://windowsxp.mvps.org/resetfwpol.htm
0
 
LVL 47

Accepted Solution

by:
rpggamergirl earned 200 total points
ID: 17910865
A hijackthis log would have been a good idea and can tell us good info about the virus expecially the bad service, but if you disabled those services they won't show up in the log.

Please download HijackThis 1.99.1
http://www.cyberanswers.org/forum/uploads/HijackThis1991.exe
http://danborg.org/spy/hjt/alternativ.exe
Open Hijackthis, click "Do a system scan and save a logfile" don't fix anything yet.

Then upload the logs to any hosting sites,
or go to the below link and login using your Experts-Exchange username and password.
http://www.ee-stuff.com
Click on "Expert Area" tab
type or paste the link to your Question
"Browse" your pc to the location of your Hijackthis log and click "Upload"
Copy the resulting "url" and post it back here.

OR: paste the log to either of these sites:
1. http://www.rafb.net/paste/
then at the bottom left corner click "paste"
Copy the address/url and post it here.

2. or at --> http://www.hijackthis.de/ 
and click "Analyse", click "Save".  Then post the link to the saved list here.
0
Get real performance insights from real users

Key features:
- Total Pages Views and Load times
- Top Pages Viewed and Load Times
- Real Time Site Page Build Performance
- Users’ Browser and Platform Performance
- Geographic User Breakdown
- And more

 
LVL 22

Assisted Solution

by:orangutang
orangutang earned 300 total points
ID: 17911966
Well, when you get our problem fixed, I suggest you disable the Windows firewall and download and install the free version of ZoneAlarm(http://www.zonelabs.com/store/content/company/products/znalm/freeDownload.jsp) instead.
0
 
LVL 66

Expert Comment

by:johnb6767
ID: 17942252
Try resetting the firewall also....

netsh firewall reset


Then see if you can disable it...

Are the FW options greyed out , or just not accepting changes...??
0
 
LVL 66

Expert Comment

by:johnb6767
ID: 17942274
NM the last part, just saw the question again.....(is it time to go home yet?????)
0
 
LVL 1

Author Comment

by:jbobst
ID: 17957968
Sorry I never did a highjack this log.  I ended up just re-installing windows, as that is quickest solution.  Thanks for the help.
0
 
LVL 22

Assisted Solution

by:orangutang
orangutang earned 300 total points
ID: 17958386
Make sure you install ZoneAlarm free and Disable the Windows Firewall.
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

As I write this article, I am finishing cleanup from the Qakbot virus variant found in the wild on April 18, 2011.  It was a messy beast that had varying levels of infection, speculated as being dependent on how long it resided on the infected syste…
The term "Bad USB" is a buzz word that is usually used when talking about attacks on computer systems that involve USB devices. In this article, I will show what possibilities modern windows systems (win8.x and win10) offer to fight these attacks wi…
If you’ve ever visited a web page and noticed a cool font that you really liked the look of, but couldn’t figure out which font it was so that you could use it for your own work, then this video is for you! In this Micro Tutorial, you'll learn yo…
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…
Suggested Courses
Course of the Month12 days, 6 hours left to enroll

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question