Vista cannot resolve names to IPs after virus

I am working on a vista pc which was badly infected. I scanned the hard drive as a slave using Malwarebytes, Comodo, and Bitdefender online scanner. Since sticking the hard dive back in the machine and booting it up I have also used Combofix (after realising the there was a name resolution issue). After that I manually updated the definitions in Malwarebytes (as no program can download updates) but the scan came up clean.

When I check the IP configuration it is all fine. I can connect to the router by IP address and can open up a website such as Google using their IP address but not the name.

I am guessing that one of the viruses has done the damage but cannot find out what!

I can post a Hijackthis log if anyone thinks it would help - please let me know.

Any suggestions would be appreciated.

TIA
WhoIsThatChildAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Frosty555Commented:
The hijackthis log will help, but these are the major things to check:

1) Check your HOSTS file in C:\Windows\system32\drivers\etc. You may need to show hidden files and folder in the explorer options to look at it. Some viruses will redirect many common search engines to their own malicious "spoof" pages.

2) Check if your proxy settings. Open Internet Explorer, and go to Tools->Interent Options->Connections->Lan Settings, ensure that "Use a proxy server" is unchecked. In Firefox go to Tools->Options->Advanced->Network->Settings, and ensure that "No proxy server" or "Use System Settings" is selected. Some malware will run as a local proxy server, and setup your proxy to use 127.0.0.1, this lets the malware inject search results / hijack your webpages

3) Check your DNS settings are correct. You can look at them by going to a command prompt window as an Administrator, and type "ipconfig /all", then look for your network device and the DNS settings. It should be the same as the DNS settings on your router, or to be safe you can set it to OpenDNS or Google DNS:
   208.67.222.222     or   8.8.8.8

The HijackThis logs will reveal all three of these things, so if you can post it here it will help.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
WhoIsThatChildAuthor Commented:
I feel such a dumb-dumb!! It was the IP configuration, specifically the DNS!!

Thanks for your help
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Laptops Notebooks

From novice to tech pro — start learning today.