No IP after cleaning up FBI Scam

Posted on 2013-10-24
Last Modified: 2016-11-23
After cleaning up an FBI Scam, I cannot get an IP address to save my!

Also, I cannot turn the Windows Firewall back on.

I've cleaned several computers with this fbi scam, but this has been a chore.

I've got a Dell Inspiron Laptop with Win7 64bit.  

To repair the virus I start with Rogue Killer, then MalwareBytes Rootkit removal (and there were several) then I uninstall any malware on the computer that I can possibly find, remove add ons run MBytes full malware scan and then Ccleaner including the Registry cleaner.

I've disabled 3rd party services and Startup programs.
Tried Safe Mode with Networking
Tried reinstalling Ethernet drivers

What else can I do?

Thanks in advance!

Phil W.
Question by:philw3995
  • 4
  • 3
  • 2
  • +1

Expert Comment

by:Bird Dog
ID: 39597139
The last time I removed this virus it ran in safe mode as well. I ended up killing it in safemode by changing the name of process explorer .exe file and shutting the virus down. Then I could remove the virus manually and clean the startup with autoruns.
LVL 24

Expert Comment

ID: 39597361
FWIW: The few times I removed this virus from friends' PCs were by booting up in safe mode with command prompt and typing rstrui.exe to do system restore to a point before the virus.  Then scanning with MBAM -- just to make sure. Worked each time (except when a system restore point was unavailable).

Author Comment

ID: 39599326
On the surface the virus is gone.  I'm not getting an ip address and windows firewall is not working.

Author Comment

ID: 39599359
Really surprised with the lack of technicians helping out here.  

Going to restore to factory, as much as I hate to!

Expert Comment

ID: 39600487
The difficult part is there is a risk with running a bajillion fixers.... while they have benefits and I use all of them that you named you run the risk of deleting data that is necessary for system functionality especially when registry keys have been deleted. I would be led to believe this is a possibility.

Restoring is going to be the quickest most efficient and reliable method to get up and running.
How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline


Expert Comment

ID: 39600757
Microsoft does have a FixIt tool here ->
and it runs through diagnosing the networking issues... it may repair damaged files.

You could also try a scandisk repair - chkdsk /r ran in the administrative command prompt...

Accepted Solution

philw3995 earned 0 total points
ID: 39601888
I ran the Win7 disc and chose to Upgrade to do a Repair, which actually worked on this computer...haven't had success with that option much, usually says OS is newer than CD.

Anyway, after the upgrade the computer went into repair .Net Framework which I'm assuming was the problem with the Internet and Windows Firewall not working.

I'm thinking, mebaby333's idea of running MS FixIt may have worked.

After, I got it working MS Updates messed up and then reversed the procedure.  I've changed the settings on the Updates and have been installing them two at a time.

Thanks for all of your help!

Expert Comment

ID: 39601934
Glad to hear you got it fixed :)
LVL 24

Expert Comment

ID: 39602647
Great. You fixed it. :-)

Author Closing Comment

ID: 39623810
My solution for Repairing/Upgrading Windows 7 fixed the issue with not having an IP address after removing the FBI virus.  

It also triggered the repair of .Net Framework and Windows Updates.

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Suggested Solutions

These are on the increase and getting more common these days. Users who use the Google search engine may complain of having their search redirected to unwanted sites, regardless of what browser is used. This happens when the system is infected with…
Change your it now!. Probably the easiest point of access to your account is through guessing your password. If your password is guessable, do change it now. If not for your sake but for everyone else in your friends list. Remember …
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor ( If you're interested in additional methods for monitoring bandwidt…
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now