Your Rpt/Dead Vista

Responding to Major Attitude in new thread, as instructed. Sorry, just learning my way around your Forum...

Yes, I have booted in Safe Mode several times to try to follow your Malware Removal Guide...and then I lost all access. It's taken AT&T 3 solid days, (resetting my winsock over and over by Tier 2 Techs) to get me back on line for more than an hour. Finally, we just got back on by using an old dsl modem I had & then reset the winsock again. I'm crossing my fingers...and will type VERY fast...
1. Remove Unused Programs: Suspicious. Have very few programs listed anymore in Vista, Control Panel, Programs. Find the missing ones in Vista welcome screen but most are "folders" and not icons. Unable to remove any programs. Either system hangs or get popup about "no permission".

Checked Programs with Updates and found two recently added: one as a program, "Intel(R)PRO Network Connections 12.1.1.11.0" on 3/14; and one as an update but with no KB number on 3/23, "Visual C++2008X86Runtime-V 9.0.30729.01".

My Device Manager says my current network adapter is Intel(R)81562V-2 (AT&T Tech had to reactivate it today.) My Problems & Solutions had a popup last week stating I had a hardware compatibility problem with network adapter stating mine was a generic and was listed as , "ADM851X USB To Fast Ethernet Adapter...". This was same time I got tray warnings about attempts to install a USB flash drive (not me...). I also found a recent download about an Intel Network Director from Argon???

2&3. Clean Hard Drive and Remove Invalid Registry Entries: Can't download CCleaner, "This download has been blocked by your Security Zone Policy." I have made no changes in IE and use Firefox. The security options look good on both. My Internet Options were checked by AT&T and look OK. Don't know what this is. (Tried again on 3/31 and all my downloads of the CCleaner, etc., do is save the program icon to my desktop and then I cannot do an install. Never get a Run option window.)

4. Clean up Startup Items. No unusual tray icons (except two on my speakers discussed below) but found 7 quickstart launches (Show Desktop, Switch Between Windows, Mozilla browser, Launch Internet Explorer, MediaPlayer, AdAware and Windows Defender). I never use quick launches, didn't put these there and can't delete them without, "Are you sure you want to uninstall this program?".

Went to Windows Defender, Software Explorer, grouped programs by Startup & All Users and found 3 registries and their various programs : Registry:All Users, lists only my HP all-in-one printer; Registry: Current User, lists only a Media Center Tray Applet. (Haven't been able to find my Media Center for a while!....); and Registry: Local Machine. This is where most but not all of my programs are listed, again including, HP digital imaging all-in-one. It also lists Realtek HD Audio Control Mgr but it's install date precedes both my computer's build date and the last recovery date and it did not ship with my OS. ( I have a tray icon on it and also for my LCD built-in speakers, Vol. 55, Realtek High Definition Audio...?) In addition, have Microsoft Userinit Logon Application (recently installed) and THREE separate programs named Microsoft Windows host Process (Rundll32) with the only difference being their start up values.

5. Defrag Hard Drive. My Windows version hangs and can't download the IObit Smart Defrag as explained above.

6. Run Malware Scanner: Can't download CCleaner.

That's it - for the Malware Cleaner Guide.

AT&T said to tell you (yesterday), some kind of problem was preventing my TCP/IP from stacking and about having to reset the netsh winsock too many times.

Sorry for the TMI on my posts. Knew I would be losing connection any time and wanted to provide as much info as possible as fast as possible. Always thought it best to tell pro's what I DO know and then let them pick out the pertinent points.

Also, guess I did not explain my situation sufficiently. I do not expect to clean my computer at this point My Qestion: What can I do to STOP getting hijacked? I have used all of the recommended firewalls (at diffeent times), anti-virus, anti-spyware,etc., programs and within weeks, they become corrupted - as is my Comodo, avast, AdAware and Defender are now. I scan almost daily, defrag and backup as recommended and rarely get an opportunity to use email or do searches because by the time I get the programs installed and updated - I'm hijacked!

Sorry - but most of this is also posted in the original thread. Didn't understand, "new thread" and couldn't respond directly to you as your reply suggested. Now can't delete my last post in old thread. Whoops...

Anyway, thank you for any guidance. Scared to power down my computer so would appreciate an early response. (Unplugged dsl modem and "locked" computer last night.) BOUT2GIVUP

 

A Web Printer Opener to Hijacks?

Appears on-going hijacks to someone's VPN may be coming through my all-in-one printer/scanner/copier because of the web printer option - or so says HP. Had already purchased a new Canon 4 in 1 (printer, copier, scanner & fax) but now wondering if such fancy hardware is only a thoroughfare to hijackers. After I complete a recovery, will need to install printer. Can I safely turn off "web printing" on my HP or Canon or should I just go back to my trusty deskjet?