Ok im going to run down a list for you of the problems.
I got Vista Ultimate.

Unable to install anything using the windows installer, it says it not properly installed or other errors. I tried restarting it in services but it will not start, it says I do not have permission no matter what account I try it in.

Cannot get permissions to erase many things and uninstall programs, Ive tried everything I know even making the secret Administrator account through cmd.

Cannot open about 75% of all webpages ive tried. I cannot reach gmail so I cant even check my email to confirm my account here. Thank goodness there is this guest account so I can post this. The only search engine that I can get to work is Alexa.com (makes you understand why google is #1 when you are forced to use these things)

when I search for files in Windows when I hit the Search button often some ridiculous ad pops up in ie (I dont use ie only firefox but I cannot load firefox webpages either). I've tried locating my host file but either the search hangs, locates nothing, or a popup happens.

Windows update in live one care will not go on automatic updates. In the security center it syas its on then in another section it says its off. I try to turn it on and it says it is for like 5 mins then it turns off.

Windows Defender will not stay activated to monitor things in the background. It will stay on (or make me think it is) for 5 mins and turn off. I cannot activate it in services.

When I go to the user management (something like that) and select update or change user accounts ( Im doing this to grant privileges) it wont load. Every 5 times I click it or so a popup then is triggered in IE.

My Uniblue on access control wil not work ( its like windows defender).

avast! Antivirus found:

Win32:Delf-KAL [trj] connector.exe
Win32:Rootkit-gen [Rtk] stl.exe
BV:FormatC-E [Trj]
Win32:Delf-Kal [Trj] connector.exe (twice in the same spot)


As you can see im in a real pickle, this thing is just insidious and ive wasted just over 10 hours fighting it. Please someone help meee!!


btw, I got a hijack this log as well:

Staff edit:Log removed

I think it has something to do with those rundll32's with strange names. They change every bootup and they just reappear if they are deleted in the system32 folder. They are also always on the top of the just modified list in the folder. winsock is also suspicious to me. I consider these things suspicious because they were never running before 2 days ago and now I have a tonne of these rundll32's running in the taskmanager.

You have posted in the wrong forum - only experts in the HJT forum can read your HJT log. I strongly recommend you run through our Malware Removal and Prevention procedure.

It is quite possible your problem will have gone by the time you finish going through that procedure. However, if you need to post your HiJackThis logs then please read the instructions at the top of this page and follow these instructions before posting. One of our trained 1st Responders or Security Experts will be along help you.

Please note that you need to be a registered member of CastleCops to post for help in the HJT forum.
(Registering is free).

I have locked this thread to prevent you receiving unqualified advice about your log. If you have any questions about running the programs recommended in the procedure then please create a new thread and we can run through it with you.