Gizmos Freeware Reviews  

Go Back   Gizmo's Freeware Forum > Freeware Forum > General Computer Support

Closed Thread
 
Thread Tools Display Modes
Old 21. Jul 2013, 11:28 PM   #1 (permalink)
Member
 
Join Date: Jul 2013
Posts: 1
Default recurring issue with admin profiles

Hello;

First time poster. Would welcome comments and suggestions re: ongoing issues with PCs running Windows 7 64 bit OS. I have spent far too much money on new PCs, security programs, remote monitoring services all have claimed problem does not exist. I have used xxxx and have tried MBAM, Comodo, CCleaner, SpyBot S&D, all but SpyBot have been unable to detect issue. SpyBot seemed to detect problem but was unable to fix. Is it paranoia on my part or incompetence on their part?

The first indicator of this recurring problem is usually an attempt to uninstall a program shown in control panel and getting error message stating that the admin profile that I have created has insufficient privileges to uninstall given program. Though the User link in the Control Panel and all superficial UAC account settings do not show any sign of other admin users, the "User" site in the C: drive shows a dozen different admin users. The UAC permissions advanced setting details these admin profiles, universally named CREATOR OWNER, SYSTEM, and ADMINISTRATOR along with some familiar names that I may have used in past but had not created on the PCs I'm currently using. All of these "hidden" admin profiles have "Full Permissions" and "Inherited Permissions". I have been told by the techs at xxxxx, Windows, and xxxxxx that these are Windows admin profiles that are meant to be hidden.

Though that seems credible, the fact that there are programs that I cannot alter, uninstall or delete often with names I do not recognize all have one of these Admin names in the security tab under the properties info. I might let it go at that but the appearance of these admin profiles have usually been followed by more serious problems such as a hijacked browser, a new wireless network name that has substituted the LAN settings I created with a name of "Home 26" or similar. This network will allow access to internet for a while but usually slows speeds way down and eventually will not allow any internet access.

I feel like I have been misled by every PC support company I have enlisted to fix this issue but that sounds as if it reeks of a conspiracy of incompetence or negligence.

This is far from the first forum I have attempted to ask people with greater technical knowledge than my own but these inquiries have rarely elicited a response. This could be due to the wordiness of my posts but I am at al loss of how to describe situation more briefly. Thanks for any help.

Last edited by MidnightCowboy; 22. Jul 2013 at 01:57 AM. Reason: Commercial service references removed
dazed and confused is offline  
Old 22. Jul 2013, 02:03 AM   #2 (permalink)
Site Manager
 
MidnightCowboy's Avatar
 
Join Date: Aug 2008
Location: South American Banana Republic, third bunch from the left
Posts: 15,367
Default

My recommendation is to run HiJackThis and then post the log to one of these specialist forums.

http://www.bleepingcomputer.com/foru...-removal-logs/
http://forums.malwarebytes.org/index.php?showforum=7

http://sourceforge.net/projects/hjt/
__________________
Buy a Hoover and prove technology sucks.
MidnightCowboy is offline  
Old 22. Jul 2013, 02:18 AM   #3 (permalink)
Senior Member
 
Join Date: Oct 2012
Posts: 1,028
Default

Hello dazed and confused, and welcome to the forum.

There are far more knowledgeable persons than I here. Hopefully, one of them will reply to you soon. In the meantime...
Quote:
...serious problems such as a hijacked browser, a new wireless network name that has substituted the LAN settings I created with a name of "Home 26" or similar. This network will allow access to internet for a while but usually slows speeds way down and eventually will not allow any internet access.
I'd say that sounds very serious.

Although you do provide some information about your issue, I think you need to be more specific. For instance, you say...
Quote:
...there are programs that I cannot alter, uninstall or delete often with names I do not recognize all have one of these Admin names in the security tab under the properties info.
...yet you don't actually provide the names of these programs. I feel if you were to provide the names, persons here would be in a better position to advise you. Some of these "programs" may be rogues posing as genuine software for all you know.

And...
Quote:
the "User" site in the C: drive shows a dozen different admin users.
You should be more specific and state the actual path that leads to these "dozen different admin users". For example, is it something like C:\Users?

There's no reason for not disclosing or stating facts like these. It's not as if you were asked to disclose your username or password.

Also, Gizmo's is a freeware site - meaning we don't specialize in malware detection and removal. Again, you say you have asked for help at other forums but was Bleeping Computer one of them? If not, I would suggest you try them. They are very knowledgeable and expert at malware removal. And please try to remember to provide pertinent and specific information, and follow their instructions closely.

Lastly, it appears you are using an admin account in Windows for your everyday computing, including whatever internet activities you engage in. That doesn't sound like you are practicing recommended safe browsing/computing habits. I say this because regardless of whichever anti-malware or AV you use, you cannot expect to not get infected if you are not practicing safe habits. Also, even if a site like Bleeping Computer were to clean your PC, it's likely you'd get infected again if your computing habits don't change for the better. I hope you don't take this as my knocking you but rather as some well-intentioned advice.
Joe A.TT is offline  
Old 22. Jul 2013, 06:15 AM   #4 (permalink)
Site Manager
 
MidnightCowboy's Avatar
 
Join Date: Aug 2008
Location: South American Banana Republic, third bunch from the left
Posts: 15,367
Default

@ dazed and confused:

Your last post has been unapproved because you again mentioned commercial services and products which were edited from your first post, in which we have no interest, and will only serve to attract spam to this thread.

Please follow up the suggested specialist support forums as we are unable to assist further here.
__________________
Buy a Hoover and prove technology sucks.
MidnightCowboy is offline  
Closed Thread

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off



All times are GMT +1. The time now is 01:58 PM.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2021, vBulletin Solutions, Inc.