Vista browsers fail to open after malware clean

Emachine with Vista sp2
Removed malware with Malewarebytes, Log attached

After removal, all browsers, IE, FF, Chrome, no internet, page can't be displayed. etc.
Network icon next to time,  "Access Local and Internet"
Ping "" OK 4 sent and received
Ping "Could not find host...."

Uninstalled and rebooted Network Adapter from Device Manager
Installed new PCI Network Adapter

Ran ipconfig /release and renew:
copy attached

I then went to the delete registry procedure from an MSMVP site. Deleted the "winsock" and the "winsock2"

Reinstalling TCP/IP from cmd:
netsh int ip reset log.txt
Reseting echo request: failed
access is denied
Reseting interface OK!

netsh winsock reset
The system cannot find the file ..

After this procedure, the Network Connect icon shows "Local only"

I can restore the "local and Internet" in the Network icon by restoring the saved Registry but still does nothing to solve the problem. Only confuse me more.
Attached ipconfig /all after TCP/IP reinstall attempt.

Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Can you check (let's start with IE) if proxy settings are enabled under the connection/LAN tab? Check your network settings and make sure some different IP has not been set statically due to the malware.
cfourkaysAuthor Commented:
Thanks for the quick reply.
No proxies.
I've had that pronlem before. Checked but forgot to post.
cfourkaysAuthor Commented:
Unchecked the ip6 to see if anything happened.

ipconfig /all now has the dreaded, (to me), 169.254.xx.xx ip4 autoconfiguration.
The Subnet is

No  ip6
10 Tips to Protect Your Business from Ransomware

Did you know that ransomware is the most widespread, destructive malware in the world today? It accounts for 39% of all security breaches, with ransomware gangsters projected to make $11.5B in profits from online extortion by 2019.

maybe a startup repair can help  :
Restore the Local and Internet icon and try the following. is one of the IP address' for Google dot CA.  Try entering Google dot CA's IP directly into the address bar of a browser instead of the URL or ping the IP number directly.  If this gets you Google's page or an appropriate response to the ping, you have a DNS problem.  

If not, I would suggest doing a "repair install".  A repair install does NOT change personal data files or installed programs, it only repairs the operating system.  You will need a VISTA SP2 install disc and any updates to SP2 will have to be re-done.  A repair install is done from within Windows, not from booting the install disc.  

I recommend using MSCONFIG to implement a clean boot during the repair install and then re enabling normal start up after the repair is finished, but that is getting ahead of things a little.  See what happens when using an IP address first and we can go from there.
cfourkaysAuthor Commented:
Hi Jim
Entering the ip address in browser does nothing. Trying to ping goes to 4 packets of  "Transmit failed error code 1231.
Entering in in a browser fails.

Couple things I should mention; I have multiple ways to connect and they all fail:
Comcast broadband direct or through a Netgear router
ATT DSL through a Netgear combo router/modem
Florida High Speed Internet off the tower to a Routerboard 750 router

However, when I connect thru a booted UBCD4WIN  I can connect running off the CD. Same with the CD runs of Ubuntu and Knoppix which tells me my physical components are OK.
Now that you know that your physical components are OK, the most expedient way to fix this would be a repair install.

Before performing the repair install, you should set your machine up for a clean boot.

Running your machine from a "clean boot".

Step 1

Click Start, type MSCONFIG in the Start Search box, and then press ENTER.

User Account Control permission

If you are prompted for an administrator password or for a confirmation, type the password, or provide confirmation.

Step 2: Configure Selective Startup options

   1. In the System Configuration Utility dialog box, click Selective Startup on the General tab.
   2. Click to clear the Load Startup Items check box.
      Note The Use Original Boot.ini check box is unavailable.
   3. Click the Services tab.
   4. Click to select the Hide All Microsoft Services check box.
   5. Click Disable All, and then click OK. (Disables all NON Microsoft Services)
   6. When you are prompted, click Restart.

When Windows is up and running again, the clean boot should have kept anything from running that would interfere with the Windows Setup process.  Note that the Setup must be performed from within the Windows OS environment.  Booting from a VISTA Setup disc will not have the desired result.

Insert the VISTA SP2 disc and run the install using the "upgrade" option.  Note that you must use a service pack 2 disc.  SP1 will not do as you will need the same SP as is presently installed since there are differences between VISTA, VISTA SP1 and VISTA SP2 system files.  This process will leave all data files, installed programs and their settings untouched while repairing any operating system issues.  Any updates that have been installed since SP2 will require re-installation via Windows Update.

I have done this with VISTA Ultimate SP2 and even the positioning of all the desktop icons was not changed in spite of the in place upgrade process.
cfourkaysAuthor Commented:
Thanks, Jim
Great set of instructions.
I've done a few of these myself, even on my own Windows 7 Pro.
Don't have an upgrade Vista, or any for that matter.
I'll find one from one of my customers and get back.
here they are  9.75$
disclaimer : i never tried them myself
cfourkaysAuthor Commented:
Thanks nobus,
Checked before I bought.
They are basic recovery discs for System Restore, Repair Boot Menu, etc., not an actual Vista DVD.
Pretty good mix of options, same as my Paragon Rescue and a couple of others.
Won't repair or replace what looks like a corrupt "winsock2" "catalog entries".
They don't look anything like my W-7 entries.
Here's what the Reg entry looks like:
sinc e you posted :
Ping "" OK 4 sent and received
Ping "Could not find host
it looks like the name resolver is not working
did you try ipconfig /flushdns  cmd yet?
more tips :
cfourkaysAuthor Commented:
Did the flush, already. trying to remember all what I did.
Also have FF and Chrome, same problem.
yep - i noticed that
seems a reinstall/update case
cfourkaysAuthor Commented:
Thanks, guys.
You see any problem with using the system recovery?

The owner never made recovery DVD's but it's a eMachine with a recovery partition.
I have everything backed up.

This, perhaps, is the second best option to the one I earlier suggested.

With everything backed up (user data c/w email etc.), the recovery partition will reinstate to an "as purchased" condition.  Any apps installed after purchase will have to be re-installed as well as any updates along with the user's data.

The re-install with a VISTA SP2 disc I suggested previously would save all the apps including ones installed after purchase as well as making the replacement of the user data unnecessary.  You should NOT input in the "Vista license key" or leave "activate online" checked off when doing the "repair install".  Doing so would result in activation issues since the key on the COA sticker is not the same as the embedded license key on the computer.  One OEM will have a singe key that activates the license on thousands of computers.  The stickers may all be different, but not the actual embedded key.
cfourkaysAuthor Commented:
Hi Jim,
I have no problem doing an "Install/Repair", I've done a few of them. XP, Vista, and my own W-7 Pro.
My problem is finding a Vista DVD. Even if I had an orginal, I could slipsytream it with SP2.
My customers and friends still using Vista have the Mfg disk.
Microsoft MSDN/Technet has the ISO for download and publishes the SHA1 code to confirm unaltered authenticity.

For example

Windows Vista with Service Pack 2 (x86) - DVD (English)
Includes: Home Basic; Home Premium; Business-Retail; Ultimate;
3,093.16 (MB)
File Name: en_windows_vista_with_sp2_x86_dvd_342266.iso
Date Posted (UTC): 5/11/2009 8:49:19 AM ISO/CRC: E2AD10F9
SHA1: 25AD9A776503E6A583BEC07879DBCC5DFD20CD6E

Normally to get this download, you must be an active MSDN member.  However, since you have a legitimate license for VISTA, using such an ISO should not be a problem.  Try the following link for some alternate suggested sources of this ISO.

Possible sources for VISTA MSDN / Technet ISO

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
cfourkaysAuthor Commented:
Got the download and it worked. Had to slipstream SP2.

Interesting there are still links to "megaupload".

All OK. This customer's my car AC guy so I have to take care of him.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Internet Protocols

From novice to tech pro — start learning today.