Hi All, I'm running a wireless Intranet in my home (including a VoIP box for our phones)that I think has been compromised by a virus and/or malware and/or a frigging Hacker! Here is my config: Recently changed from Verizon FiOS to ClearWire ISP so we could have wireless 4G on our laptop. Incoming access starts at a "black box wireless" Motorola tower switch. A patch runs from it to the VoIP box. The VB only has one "wired" port and I have more than one wired system, so I daisied it to a wireless G router with 4 wired ports. off that I have two wired desktop systems, both running XP, SP2. First is a HP Pav. P4, 2.03GHz, 1/2GB DDR RAM. It is our file, printing, Skype, fax "workstation server" (since it's not really a server and doesn't control a domain) because it has the most storage and most USB ports w/o using a USB hub. 2nd machine is a Intel dual core 3GHz, 2GB DDR2 RAM and is becoming our entertainment, gaming system. 3rd is a Toshiba Satellite LT w/built-in wi-fi and also a wi-max 4G motorola usb modem. We are running Vista on that (3GHz, 3GB 866GHz RAM -not sure what kind- and plenty of storage. they are all part of a workgroup and all can see each other and access the file archive (and 1TB backup external HDD) on the Pav and each other. I realized after it was too late that my network was wide open for a couple weeks because, even though I was running Sys. Mech. Pro on every machine, the broadband G router had the default settings still (ip, name, passwords, etc) until I did enough research into wireless networking to lock things down. Today I noticed on the Vista laptop RPC server errors on boot and also WinSecRegErrors and Iolo antivirus wiped out ("cannot start DVPAPI.exe, RPC server is unavailable and i3esh has stopped working. I went in to some of the permissions of the Windows folders (and program folders) and there are scores of users, groups and services that are listed (this is all on the vista laptop), some that don't include my usr name, Administrator or the people that use my network. Most still have "everyone" and "administratorS" though. One group is even called anonymous login (???) I am finding that someone, something did or is locked or locking me out of my system. Is there a freeware program out there that will tell me the very mininum of the users groups and services that should be running on my small home network? I am slowly trying to manually go in and just keep administrator, administratorS, myself, and the only other two people (family members) having full control on all files, drives and folders. I don't see how anyone can get into the wireless g router now that I know how to set it up, let alone through System Mechanic pro's FW. Also, I put diceware passwords (112.5bit encrypt.) on pretty much everything. The next thing I might try is installing avast or norton sec. suite either over the top of SMP or uninstall that and then put something else on. Windows Defender can run and says there is no malware anywhere... Please, if someone can help me understand what might be going on, I would really appreciate it! Thanks in advance, Ckirt2