also @ TechSpot: Apple's iOS 7 to be "black, white and flat all over"

Aggressive, unremovable rootkit infection

Discussion in 'Virus and Malware Removal' started by videoart, Dec 17, 2011.

Post New Reply
Page 2 of 4

  1. videoart Newcomer, in training Posts: 40

    Still getting an Error 720, so I can't connect to run the ESET online scan or apply the IE, Flash and Java updates...
    videoart, Dec 19, 2011
    #21

  2. Broni Malware Annihilator Posts: 39,391   +177

    OK, you said you had a problem with Windows firewall.
    When exactly did you loose internet connection?
    What is the exact error?
    Broni, Dec 19, 2011
    #22

  3. videoart Newcomer, in training Posts: 40

    I lost my connection just prior to seeking help here.

    This is the Firewall warning:

    Windows Firewall settings cannot be displayed because the associated service is not running. Do you want to start the Windows Firewall/Internet Connection Sharing (ICS) service?

    I click "yes", then get the following:

    Windows cannot start the Windows Firewall/Internet Connection Sharing (ICS) service.
    videoart, Dec 19, 2011
    #23

  4. Broni Malware Annihilator Posts: 39,391   +177

    Please download Farbar Service Scanner and run it on the computer with the issue.
    • Press "Scan".
    • It will create a log (FSS.txt) in the same directory the tool is run.
    • Please copy and paste the log to your reply.
    Broni, Dec 19, 2011
    #24

  5. videoart Newcomer, in training Posts: 40

    This is the net connection warning:

    Error 720: A connection to the remote computer could not be established. You might need to change the network settings for this connection. For further assistance, click More Info or search Help and Support Center for this error number.
    videoart, Dec 19, 2011
    #25

  6. Broni Malware Annihilator Posts: 39,391   +177

    Read my previous reply.
    Broni, Dec 19, 2011
    #26
     

  7. videoart Newcomer, in training Posts: 40

    Farbar Service Scanner
    Ran by Chris Wright (administrator) on 19-12-2011 at 20:14:05
    Microsoft Windows XP Professional Service Pack 2 (X86)
    ********************************************************

    Service Check:
    ==============
    Dhcp Service is not running. Checking service configuration:
    The start type of Dhcp service is OK.
    The ImagePath of Dhcp service is OK.
    The ServiceDll of Dhcp service is OK.

    Dnscache Service is not running. Checking service configuration:
    The start type of Dnscache service is OK.
    The ImagePath of Dnscache service is OK.
    The ServiceDll of Dnscache service is OK.

    Tcpip Service is not running. Checking service configuration:
    The start type of Tcpip service is OK.
    The ImagePath of Tcpip service is OK.

    IpSec Service is not running. Checking service configuration:
    Checking Start type: Attention! Unable to open IpSec registry key. The service key does not exist.
    Checking ImagePath: Attention! Unable to open IpSec registry key. The service key does not exist.


    File Check:
    ===========
    C:\WINDOWS\system32\svchost.exe
    [2004-08-03 16:56] - [2004-08-03 16:56] - 0014336 ____A (Microsoft Corporation) 8F078AE4ED187AAABC0A305146DE6716

    C:\WINDOWS\system32\rpcss.dll
    [2006-08-15 15:21] - [2006-08-15 15:21] - 0398848 ____A (Microsoft Corporation) B4432F04B0507F332AA6232AB35A3233

    C:\WINDOWS\system32\services.exe
    [2004-08-03 16:56] - [2004-08-03 16:56] - 0108032 ____A (Microsoft Corporation) C6CE6EEC82F187615D1002BB3BB50ED4

    C:\WINDOWS\system32\dhcpcsvc.dll
    [2006-08-15 15:21] - [2006-08-15 15:21] - 0112128 ____A (Microsoft Corporation) 3F15A1DBD86F7BDAF404648282D11ECE

    C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
    C:\WINDOWS\system32\Drivers\netbt.sys
    [2004-08-03 15:14] - [2004-08-03 15:14] - 0162816 ____A (Microsoft Corporation) 0C80E410CD2F47134407EE7DD19CC86B

    C:\WINDOWS\system32\Drivers\tcpip.sys
    [2006-08-15 15:22] - [2006-08-15 15:22] - 0360576 ____A (Microsoft Corporation) B2220C618B42A2212A59D91EBD6FC4B4

    C:\WINDOWS\system32\Drivers\ipsec.sys
    [2004-08-03 15:14] - [2004-08-03 15:14] - 0074752 ____A (Microsoft Corporation) 64537AA5C003A6AFEEE1DF819062D0D1

    C:\WINDOWS\system32\dnsrslvr.dll
    [2004-08-03 16:56] - [2004-08-03 16:56] - 0045568 ____A (Microsoft Corporation) 7379DE06FD196E396A00AA97B990C00D


    Connection Status:
    ==================
    Localhost is blocked.
    There is no connection to network.
    Attempt to access Google IP returned error: Other errors
    Attempt to access Yahoo IP returend error: Other errors

    **** End of log ****
    videoart, Dec 19, 2011
    #27

  8. videoart Newcomer, in training Posts: 40

    I'm guessing my problems are now out of the scope of what's handled here--can you recommend another forum where I can get the internet issue resolved?
    videoart, Dec 20, 2011
    #28

  9. Broni Malware Annihilator Posts: 39,391   +177

    We can try to handle it here.

    It looks like you have one registry key missing.
    Let's see....

    Please download SystemLook from one of the links below and save it to your Desktop.
    Download Mirror #1
    Download Mirror #2
    64-bit users go HERE
    • Double-click SystemLook.exe to run it.
    • Vista\Win 7 users:: Right click on SystemLook.exe, click Run As Administrator
    • Copy the content of the following box and paste it into the main textfield:
      Code:
      :reg
HKEY_LOCAL_MACHINE\system\CurrentControlSet\Services\ipsec /s
    • Click the Look button to start the scan.
    • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
    Note: The log can also be found on your Desktop entitled SystemLook.txt
    Broni, Dec 20, 2011
    #29

  10. videoart Newcomer, in training Posts: 40

    SystemLook 30.07.11 by jpshortstuff
    Log created at 22:37 on 20/12/2011 by Chris Wright
    Administrator - Elevation successful

    ========== reg ==========

    [HKEY_LOCAL_MACHINE\system\CurrentControlSet\Services\ipsec]
    (Unable to open key - key not found)

    -= EOF =-
    videoart, Dec 20, 2011
    #30

  11. Broni Malware Annihilator Posts: 39,391   +177

    Following steps involve registry editing. Please create new restore point before proceeding!!!
    How to:
    XP - http://support.microsoft.com/kb/948247
    Vista and Seven - http://www.howtogeek.com/howto/wind...tore-point-for-windows-vistas-system-restore/

    Download XP.zip file from here: http://www.smartestcomputing.us.com/files/download/9-registry-network-keys/
    Unzip the file.
    You'll find six files inside.
    Right click on ipsec.reg file, click "Merge".
    Allow registry merge.

    Restart computer and let me know how it goes.
    Broni, Dec 20, 2011
    #31

  12. videoart Newcomer, in training Posts: 40

    Still the Error 720 message...No internet connection possible.
    videoart, Dec 20, 2011
    #32

  13. Broni Malware Annihilator Posts: 39,391   +177

    Post new Farbar Service Scanner log.
    Broni, Dec 20, 2011
    #33

  14. videoart Newcomer, in training Posts: 40

    Farbar Service Scanner
    Ran by Chris Wright (administrator) on 20-12-2011 at 22:52:29
    Microsoft Windows XP Service Pack 2 (X86)
    ********************************************************

    Service Check:
    ==============
    Dhcp Service is not running. Checking service configuration:
    The start type of Dhcp service is OK.
    The ImagePath of Dhcp service is OK.
    The ServiceDll of Dhcp service is OK.

    Dnscache Service is not running. Checking service configuration:
    The start type of Dnscache service is OK.
    The ImagePath of Dnscache service is OK.
    The ServiceDll of Dnscache service is OK.

    Tcpip Service is not running. Checking service configuration:
    The start type of Tcpip service is OK.
    The ImagePath of Tcpip service is OK.


    File Check:
    ===========
    C:\WINDOWS\system32\svchost.exe
    [2004-08-03 16:56] - [2004-08-03 16:56] - 0014336 ____A (Microsoft Corporation) 8F078AE4ED187AAABC0A305146DE6716

    C:\WINDOWS\system32\rpcss.dll
    [2006-08-15 15:21] - [2006-08-15 15:21] - 0398848 ____A (Microsoft Corporation) B4432F04B0507F332AA6232AB35A3233

    C:\WINDOWS\system32\services.exe
    [2004-08-03 16:56] - [2004-08-03 16:56] - 0108032 ____A (Microsoft Corporation) C6CE6EEC82F187615D1002BB3BB50ED4

    C:\WINDOWS\system32\dhcpcsvc.dll
    [2006-08-15 15:21] - [2006-08-15 15:21] - 0112128 ____A (Microsoft Corporation) 3F15A1DBD86F7BDAF404648282D11ECE

    C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
    C:\WINDOWS\system32\Drivers\netbt.sys
    [2004-08-03 15:14] - [2004-08-03 15:14] - 0162816 ____A (Microsoft Corporation) 0C80E410CD2F47134407EE7DD19CC86B

    C:\WINDOWS\system32\Drivers\tcpip.sys
    [2006-08-15 15:22] - [2006-08-15 15:22] - 0360576 ____A (Microsoft Corporation) B2220C618B42A2212A59D91EBD6FC4B4

    C:\WINDOWS\system32\Drivers\ipsec.sys
    [2004-08-03 15:14] - [2004-08-03 15:14] - 0074752 ____A (Microsoft Corporation) 64537AA5C003A6AFEEE1DF819062D0D1

    C:\WINDOWS\system32\dnsrslvr.dll
    [2004-08-03 16:56] - [2004-08-03 16:56] - 0045568 ____A (Microsoft Corporation) 7379DE06FD196E396A00AA97B990C00D


    Connection Status:
    ==================
    Localhost is blocked.
    LAN connected.
    Attempt to access Google IP returned error: Other errors
    Attempt to access Yahoo IP returend error: Other errors

    **** End of log ****
    videoart, Dec 20, 2011
    #34

  15. Broni Malware Annihilator Posts: 39,391   +177

    That looks good now.

    Download Bootkit Remover to your Desktop.

    • Unzip downloaded file to your Desktop.
    • Double-click on boot_cleaner.exe to run the program (Vista/7 users,right click on boot_cleaner.exe and click Run As Administrator).
    • It will show a Black screen with some data on it.
    • Right click on the screen and click Select All.
    • Press CTRL+C
    • Open a Notepad and press CTRL+V
    • Post the output back here.

    ============================================================

    Please download MiniToolBox and run it.

    Checkmark following boxes:
    • Report IE Proxy Settings
    • Report FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Devices
    • List Users, Partitions and Memory size
    Click Go and post the result.
    Broni, Dec 21, 2011
    #35

  16. videoart Newcomer, in training Posts: 40

    Bootkit Remover
    (c) 2009 Esage Lab
    www.esagelab.com

    Program version: 1.2.0.1
    OS Version: Microsoft Windows XP Professional Service Pack 2 (build 2600)

    System volume is \\.\C:
    \\.\C: -> \\.\PhysicalDrive0 at offset 0x00000000`00007e00
    Boot sector MD5 is: 6def5ffcbcdbdb4082f1015625e597bd

    Size Device Name MBR Status
    --------------------------------------------
    111 GB \\.\PhysicalDrive0 OK (DOS/Win32 Boot code found)


    Done;
    Press any key to quit...
    videoart, Dec 21, 2011
    #36

  17. videoart Newcomer, in training Posts: 40

    MiniToolBox by Farbar
    Ran by Chris Wright (administrator) on 20-12-2011 at 23:05:37
    Microsoft Windows XP Professional Service Pack 2 (X86)

    ***************************************************************************

    ========================= IE Proxy Settings: ==============================

    Proxy is not enabled.
    No Proxy Server is set.

    ========================= FF Proxy Settings: ==============================

    "network.proxy.http", "127.0.0.1"
    "network.proxy.http_port", 60667
    "network.proxy.type", 0
    ========================= Hosts content: =================================

    127.0.0.1 localhost

    ========================= IP Configuration: ================================

    1394 Net Adapter = 1394 Connection (Connected)
    Intel(R) PRO/100 VE Network Connection = Local Area Connection (Media disconnected)
    Intel(R) PRO/Wireless 3945ABG Network Connection = Wireless Network Connection (Media disconnected)


    # ----------------------------------
    # Interface IP Configuration
    # ----------------------------------
    pushd interface ip



    popd
    # End of interface IP configuration




    Windows IP Configuration



    An internal error occurred: The request is not supported.



    Please contact Microsoft Product Support Services for further help.



    Additional information: Unable to query host name.

    Server: UnKnown
    Address: 127.0.0.1

    Ping request could not find host google.com. Please check the name and try again.

    Server: UnKnown
    Address: 127.0.0.1

    Ping request could not find host yahoo.com. Please check the name and try again.

    Server: UnKnown
    Address: 127.0.0.1

    Ping request could not find host bleepingcomputer.com. Please check the name and try again.

    Unable to contact IP driver, error code 2,

    ========================= Winsock entries =====================================

    Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
    Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog5 04 C:\Windows\System32\nwprovau.dll [144384] (Microsoft Corporation)
    Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 05 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
    Catalog9 18 C:\Windows\system32\rsvpsp.dll [90112] (Microsoft Corporation)
    Catalog9 19 C:\Windows\system32\rsvpsp.dll [90112] (Microsoft Corporation)

    ========================= Event log errors: ===============================

    Application errors:
    ==================
    Error: (12/20/2011 10:54:19 PM) (Source: JavaQuickStarterService) (User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/20/2011 10:47:04 PM) (Source: JavaQuickStarterService) (User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/20/2011 10:37:21 PM) (Source: JavaQuickStarterService) (User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/20/2011 04:26:16 PM) (Source: JavaQuickStarterService) (User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/20/2011 04:21:56 PM) (Source: JavaQuickStarterService) (User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/19/2011 07:57:34 PM) (Source: JavaQuickStarterService) (User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/19/2011 07:45:25 PM) (Source: JavaQuickStarterService) (User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/19/2011 07:08:49 PM) (Source: JavaQuickStarterService) (User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/19/2011 05:04:06 PM) (Source: JavaQuickStarterService) (User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/19/2011 04:46:43 PM) (Source: JavaQuickStarterService) (User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)


    System errors:
    =============
    Error: (12/20/2011 11:05:38 PM) (Source: Service Control Manager) (User: )
    Description: The TCP/IP Protocol Driver service failed to start due to the following error:
    %%2

    Error: (12/20/2011 10:37:35 PM) (Source: Service Control Manager) (User: )
    Description: The Network Location Awareness (NLA) service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:
    %%1075

    Error: (12/20/2011 10:37:35 PM) (Source: Service Control Manager) (User: )
    Description: The TCP/IP Protocol Driver service depends on the following nonexistent service: IPSec

    Error: (12/20/2011 10:37:35 PM) (Source: Service Control Manager) (User: )
    Description: The Network Location Awareness (NLA) service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:
    %%1075

    Error: (12/20/2011 10:37:35 PM) (Source: Service Control Manager) (User: )
    Description: The TCP/IP Protocol Driver service depends on the following nonexistent service: IPSec

    Error: (12/20/2011 10:37:35 PM) (Source: Service Control Manager) (User: )
    Description: The Network Location Awareness (NLA) service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:
    %%1075

    Error: (12/20/2011 10:37:35 PM) (Source: Service Control Manager) (User: )
    Description: The TCP/IP Protocol Driver service depends on the following nonexistent service: IPSec

    Error: (12/20/2011 10:37:27 PM) (Source: Service Control Manager) (User: )
    Description: The following boot-start or system-start driver(s) failed to load:
    Tcpip

    Error: (12/20/2011 10:37:27 PM) (Source: Service Control Manager) (User: )
    Description: The Windows Firewall/Internet Connection Sharing (ICS) service terminated with the following error:
    %%2

    Error: (12/20/2011 10:37:26 PM) (Source: Service Control Manager) (User: )
    Description: The Universal Plug and Play Device Host service depends on the SSDP Discovery Service service which failed to start because of the following error:
    %%0


    Microsoft Office Sessions:
    =========================
    Error: (12/20/2011 10:54:19 PM) (Source: JavaQuickStarterService)(User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/20/2011 10:47:04 PM) (Source: JavaQuickStarterService)(User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/20/2011 10:37:21 PM) (Source: JavaQuickStarterService)(User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/20/2011 04:26:16 PM) (Source: JavaQuickStarterService)(User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/20/2011 04:21:56 PM) (Source: JavaQuickStarterService)(User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/19/2011 07:57:34 PM) (Source: JavaQuickStarterService)(User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/19/2011 07:45:25 PM) (Source: JavaQuickStarterService)(User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/19/2011 07:08:49 PM) (Source: JavaQuickStarterService)(User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/19/2011 05:04:06 PM) (Source: JavaQuickStarterService)(User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)

    Error: (12/19/2011 04:46:43 PM) (Source: JavaQuickStarterService)(User: )
    Description: Unable to create JQS API server: bind() failed (Socket error 10050)


    ========================= Devices: ================================

    Name: Modem Device on High Definition Audio Bus
    Description: Modem Device on High Definition Audio Bus
    Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Manufacturer:
    Service:
    Problem: : The drivers for this device are not installed. (Code 28)
    Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

    Name: Base System Device
    Description: Base System Device
    Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Manufacturer:
    Service:
    Problem: : The drivers for this device are not installed. (Code 28)
    Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

    Name: Base System Device
    Description: Base System Device
    Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Manufacturer:
    Service:
    Problem: : The drivers for this device are not installed. (Code 28)
    Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

    Name: Base System Device
    Description: Base System Device
    Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Manufacturer:
    Service:
    Problem: : The drivers for this device are not installed. (Code 28)
    Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


    ========================= Memory info: ===================================

    Percentage of memory in use: 26%
    Total physical RAM: 1013.98 MB
    Available physical RAM: 745.36 MB
    Total Pagefile: 2441.38 MB
    Available Pagefile: 2293.48 MB
    Total Virtual: 2047.88 MB
    Available Virtual: 1984.61 MB

    ========================= Partitions: =====================================

    1 Drive c: () (Fixed) (Total:111.78 GB) (Free:24.98 GB) NTFS
    4 Drive g: (TOSHIBA) (Removable) (Total:14.94 GB) (Free:12.16 GB) FAT32

    ========================= Users: ========================================

    User accounts for \\COMPUTER_1

    Administrator Chris Wright Guest
    HelpAssistant SUPPORT_388945a0


    **** End of log ****
    videoart, Dec 21, 2011
    #37

  18. Broni Malware Annihilator Posts: 39,391   +177

    It looks like we have a problem with Tcpip Service.

    Make sure, your settings are correct.
    1. Go Start>Settings>Control Panel (Vista/7 users: Start>Control Panel)
    2. Double click Network Connections (Vista/7 users: Network and Sharing Center)
    3. Vista/7 users - From the list of tasks on the left, click Manage network connections.
    4. For a wired network connection, right-click Local Area Connection, and then select Properties.
    For a wireless network connection, right-click Wireless Network Connection, and then select Properties.
    5. From the General tab (Vista/7 users: Networking tab), click Internet Protocol version 4 (TCP/IPv4), make sure it is checked, and then click Properties
    6. Make sure Obtain an IP Address Automatically and Obtain DNS server address Automatically are checked.
    7. Click on "Advanced" button and make sure "IP Settings" tab looks like this:
    [IMG]
    Make sure "DNS" tab looks like this:
    [IMG]
    Make sure "WINS" tab looks like this:
    [IMG]
    8. Still in Control Panel double click on "Internet options" then "Connections" tab then "LAN Settings" button. Make sure "Automatically detect settings" is checked.
    If you made any changes OK your way out.
    Restart computer.


    If that doesn't work...
    Turn off computer. Disconnect router, and modem from power source for 1 minute. At the same time disconnect ethernet cable as well.
    Reconnect everything.
    Restart computer.

    If that doesn't work, bypass router, and connect computer straight to the modem.

    If that doesn't work...
    Go Start>Run (Start search in Vista), type in:
    cmd
    Click OK (in Vista and 7, while holding CTRL, and SHIFT, press Enter).

    In Command Prompt window, type in following commands, and hit Enter after each one:
    ipconfig /flushdns
    ipconfig /registerdns
    ipconfig /release
    ipconfig /renew
    net stop "dns client"
    net start "dns client"


    Restart computer.

    If that doesn't work...
    Go Start>Run (Start search in Vista and 7), type in:
    cmd
    Click OK (in Vista, while holding CTRL, and SHIFT, press Enter).

    At Command Prompt, type in:
    netsh int ip reset reset.log
    Hit Enter.
    Type in:
    netsh winsock reset catalog
    Hit Enter.

    Restart computer.


    If that doesn't work...
    Download, install, and run WinSockFix: http://www.softpedia.com/get/Tweak/Network-Tweak/WinSockFix.shtml (doesn't work in Vista and 7)
    Restart computer, and check again.

    If that doesn't work...
    Download Dial-A-Fix (DAF) (doesn't work in Vista and 7):
    http://wiki.lunarsoft.net/wiki/Dial-a-fix#Mirrors.2Fdownload_locations.2C_and_articles

    Have XP CD available in case DAF needs a file. Likely not!

    Check all boxes on the screen (clear any restrictions if it shows any)
    Then click GO!

    When the entire page is finished click the HammerHead at bottom to go to the second DAF page.

    Here, one at a time, do the below:

    Reinstall BITS
    Reinstall Windows Firewall
    Repair Permissions
    Reset networking

    Watch for any File not found or other errors and make note as this may lead to the fix!

    Restart computer.
    Broni, Dec 21, 2011
    #38

  19. videoart Newcomer, in training Posts: 40

    At the ipconfig/flushdns stage, I'm getting the following:

    Windows IP Configuration

    An internal error occurred: The request is not supported.

    Please contact Microsoft Product Support Services for further help.

    Additional info: Unable to query host name.
    videoart, Dec 21, 2011
    #39

  20. Broni Malware Annihilator Posts: 39,391   +177

    Skip steps which won't work.
    Broni, Dec 21, 2011
    #40
Page 2 of 4

Add New Comment

Social Login & Guest Posting

TechSpot Members
Login here or sign up for free,
it takes about a minute.
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.