Unable to view unencrypted webpages

B

bebgotback

I'm running windows xp sp2. Yesterday both my internet browsers (internet explorer, firefox) stopped displaying unencrypted web pages. Encrypted sites work fine (mail.yahoo.com), but unencrypted ones will not open. Internet Explorer "cannot display the web page" and firefox just leaves the page blank. I know i am connected because i can ping, iTunes store connects, and so does AIM. I've run Spybot S&D several times, and have disabled all firewalls. As I type, I am on the same computer using a Linux live CD (Knoppix) so its not a problem with the machine. Any help would be appreciated.

Does anyone have an idea why this might be happening?
 
Hello and welcome to Techspot.

Let`s have a quick check for any possible malware.

Go and read this thread HERE and post a HJT log as an attachment into this thread.

Regards Howard :wave: :wave:
 
I might have a little trouble with that...I can't download it from windows, and Knoppix won't let me run it in Wine or save it to my hard drive.
 
Now that is a problem.

Have you tried booting into safe mode with networking?

It wouldn`t be ideal, but it might give us a clue.

Regards Howard :)
 
I'll give that a try, this might take a little while.

Interestingly enough, I'm able to connect in safe mode with networking...is it some software conflict perhaps? Anyway, here's the logfile.
 
Nothing nasty there, but that doesn`t really surprise me, since the HJT log is from safe mode.

Ok, can you now boot into normal mode and run a fresh HJT scan, then boot into safe mode with networking and post the HJT log from normal mode.

Regards Howard :)
 
Nothing nasty there either.

Download combofix.exe to your desktop. Double click combofix.exe & follow the prompts. A window will open with a warning. Type "1" (and Enter) to start the fix. When the scan completes it will open a text window. Please attach that log back here together with a fresh HJT log. Caution - do not touch your mouse/keyboard until the scan has completed. The scan will temporarily disable your desktop, and if interrupted may leave your desktop disabled. If this occurs, please reboot to restore the desktop.

Combofix will automatically save the log file to C:\combofix.txt

Your need to download Combofix in safe mode with networking, then boot into normal mode and run Combofix, then boot into safe mode with networking and post the Combofix log.

Regards Howard :)
 
Hold on, I didn't read your last bit about booting normally to run it :(
I booted normally though, and something tried to hijack my default search to microsoft something. Several other spybot notifications also had things from IE and whatnot be deleted and added. Does this ComboFix have any spyware in it?
 
No, Combofix is a tool that is designed to remove spyware, though some applications flag it as a virus, it isn`t.


Disable Spybot's TeaTimer. This is a two step process.
First:
- Right click Spybot in the System Tray (looks like a calendar with a padlock symbol)
- Choose Exit Spybot S&D Resident
Second:
- Open Spybot S&D
- Click Mode, check Advanced Mode
- Go To Left Panel, Click Tools, then also in left panel, click Resident
- If your firewall raises a question, say OK
- Uncheck the box labeled Resident Tea-Timer and OK any prompts.
- Use File, Exit to terminate Spybot
- Reboot your machine for the changes to take effect.

Now follow the instructions for Combofix.

Regards Howard :)
 
Open notepad and copy/paste the text in the code box below into it:
NOTE* make sure to only highlight and copy what is inside the quote box nothing out side of it.
Also ..

Pay particular attention to this :-

Make sure the word File:: is on the first line of the text file you save (no blank line above it, & no space in front of it)
Code:

File::
C:\WINDOWS\movexe.exe
C:\Documents and Settings\Mom\Application Data\ViewerApp.dat
C:\Documents and Settings\Mom\remote.exe
C:\Documents and Settings\Kaity\Application Data\GDIPFONTCACHEV1.DAT
C:\Documents and Settings\Josh\Application Data\GDIPFONTCACHEV1.DAT
C:\Documents and Settings\All Users\Application Data\ypinfo.bin
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Google Updater.lnk.disabled

Folder::
C:\Documents and Settings\All Users\Application Data\Viewpoint
Click to expand...


Save this as CFScript.txt

Then drag the CFScript.txt into ComboFix.exe as you see in the screenshot below.

CFScript.gif


This will start ComboFix again. After reboot, (in case it asks to reboot), post the contents of Combofix.txt in your next reply and let me know how your system is running.

Regards Howard :)
 
I got mixed results...I still cannot connect to an unencrypted page, but my forecastfox extension, which previously was timing out, was able to connect. I can post another HJT log if I need to.

Never mind, got it.

You know I only meant I got the log uploaded...
 
That looks fine.

Click start/run and type combofix /u into the run box and hit the enter key. That should delete Combofix and all it`s folders etc.

I don`t think your problem is malware related, but rather software related.

Try this and see if it helps.

1.) Download WinsockFix.zip. (by: Option^Explicit)
2.) UnZip WinsockFix.zip (Pay close attention to where the file is extracted to.)
3.) Run WinsockFix.exe.
4.) Click the Fix button.

Regards Howard :)
 
Damn, this is proving troublesome.

Try this.

Click start/run and type sfc /scannow into the runbox and hit the enter key. Windows will scan for any missing or corrupt system files and replace them as necessary. You will need to have your Windows cd handy.

If that doesn`t help, try a Windows repair as per this thread HERE.

Hopefully, one of the above procedures will help.

Regards Howard :)
 
I'm not sure my Dell came with a Windows CD, or I just lost it. Is there any way to avoid using a Windows CD? I'd rather not go out and buy another copy...

Ubuntu's sounding pretty good right now...
 

Similar threads

Julio Franco
The complete list of alternatives to all Google products
2 3 4
Replies
98
Views
38K
wizardB
wizardB
N
Cloudflare wants to kill the CAPTCHA using hardware security keys
Replies
23
Views
3K
Wereweeb
W
P
Sony Vaio VGN-NW240F Not staying connected to WiFi
Replies
1
Views
2K
PakseFrustration
P

Latest posts

Back