I noticed after I attempted to update Firefox, via the Firefox updater tool, that Firefox would not display any pages. I was getting a standard error message along the lines of, “Unable to connect.” I then tried to launch IE and it is the only browser that now works. I uninstalled and tried to re-install Firefox, and now it does not even load. I also tried to download Chrome, but that won’t even install for some reason.

A separate, but maybe connected issue: a few weeks back the tech support guy at my ISP told me to uninstall all anti-virus software, in an attempt to resolve a problem with my modem and router. At that time, I tried to uninstall all Norton Internet Security/Symantec stuff. However, the uninstall is incomplete. I tried to download the uninstall tool from Symantec directly and the computer won’t let me (ha!). I get an error message that says, “unable to connect to server.”

So, I tried to download McAfee which my ISP provides free to its subscribers. I get almost all the way through the download but then it stops and gives me an error that there’s no internet connection, which obviously that’s not the case. On my other laptop I have successfully used Spybot Search & Destroy, so I tried to download and install it to this laptop. However, I get partially through the initial setup and am then given the error message as a weird looking popup that says “Error Sending Request. A connection to the server could not be established.” So, I called my ISP again and was told I have some kind of virus that’s blocking my ports.

Long story short: only IE works, sometimes it blocks a few webpages (like, eBay, Food Network, and Huffington Post). And, I can’t run any anti-virus software. I tried doing an online scan on Panda Security but my computer runs so hot that it shuts down after getting to about 26%. I tried using the Microsoft Security Essentials scan and it found nothing, so did Malwarebytes (because my computer won't let it update, I think). My machine runs Vista, but not even SP1 because the update won’t install (I think because, again, my computer runs too hot). I have a used HP Pavilion laptop.

Please, please help! Have zero ideas at this point...and cannot afford for McAfee to take remote control of my computer to fix it.


Here's the report. Ever so grateful for your review. Thanks,

shelf life
2011-10-07, 22:27
hi dough56,

Your post is a few days old. If you still need help simply reply back.

2011-10-07, 23:35
Hi shelflife,

Yes, I would appreciate any help you can offer. Still having the same problems.

shelf life
2011-10-08, 00:46
Why dont you try this first: boot your machine into safe mode. To reach safe mode you would tap the f8 key during a computer restart. Chose the first option from the list: safe mode. Once at the safe mode desktop go ahead and run malwarebytes even though its not up to date. This may or may not help at all.

You can also do this, or at least try it in Vista. you might want to copy/paste it into notepad so you can find it in safe mode; I no longer have a copy of vista so I cant check these paths. but you can try it anyway, cant hurt.

Click Start> then type %temp%
in the search box
Hit OK or enter. Delete all the files you can.

click Start> then type %windir%\temp
in search box
hit ok. delete all the files you can

Empty your Temp folders. Go to Start > Run and type:cleanmgr. Windows will scan. When done check these 3 and press *ok* to remove:

Temporary Files
Temporary Internet Files
Recycle Bin

After the above reboot normally, then see if you can download a file to use:

Please download TDSS Killer.exe (http://support.kaspersky.com/downloads/utils/tdsskiller.exe) and save it to your desktop
Double click to launch the utility. Vista and Windows 7 right click and "run as admin.." After it initializes click the start scan button.

"The utility will automatically select an action (Cure or Delete) for known malcious objects. A suspicious object will be skipped by default."

If an infected file is detected, the default action will be Cure, click on Continue.

If a suspicious file is detected, the default action will be Skip, click on Continue.

It may ask you to reboot the computer to complete the process. Click on Reboot Now.
If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.

A report can also be found in your Root drive Local Disk (C) as TDSSKiller. (name, version, date, time, log.txt)
Please post the log report

We will go from there based on results.

2011-10-08, 03:32
Ok, I've:
-run Malwarebytes==>Nothing found.
-deleted Temp files
-deleted Windir temp files
-run disk cleanup and removed: temporary files, temp. internet files, and recycle bin files
-rebooted in normal mode
-downloaded and run (as administrator) TDSS Killer

TDSS Killer says it didn't find anything. Here's the report:

shelf life
2011-10-08, 04:08
Ok so far so good. We will get another download to use. Its called combofix. There is a guide to read first, read through the guide then download it to your desktop. You may have to right click and "run as admin". If for some reason you cant run it during a normal boot up then run it in safe mode.
Post the log. The guide to read and download links:

Guide to using Combofix (http://www.bleepingcomputer.com/combofix/how-to-use-combofix)

2011-10-08, 05:18
Combofix nearly completed in normal mode, but then my computer completely shut off as it was preparing to display the log report. So, I re-ran it in safe mode. When I tried to restart Windows it wouldn't. I can only shut down and then start.

Also, there are 2 files that I would like to delete from something called Sling Media that I can't (?).

Anyway...here's the log:

shelf life
2011-10-08, 16:19
If there is any good news, its that I done see any malware in the logs. But we can get one more download. I think your problem is another issue, not malware related. You mentioned running hot a few times. This would cause problems, like the shutting down. At boot up things may be fine until you run for a little while, then the problems start. Could also be a hardware or driver issue, hard to say really, just trying to put out some options.
Do you recall installing any software or updating drivers or anything before the problems started?
When you have it in safe mode does it seem to function ok?
So now you cant even boot into windows normally. Can you get into safe mode?

I would like to delete from something called Sling Media
did you remove it via the add/remove programs panel first?

2011-10-08, 16:33
Thanks for reviewing these logs! I wonder what the issue could be?

I think the running hot issue began as I was trying to update Vista back in June. However, that was the only problem that I recall. I've never been able to fully update Vista.

Then, when I attempted to update Firefox last week, that's when the other problems began, such as being blocked from downloading the Norton uninstaller, not being able to install McAfee or Spybot, not being able to load certain webpages.

Via Add/Remove was my first attempt last week to uninstall the programs that I don't use. However, Sling Media Player will not uninstall via Add/Remove nor Norton.

Windows boots normally if it is shutdown first. Not if I do a warmboot from Restart. Only can do a cold boot have to give it a few seconds to rest.

shelf life
2011-10-08, 19:54
We will get another download to use:

Download aswMBR (http://public.avast.com/~gmerek/aswMBR.exe) to your desktop. Launch it and click the SCAN button. When its done click the SAVE LOG button. Save and post the log in your reply.

2011-10-08, 21:54
Thanks for your continued help! Here's the aswMBR log:

shelf life
2011-10-09, 01:17
dont see anything there to be worried about. You can try Revo uninstaller, they have a free version. (http://www.revouninstaller.com/revo_uninstaller_free_download.html) All it does is launch the app uninstaller and cleans up leftovers.

See if you can download and use This (https://www-secure.symantec.com/norton-support/jsp/help-solutions.jsp?lg=english&ct=united+states&docid=20080710133834EN&product=home&version=1&pvid=f-home) for removing Norton.

Do you have a functional antivirus app installed now?
Try running combofix once more after a normal bootup and post the log if successful.

2011-10-09, 16:31
Ok, well the good news is: finally got Norton off the computer, which I think was the original cause of the ports getting blocked (maybe?).

Bad news is: downloaded and ran Revo Uninstaller and totally screwed something up. My computer couldn't find the internet though I was clearly connected. Lost the connection after uninstalling Norton. The actual Norton uninstaller still would not download. I had to do a clean reinstall of Vista because the System Restore didn't fix the problem either. Tried multiple restore points to no avail. After the Vista reinstall I was able to download and run Norton's uninstaller.

Therefore, my log probably looks a lot different because my computer is just about back to original 2009 factory condition. Completely still runs hot though. I have Avast on now and need to install a lot of Windows updates.

Really appreciate all your help and apologize for my user error. I'm not good with computers.

Here's the Combo fix log:

shelf life
2011-10-09, 19:45
original cause of the ports getting blocked (maybe?)
Its possible if it came with a firewall that was blocking program access. At least Norton is off your machine now.

I really dont think Revo lost your connection or that you had a malware problem.
In any case since your back to factory defaults it should all be better. The Windows updates will be a huge download.
If you think your laptop is running hotter than it should- then you should visit the HP website. (http://www8.hp.com/us/en/support-drivers.html). They have good troubleshooting guides for all kinds of issues. You can also get updated drivers for your hardware. Laptops can use proprietary hardware so its necessary to get drivers from the HP website for your make and model.

You may also want to run this HP utility you have installed:
Hewlett-Packard\HP Health Check (http://h10025.www1.hp.com/ewfrf/wc/document?lc=en&dlc=&cc=us&product=18703&docname=c01508207)

you can remove combofix like this:
start>run and type in combofix /uninstall
click ok or enter
note the sapce after the x and before the /

Anyway if all is good here are some tips for your reference:

1) It is essential to keep your operating system (Windows) browser (IE, FireFox, Chrome, Opera) and other software up to date to "patch" vulnerabilities that could be exploited. Visit Windows Update (http://www.update.microsoft.com/microsoftupdate/v6/default.aspx?ln=en-us) frequently or use the Windows auto-update feature. (http://www.microsoft.com/windows/downloads/windowsupdate/automaticupdate.mspx) Staying updated is also essential for web based applications, browser plugins and addons like Java, Adobe Flash/Reader, iTunes etc. More and more third party applications are being targeted. Use the auto-update features available in most software. Not sure if you are using the latest version of software? Check their version status and get the updates here. (http://secunia.com/vulnerability_scanning/online/)

2) Know what you are installing to your computer. Alot of software can come bundled with unwanted add-ons, like adware, toolbars and malware. More and more legitimate software is installing useless toolbars if not unchecked first. Do not install any files from ads, popups or random links. Do not fall for fake warnings about virus and trojans being found on your computer and you are then prompted to install software to remedy this. See also the signs (http://www.malwarevault.com/signs.html)that you may have malware on your computer.

3) Install and keep updated: one antivirus and two or three anti-malware applications. If not updated they will soon be worthless. If either of these frequently find malware then its time to *review your computer habits*.

4) Refrain from clicking on links or attachments via E-Mail, IM, IRC, Chat Rooms, Blogs or Social Networking Sites, no matter how tempting or legitimate the message may seem. Do you trust the source? See also E-mail phishing Tricks (http://www.fraud.org/tips/internet/phishing.htm).

5) Do not click on ads/pop ups or offers from websites requesting that you need to install software to your computer--*for any reason*. Use the Alt+F4 keys to close the window.

6) Don't click on offers to "scan" your computer. Install ActiveX Objects with care. Do you trust the website to install components?

7) Consider the use of limited (non-privileged) accounts for everyday use, rather than administrator accounts. Limited accounts (http://www.microsoft.com/protect/computer/advanced/useraccount.mspx) can help prevent *malware from installing and lessen its potential impact.* This is exactly what user account control (UAC) in Windows Vista and Windows 7 attempts to address.

8) Install and understand the *limitations* of a software firewall.

9) The why and how for securing (http://www.cert.org/tech_tips/securing_browser/) your browser for safer surfing.

10) Warez, cracks, keygens and p2p are very popular for carrying malware payloads. A file can be named anything, be nothing but malware or have malware bundled in it. Do you really trust the source of the file?

More info/tips with pictures, links below

Happy Safe Surfing.

2011-10-09, 21:08
Although it turned out to not be a malware problem, I am very grateful for your continued assistance! The HP Health Check tool used to report that the machine was fine so we'll see if I get some new info there. I will go to the HP website directly as well.

All the best and a nice loaf of artisan bread :present:

shelf life
2011-10-11, 01:48
Your welcome. Take note if the problem returns and anything you may have just done like updates, installs, etc.