Can't update AdAWare,SpyBot,AVG
Barbara Z
Free, AdAware, and SpyBot, but several problems were encountered.
When I try to update AVG, I get: "Update server connection failed. ..."
With AdAware, just "Error retrieving update", and with SpyBot, "Error
retrieving update information file. Socket Error #10061 Connection
refused." I seem to be able to get to all web pages OK, just not the updates.
We have a small home network here, and use direcway satellite Internet. I
have worked on several computers and have been able to do everything OK.
Sometimes, I can't do the direcway browser proxy settings, but I just leave
it on "Automatically detect settings" and have been OK. With this computer
(HP Pavilion 511n using XP Home), I had to do the Auto detect before I could
get to any web pages. Then I could download programs and run online scans.
For the AVG, I tried playing around with the Update Mgr settings, and went
back & forth w/ Auto Detect and direcway settings, to no avail. These
people did the XP SP2 update themselves (as far as I know), so I'm wondering
if things were not "clean" enough to do it. Could something with SP2 be
messing up the updates?? Does anybody have any ideas - Internet settings??
firewalls?? (I've checked that all these programs can go through the
firewall.
--
Barb Zakrzewski
David H. Lipman
Open a Commnad Prompt and execute...
netsh winsock reset
Then reboot the PC.
--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm
Barbara Z
menu and wrote exactly what you said. It said I had to restart, which I did,
but problems still persist. On Sunday, when I ran SpyBot (not updated),
one of the errors that got "fixed" was under NewDotNet <$winsock>. C:\Prog
Files\NewDotNet\ was not fixed - needed to run again at next startup. Could
this be of importance?? Anu ideas out there?? Also, I installed sysclean,
but when I click on it in Safe Mode, the DOS window flashes quickly and
disappears.
--
Barb Zakrzewski
David H. Lipman
| Dave - Sorry, it didn't fix the problem. I opened the Comm.Prompt from Start
| menu and wrote exactly what you said. It said I had to restart, which I did,
| but problems still persist. On Sunday, when I ran SpyBot (not updated),
| one of the errors that got "fixed" was under NewDotNet <$winsock>. C:\Prog
| Files\NewDotNet\ was not fixed - needed to run again at next startup. Could
| this be of importance?? Anu ideas out there?? Also, I installed sysclean,
| but when I click on it in Safe Mode, the DOS window flashes quickly and
| disappears.
New Dot Net does indeed a LSP plug-in that must be removed if you remove New Dot Net and if
you don't it breaks the TCP/IP stack.
Download both a copy of LSP Fix -- http://www.cexx.org/LSPFix.exe
and remove and non-OS LSP plug-ins.
http://www.cexx.org/lspfix.txt
Barbara Z
ideas to try.
LSPFix doesn't seem to be doing it. The Keep list contains: mswsock.dll
(Tcpip), winrnr.dll (NTDS), and rsvpsp.dll (Protocol handler). The Remove
list has nothing in it. After I hit Finish, the report has all 0's.
I am going to try to do these updates through dial-up later tonight, 'cuz
maybe the problem is just with some erroneous setting on the network stuff.
These people use dial-up, anyway. I'll advise.
Also, I can try the manual updates PaBear mentioned - I just go to the
actual website?? Talk to you later - prob. tom'w.
--
Barb Zakrzewski
David H. Lipman
| Sorry Dave that I "jumped" over to another group. I thought I could get more
| ideas to try.
| LSPFix doesn't seem to be doing it. The Keep list contains: mswsock.dll
| (Tcpip), winrnr.dll (NTDS), and rsvpsp.dll (Protocol handler). The Remove
| list has nothing in it. After I hit Finish, the report has all 0's.
| I am going to try to do these updates through dial-up later tonight, 'cuz
| maybe the problem is just with some erroneous setting on the network stuff.
| These people use dial-up, anyway. I'll advise.
| Also, I can try the manual updates PaBear mentioned - I just go to the
| actual website?? Talk to you later - prob. tom'w.
The Remove list has to be populated.
You have to check the box "I know what I am doing"
Then you have to select an item on the left. Click on the ">>" so the file shows on the
right side and then click "Finish".
However, the list you provided are legitimate and are not malware Layered Service Provider
(LSP) plug-ins.
We are goin to have to spend some time together running diagnostics...
To start off, execute; %windir%\system32\drivers\etc
Delete a file named; hosts (no extension to the name) if you see it.
Then open a command prompt and type...
ipconfig /flushdns
Then type...
ping yahoo.com
What are the results ?
Then...
ping 216.109.112.135
What are the results ?
Barbara Z
I went through Search to find that "etc" folder. It did have the hosts (no
ext) file, which I sent to Recycle. Then I did the ipconfig, then pinged
yahoo.
Results: Pckts: Sent=4, Rec'd=4, Lost=0. Rd trip (ms): Min=674, Max=732,
Avg=698.
Ping the other address: Pckts: Sent=4, Rec'd=4. Rd trip: Mn 717ms, Mx 887ms,
Avg 774ms.
What can I do next? I am home most of today, so I'll try to watch carefully
for your reply. Thanks. Barb
--
Barb Zakrzewski
David H. Lipman
| Dave -
| I went through Search to find that "etc" folder. It did have the hosts (no
| ext) file, which I sent to Recycle. Then I did the ipconfig, then pinged
| yahoo.
| Results: Pckts: Sent=4, Rec'd=4, Lost=0. Rd trip (ms): Min=674, Max=732,
| Avg=698.
| Ping the other address: Pckts: Sent=4, Rec'd=4. Rd trip: Mn 717ms, Mx 887ms,
| Avg 774ms.
| What can I do next? I am home most of today, so I'll try to watch carefully
| for your reply. Thanks. Barb
So it looks like you can ping and get resoltion via DNS. It looks like the TCP/IP stack is
OK.
Please try the update of; Ad-aware SE, SpyBot S&D and AVG again.
Barbara Z
Sorry, no go on the updates.
One thing - they have NAV which comes up saying the Auto-Protect drivers are
not working. When I first checked status, I saw that the definitions were
outdated (5/27/05) and need to be renewed. That is why I installed AVG; the
red X is thru the NAV tray icon, and I figured I'm OK. I did get in touch w/
these people last night - they said thay bought a new NSW, so it's OK to go
ahead and uninstall the NAV04. Do you think that might help??
I'm doublechecking msconfig now. Before when I went thru it, I didn't
uncheck any Symantec items. I just did now, and it's restarting........still
no go on updates. Any more ideas?? Should I go ahead and uninstall NAV??
--
Barb Zakrzewski
David H. Lipman
| Hi Dave - Had to run out for 20+ mins.
| Sorry, no go on the updates.
| One thing - they have NAV which comes up saying the Auto-Protect drivers are
| not working. When I first checked status, I saw that the definitions were
| outdated (5/27/05) and need to be renewed. That is why I installed AVG; the
| red X is thru the NAV tray icon, and I figured I'm OK. I did get in touch w/
| these people last night - they said thay bought a new NSW, so it's OK to go
| ahead and uninstall the NAV04. Do you think that might help??
| I'm doublechecking msconfig now. Before when I went thru it, I didn't
| uncheck any Symantec items. I just did now, and it's restarting........still
| no go on updates. Any more ideas?? Should I go ahead and uninstall NAV??
Download MULTI_AV.EXE from the URL --
http://www.ik-cs.com/programs/virtools/Multi_AV.exe
To use this utility, perform the following...
Execute; Multi_AV.exe { Note: You must use the default folder C:\AV-CLS }
Choose; Unzip
Choose; Close
Execute; C:\AV-CLS\StartMenu.BAT
{ or Double-click on 'Start Menu' in C:\AV-CLS }
NOTE: You may have to disable your software FireWall or allow WGET.EXE to go through your
FireWall to allow it to download the needed AV vendor related files.
C:\AV-CLS\StartMenu.BAT -- { or Double-click on 'Start Menu' in C:\AV-CLS}
This will bring up the initial menu of choices and should be executed in Normal Mode.
This way all the components can be downloaded from each AV vendor's web site.
The choices are; Sophos, Trend, McAfee, Kaspersky, Exit this menu and Reboot the PC.
You can choose to go to each menu item and just download the needed files or you can
download the files and perform a scan in Normal Mode. Once you have downloaded the files
needed for each scanner you want to use, you should reboot the PC into Safe Mode [F8 key
during boot] and re-run the menu again and choose which scanner you want to run in Safe
Mode. It is suggested to run the scanners in both Safe Mode and Normal Mode.
When the menu is displayed hitting 'H' or 'h' will bring up a more comprehensive PDF help
file. http://www.ik-cs.com/multi-av.htm
* * * Please report back your results * * *
Barbara Z
I made a folder C:\AC-CLS and D/L the Multi_AV.exe to it, then unzipped it
there also. I disabled the Windows Firewall, and went thru the steps. Sophos
(1) and Kaspersky (4) seemed to download, but Trend (2) and McAfee (3) had
errors: ....read error code [0]. I tried again, and I also did the scans for
(1) and (4). They seemed to go very fast (secs). When I went to Safe Mode, I
tried (1), but it went to System Shutdown, 'cuz it said there was no info in
Sophos, and I had to D/L again in Normal Mode. (I did notice that the folders
for the four AVs were all empty 'cept Kas.) So on restart, I tried again,
went back to Safe Mode, and tried (4). This time it went to System Shutdown
'cuz something was wrong w/ Kas files (?? forgot to jot it down). Right now,
I think I am going to delete the whole \AV-CLS folder and start again.
Should I have put the original zip file in that folder, or is that
irrelevant?? Please advise. It is now 6:08PM my time and I'm tired!!
I will definitely try this again, tho' tonight. The next 2 days I
substitute teach, so my time will be more limited. Please be patient with my
response time. Thanks. Barb
--
Barb Zakrzewski
David H. Lipman
| Hi Dave -
| I made a folder C:\AC-CLS and D/L the Multi_AV.exe to it, then unzipped it
| there also. I disabled the Windows Firewall, and went thru the steps. Sophos
| (1) and Kaspersky (4) seemed to download, but Trend (2) and McAfee (3) had
| errors: ....read error code [0]. I tried again, and I also did the scans for
| (1) and (4). They seemed to go very fast (secs). When I went to Safe Mode, I
| tried (1), but it went to System Shutdown, 'cuz it said there was no info in
| Sophos, and I had to D/L again in Normal Mode. (I did notice that the folders
| for the four AVs were all empty 'cept Kas.) So on restart, I tried again,
| went back to Safe Mode, and tried (4). This time it went to System Shutdown
| 'cuz something was wrong w/ Kas files (?? forgot to jot it down). Right now,
| I think I am going to delete the whole \AV-CLS folder and start again.
| Should I have put the original zip file in that folder, or is that
| irrelevant?? Please advise. It is now 6:08PM my time and I'm tired!!
| I will definitely try this again, tho' tonight. The next 2 days I
| substitute teach, so my time will be more limited. Please be patient with my
| response time. Thanks. Barb
|
Yes !
But first open a command prompt. In the command prompt type...
ping ftp.nai.speedera.net
Please Copy & Paste the EXACT results into your reply.
Start again.
Download MULTI_AV.EXE from the URL --
http://www.ik-cs.com/programs/virtools/Multi_AV.exe
To use this utility, perform the following...
Execute; Multi_AV.exe { Note: You must use the default folder C:\AV-CLS }
Choose; Unzip
Choose; Close
So just execute Multi_AV.exe it will create the folder, just don't change the default.
Then execute; C:\AV-CLS\StartMenu.BAT
{ or Double-click on 'Start Menu' in C:\AV-CLS }
Then choose a module like Mcafee. You will see it download the file which is close to 8MB.
Barbara Z
and paste a DOS window, so I'm going to type out the results:
C:\Documents and Settings\Owner>ping ftp.nai.speedera.net
Pinging ftp.nai.speedera.net [63.209.221.236] with 32 bytes of data:
Reply from 63.209.221.236: bytes=32 time=781ms TTL=54
Reply from 63.209.221.236: bytes=32 time=829ms TTL=54
Reply from 63.209.221.236: bytes=32 time=759ms TTL=54
Reply from 63.209.221.236: bytes=32 time=789ms TTL=54
Ping statistics for 63.209.221.236:
Packets: Sent = 4, Received = 4, Lost = 0 <0% loss>,
Approximate round trip times in milli-seconds:
Minimum = 759ms, Maximum = 829ms, Average = 789ms
That's all for now; I don't know if I'll get to retry it tonight. Will post
as soon as I do. Thanks again.
--
Barb Zakrzewski
Barbara Z
I retried the Multi_AV - SAME exact problem!
Trying download Trend, get: \trend\pattern.txt not opened for READ, error
code: [0]. When I checked the folders, KAV was 28kB, and the other three
were empty.
Any other ideas??
This seems to be the trickiest one I've done yet.
This is an HP computer that the guy said he did not have an OS CD; do you
think it might be time for some kind of restore?? I did at beginning of my
work disable System Restore, as I was doing all kinds of maintenance. This
comp is past warranty, but would company send a CD for Windows XP??
--
Barb Zakrzewski
David H. Lipman
| Dave - It's Wed almost 9AM (2 hr school delay for me)
| I retried the Multi_AV - SAME exact problem!
| Trying download Trend, get: \trend\pattern.txt not opened for READ, error
| code: [0]. When I checked the folders, KAV was 28kB, and the other three
| were empty.
| Any other ideas??
| This seems to be the trickiest one I've done yet.
|
| This is an HP computer that the guy said he did not have an OS CD; do you
| think it might be time for some kind of restore?? I did at beginning of my
| work disable System Restore, as I was doing all kinds of maintenance. This
| comp is past warranty, but would company send a CD for Windows XP??
Nope. No ideas. You can access the Internet but you can't download files at all and I
don't know why.
I suggest bringing the PC to a local, reputable, computer service center.
zero
<Barb...@discussions.microsoft.com> wrote:
>Working on someone's computer at my home. I was able to d/l and run AVG
>Free, AdAware, and SpyBot, but several problems were encountered.
>When I try to update AVG, I get: "Update server connection failed. ..."
>With AdAware, just "Error retrieving update", and with SpyBot, "Error
>retrieving update information file. Socket Error #10061 Connection
>refused." I seem to be able to get to all web pages OK, just not the updates.
I remember this exact thing happen to a Windows ME two year ago. He
never told me the truth, but I believe he opened an email attachment.
I downloaded the latest versions from my PC to a thumb drive, then
to his desktop. It found various trojans, spy ware and a virus.
After deleting and cleaning they all crashed again when trying to
update. (NOTE* they all crashed the first time I installed them during
the first update. After uninstalling them and trying again WITHOUT
trying to update anything I got them to run.)
Reinstalled everything again and found it sitting in my system
restore files. Shut down system restore, reboot and every thing bad
was gone. I knew I had it when everything updated OK.
As I've typed this out, I've tried, but I can't for the life of me
remember what the virus was??? Sorry, but I hope this is a map to fix
whatever you may have.
HTH,
-zero
Barbara Z
Thanks for all your help throughout this ordeal. You've given me some tools
that I can use in the future, if the need arises. There was another person
that added to our thread, so I'm going to try to follow that. If not
successful, then it goes back to the people.
Thanks again for all your ideas.
Barb Z
--
Barb Zakrzewski
Barbara Z
By thumb drive, I'm pretty sure you mean a memory stick (SanDisk Mini Cruzer
is the one my husband has.)
I have D/L'd AdAware, AVG Free, and SpyBot .exe files to the Cruzer, plus I
got a manual update for AVG on that disk. I still have to try to get the
manual updates for the others, if I can find them.
My ? is: Do I try to run the .exe files on my computer or just put the
stick on the other computer and install there? I'll be pokin' aroung tonight
for a bit more, but then I gotta crash.
I substitute teach tom'w and Friday, but I'll do my best to get timely
responses back to you.
Thanks
Barb
--
Barb Zakrzewski
Barbara Z
I just ret'd the comp to the owners today - fin'd w/ it yesterday. Thurs &
Fri, I was trying to go thru the D/Ls on a stick drive and then xfer them to
that comp. I was finally able to get all 3 programs (AVG, ADAware, SpyBot)
in there with fresh updates (via a xfer from the stick drive, not the
Internet). Ran all; just a couple things on AdAware, others clean. Can't
update thru Internet, tho'.
Fri - At one point, when I looked at computer, NAV was running a scan!!
huh?? As far as I knew, that was disabled. When I poked around some more, I
found they also had NIS, but looking at the status screen, everything was
disabled on bottom half. The NAV was expired, the security was off, etc. The
owner did say that I could remove it (they had trouble doing that, and then
tried to install NSW 2006 over the current Norton programs), but I was so
busy following your ideas, and I didn't think it was interfering.
Anyway, Sat'y AM, I finally got NIS removed (logged on as superviser), also
Live Update and WMI Update, but not Live Reg or the "shell" of NSW2006 that
they had started. (It said something to the effect that the previous
installation was interrupted or ?... and wouldn't let me remove it from
Add/Rem Programs, even tho' there was no file size listed.) After that, I
finally got AdAware and AVG to update from the Internet!! But SpyBot still
had an error message (Error retrieving update info file. HTTP/ 1.0 506
Failure to connect to Web Server.) 3x I got that, then finally it tried an
update w/ !!bad checksum as a result. I know that's the download site
problem, so I tried a couple times more, and finally got the update!!
Sysclean would still not work, so I uninstalled and got a fresh copy from my
comp and xferred via the stick drive. When I tried it, it worked. Results
came back clean. (I just thought - I should have tried your Multi-AV
program.)
What do you think? Was something in NIS blocking the updates?? Everything
seemed to be disabled, although the scheduler kicked on NAV that Friday.
Maybe there was some bug, but all the scans had very few problems detected,
if any. What puzzles me if NIS was the problem was the fact that after I
uninstalled it, I still had problems with SpyBot and Sysclean. STRANGE, huh?
I just thought you'd like to know how I fared, after all the time you spent
with me on it. I have done computers before where I left the NAV in and just
disabled it (in case they wanted to pay to renew it) and then used AVG; I've
never had a problem like this. But then, I don't think it was ever NIS,
either. ANy ideas for the future on this one?
--
Barb Zakrzewski
Barbara Z
--
Barb Zakrzewski