Internet only works in Safe Mode (with networking)

Internet only works in Safe Mode (with networking) – normal mode outlook downloads and some updates work, but, no internet

Hi there.

Thanks for your incredibly useful and user friendly instructions to sorting out PC problems. I, like quite a few others it seems, have a problem with internet access. This was posted in another forum and then moved here - before moving here I followed the instructions for Malware removal and gone through the process steps using the tools listed. I still have the problem as detailed below.

The problem:
I have 2 PCs – 1 HP media centre desktop and 1 Sony Vaio Laptop. This problem only relates to the Sony Vaio laptop as the PC can still access the internet without any problems at all.

Sony latptop: running XP SP2; 1.73GHz, 513 RAM, NVDIA GeForce Go 6200.
When I access the internet through IE or through Firefox I get the same error: Internet Explorer cannot display the webpage. Outlook and Windows updates still seem to be working, and I can see that I am connected by the Windows wireless icon, by ipconfig /all (results below). The internet works in windows safe mode (with networking).

What I have tried:
Unistalled all antivirus and firewalls (previously had Lavasoft Adaware and Avira). Have reset the router
Have removed security from the router
Have removed all PC checking software
Run the steps in your help section: i.e. spybot, superantispyware, CCleaner, Combo-fix., MGtools, etc.
Various pieces of Malware were found and successfully removed and all seems to be clean.
Reset IP address and flushdns, also reset winsock
I have disabled services and startup items through msconfig and services.msc and even tried to replicate the services in safe mode in normal mode.
I have also tried a system restore to various prior dates, but, none of them completed successfully.
After all of the above, the laptop still will not connect to the internet. I can ping web addresses with no problems and no lost packets.

ANY HELP ANYONE CAN PROVIDE WILL BE GREATLY APPRECIATED AS I AM AT A LOSS AS TO WHAT TO TRY NEXT. THANKS IN ADVANCE.

Ipconfig results:
DHCP enabled: Yes
Autoconfiguration enabled: Yes
IP address: 192.168.0.4
Subnet mask: 255.255.255.0
Default Gateway: 192.168.0.1
DHCP server: 192.168.0.1
DNS servers: 192.168.0.1
Lease obtained: 2008-07-11 12:21
Lease expires: 2008-07-12 12:21

Media state: Media disconnected


Hijak this log:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:03, on 2008-07-11
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Edit by chaslang: Inline HJ log removed. MBMA & CF inline logs attached.

 

Thanks and apologies. I am having difficulties in tranfering the log files from my laptop to a machine with internet access and am new to this forum - I will hopefully attach the correct logs as attachments shortly - thanks for your patience and in advance for your help.

 

Thanks - you are ablsolutely right it is working in Safe Mode - I had not even considered switching between normal and safe to send the messages and attachments and have been trying to transfer the logs between two machines by data key.

I have run the scanners, downloaded the logs and attached the two requested log files. The problem with safe mode is that the screen is tiny on my widescreen Sony laptop which makes it hard to read so I hope I have completed all of the actions as required.

I am using a netgear router and the desktop is working via the wireless connection. The laptop appears to be fully connected through the wireless also (and I can ping websites and get a response). I have both IE 7 and the latest Firefox, but neither work outside of SafeMode with networking. Please let me know if there is anything more I can provide in terms of information - I am really impressed with the ultra quick responses to my messages and hope that I can back onto the internet with my laptop soon.

Thanks again.

 

I have run the GetLogs.bat in Safe Mode and attached the new MGlogs.zip file. As I have done this in safe mode, I will now go back into normal mode and try using the IP addresses to look up the websites in IE. Thanks

 

Returning to normal mode I tried both IP addresses and for both received the message that the address is not valid and Internet Explorer cannot display the webpage. I also tried the IP address for the router and this gave the same response.

 

I have checked the instructions for disabling the Teatimer in Spybot and the option is not ticked (i.e. redisent "TeaTime" [Protection of overall system settings] active" and so it should not be running. Is there any other way for me to check?

I have logged in to Safe Mode as Owner and the internet works fine (Safe Mode with networking).

I have de-selected the Symantec services and in start up and re-run in selective / diagnostic start up mode and the internet still does not work. I had previously tried to disable the start up and services options to match those in safe mode and this did not seem to work either. I have tried to remove all of the Symantec components a few times - as this is a very old anti-virus software setup (since have run Norton, and then more recently Avira - each on their own removing old versions first) is there a way to remove the Symantec software that remains?

Thanks for your quick responses and help - hopefully this is narrowing down the potential problems.

 

You are a genius - I have followed your steps and I am now sending this from my laptop which is connected and working. I am delighted. Prior to coming onto this forum, I spent ages trawling the internet and wasted almost a full day attempting to fix my PC. A few hours on here and it is working. Sincerest thanks.

I have included the updated log file just in case there is anything else of concern.

Is there anything else that I should do prior to installing anti-virus and firewall software? If not, I realise that you are probably not able to recommend any public domain anti-virus and firewall software, but, are there any good review sites where I could find info? I want to avoid causing the problems associated with downloading free software that might contain malware.

Overall, this website has been fanastic help.

Cheers

 

I removed the old version of Java and replaced it with the new version.
I merged the Reg file fixme.reg and it worked successfully
I have run CCleaner and then the Getlogs.bat (attached the log files as requested).
Removed combo-fix

I will do the rest of the clean up and flush the restore points shortly.

 

Chaslang - thanks. I have installed anti-virus and firewall software as per your malware post. I am currently running the updates as I write. I have also gone through the security on my router to ensure that all is up-to-date and secure.

I am so glad to be back online. You have been fantastic help.