stumped?

Hey. I have a cable internet connection running windows xp, and firefox is my browser, avir free is my virus protection, and only running windows firewall. When I try to log on to isohunt.com, I get a "network timed out" error, I click the "try again" button, and the site loads up. I type in something to search for, and same thing, "network timed out". I also have MWB, running IP protection, and when I try to go to isohunt.com, I get a popup saying denying access to malicoius site 95.211.12.140. I even get that popup, when I'm already on a site, with a different ip address, of course. If I disable ip protetection, I still get the "network timed out" error. Now hear's the funny part, If I boot with my network enabled BartPe, or live linux cd, I don't get any issues, when trying to access isohunt.com. I've run rootkit scans, and mutiple virus scans, and same issue. Is there a fix for this? Thanks.

What is this popup? Is it a windows popup or a browser popup? Screenshot?

isohunt.com's ip address is :
208.71.112.30

Can you do this in Windows XP.

1. Open a Dos command prompt
2. Type "ping isohunt.com" without the quotes
3. tell me what the output is.

Then do:

1. Open a DOS command prompt
2. Type "tracert isohunt.com" without the quotes
3. Tell me what the output is.

BTW, do you have a router? If not, I strongly suggest you get one. Your computer with Windows XP connected directly to the internet (even with Windows Firewall) is not good enough.

when i pinged isohunt.com, it pinged 208.71.112.30, with no issues. Trace gave me the following result. Tracing route to isohunt.com(208.71.112.30)over a maximum of 30 hops
1 * * * requested timed [IMG]file:///C:/DOCUME%7E1/ALMIGH%7E1/LOCALS%7E1/Temp/moz-screenshot-2.jpg[/IMG]out
2 23ms 11ms 19ms rc1ar-ge4-0-0-9.ed.shawcable.net [64.59.189.226]
3 26ms 36ms 46ms rc3sc-tge-0-1-0-5-0.wp.shawcable.net [66.163.77.65]
and so on. the popup was produced by malware bytes ip protection system.
[IMG]file:///C:/DOCUME%7E1/ALMIGH%7E1/LOCALS%7E1/Temp/moz-screenshot.jpg[/IMG][IMG]file:///C:/DOCUME%7E1/ALMIGH%7E1/LOCALS%7E1/Temp/moz-screenshot-1.jpg[/IMG]

Sorry, I can't see the screenshots.

Eh try uploading the images to the net... copy pasting the location on your hard drive means nothing.

Yeah, I just learned that the hard way. Anyway, if I didn't know any better, I'd swear that the site is being highjacked somehow, and redirected, but I cant say for sure. How do I upload a screenshot to the web? and to where exactly? Thanks.

--
or
--

Have you checked your host file to see if there is any pre-dns host trickery going on?

Malware Antibytes could be blocking the IP from one of ISOhunt's advertising partners as well, which would make sense if you can load the actual isohunt page.

edit:

Yup, looks like 95.211.12.140 resolves to -- which is a an advertising affiliate program. They probably use a combination of cookies and .gif's to track your travels which raises a flag with Malware Antibytes.

even with MWB ip protection disabled, I still get the "network timed out" error. I have the screen shots of the ping and trace

http://i47.tinypic.com/28k3kt5.jpg
http://i48.tinypic.com/335gox0.jpg

I pinged and traced isohunt.com, with ip protection disabled.
I downloaded a "clean" hostfile(no extension), it's an executable file called "fixhosts" to see if that would fix the issue, no go.

I'm close to just doing a repair install of windows, but I'd like to exhaust all other avenues first. I do appreciate all the help. Thanks.

Can you do a screenshot of the this command:

"ipconfig/all" without quotes.

Thanks.

My next suggestion is to try this:

--

in regards to ip address 95.211.12.140 being blocked, this same ip address installed malware on 2 computers i own. just clicking on the search bar on isohunt and demonoid resulted in a pdf popping up and freezing, then my screen turns green, then all these popups about being infected. they call it the "internet security 2010 virus" it disabled my task manager and made it impossible to start in safe mode. mcafee antivirus let enough of it in that i had to run malwarebytes, combo fix then malwarebytes again (under the guidance of the malwarebytes folks). even after all of that i still had it coming back, even though i was unplugged from the internet. i had to manually remove a file using mwb file annilator (yehn.exe) which was hiding in widows prefetch. then it finally stopped coming back. i'm sure these torrent sites are being sabotaged by 95.211.12.140. i bought norton. it seems to be stopping this attack. i got mcafee for free with my dsl internet. i guess its worth what i paid for it. nothing. thanks. jim

Ok, here is my screenshot of "ipconfig /all"

http://i46.tinypic.com/1z4v37m.jpg

I noticed something else, when I tried to look for a file, it wouldn't come up, just an ip address: 117.199.80.111, that isn't reachable

This is what the screen should look like when I typed in the search for the file I was looking for. I know I'm going to get in crap for this, but the only way to explain is to show it. I got this via booting with my network enabled BartPE disc.

http://i48.tinypic.com/2zezezc.jpg

this is what the screen looks like when I attempt the search using normal windows.

http://i47.tinypic.com/2wlt5hg.jpg

I know I'll get in hell for that one too. I will try the ip reset, I just wanted to show you the result of the issue I'm having. I appreciate the effort on your part to help me get this thing solved. To "thebinderguy" it sure sounds like a mean little basterd, I hope I don't have the trouble you had, thankfuly there are kind hearted folks out there willing to give us stranded people a hand. I do have another issue, it's in regards to my image burning program "imgburn", that worked flawlessly since I first installed it, but now the buffer drops to zero when I'm tring to burn a disc, then I get a "device i/o error", and can't finish the burn. I don't know if it's related in any way.

I tried the ip reset idea. I don't get the "network timed out error" anymore, and it seems to run snappier, if that's a word, but you compare the first screenshot of my search and the second, the search is still turning up the second screenshot equivalent. Any ideas? I know, I'm pretty demanding . Thanks.

I got another crimp to add to the mix. I booted into safemode with networking enabled, logged onto isohunt.com, and typed in the search object as in both screen shots, guess what? The result was the same as in the first screen shot, go figure. So between safemode, and normal boot, windows is handling the internet connection, differently, I just don't know why. If a virus or malware, or anything of that nature caused this, I'd like to know how and why. Thanks.

1. What kind of addons are you running in firefox in windows XP?

2. In Windows XP, do you get the same behaviour when you run Firefox in safe mode? Safe mode for firefox can be accessed in the Start Menu => Programs => Mozilla directory.

Do you leave your computer running 24/7? If so, you ipconfig/all screenshot suggests you have your computer hooked directly to the Internet. XP has known unpatched vulnerabilities and I strongly suggest you run behind an Internet Router.

I've just noticed something odd. Your second screenshot from XP, the bottom shows "transferring data from www.yceml.net..." When I look it up on the internet, it is a marketing company serving up ads.

When I try to ping it on my machine, I get response from 127.0.0.1 which is my own machine. I am running Spybot Search and Destroy which probably rerouted it my machine instead of the Internet. It would be interesting to see what your results are when you try to ping -- (without the quotes) and how long the responses take?

reply to: cdn_bc_ca. No I don't leave my computer on 24/7, and yes it's hooked up directly to the internet, no router, only windows firewall. This is the screenshot of "ping www.yceml.net"

http://i45.tinypic.com/2libr42.jpg

For addons, are you talking extensions, and/or plugins? There is no change when running firefox in safemode. Thanks.

Another development. There is no issue, if I log on with IE 8, or Opera. Now I got ya thinkin . Thanks.

It must be some addon in Firefox or a proxy setting that you've set.

If you go into firefox and in the tools menu select addons. It should list all the addons you are running.

also in the edit menu, under preferences, look for the section that relates to connections. Check those settings to make sure that you are directly connected to the internet.

One useful addon that you can add is Adblock Plus. It basically eliminates all the ads you are seeing in those screenshots you provided.

BINGO, you hit it right on the head. I disabled all plugnins and extensions, and tried it, no issues. Now I have to systematically enable each add on, to see which was the culprit. Thank you so much for your effort, I bow with great humility to the master. I'm not kidding, this one was bugging me for a week. Now did you happen to notice my question in regards to my problem with not being able to burn my iso files with my dvd burner? I get so far and then the buffer just drops to zero, and eventually gives me a device i/o error. Ideas would be helpfull. Thanks a million.

Glad I could help. Can you tell us what addon it was that was causing your problem? That way other people checking this thread out will know what to look for when they encounter the same problem.

I'll check out that other post with the burner problem.

In regards to your dvd burning problems, can you give me information on the following:
1. Type of DVD (brand, max burning speed. Should say on the dvd itself).
2. What kind of error messages imgburn displays
3. When burning your DVD, the DVD drive should have some blinking lights to indicate that it's operating. When the problem occurs, what happens to the lights?
4. Does this problem happen with every ISO file you encounter?

Thanks.

Hello, I'm back. I have a screenshot of the error, and the log. I use Memorex brand dvd -r 's, don't cringe, I've been using them successfully up until a few weeks ago. I have an experimental linux box I've been playing with, and used to same dvd -r blank, using my old Plextor drive, and burning the same image file that's been giving me greef, with success. They're rated at 16x. This is a recent development. The burner I'm using is an LG GSA-H55L, with firmware updated. It's maybe a year old. I don't think that just defragging the HD will fix the issue, even though I've been in the process of doing that, I use "my defrag" works good, but takes forever. It took 16 hours to defrag and optimize my 75 gig boot drive, it must gave been bad. I even tried to increase the buffer size from the default 40mb to 80mb, no help. When it's writing to disc, the lights blink, just like they're supposed to, it starts to write, then the buffer drops to zero. Then it just gives up. I had this issue once before, and it was a rootkit, I cleaned it out, then did a repair install and was good for awhile, then it started up again. I ran various virus, malware and rootkit scans, and found squat. Pardon me, it did find some stuff, but nothing that was related to the issue I'm having. Tried to uninstall the IDE controller, change the DMA settings, nothing.

I'm trying it with another iso file, the buffer still drops to zero right away, but recovers fast enough, to keep writing to disc, the write slows down starting at 83%, but it's still writing, and does finish the burn successfully. I just get the "waiting for buffers to recover", and "waiting for HD activity to reach threshhold level" messages. "Device Buffer", goes crazy. I'm also including a sreenshot of the log from that burn, you can't see the whole thing, but I think you'll get the jist of it.

http://img41.imageshack.us/img41/1499/uglytruthlog.jpg

http://img42.imageshack.us/img42/215...iceioerror.jpg

I'm trying to be thorough, thanks again.

I would run a chkdsk on C:\, the fact that your 75gb drive takes 16 hours to defrag and the errors in the app logs indicate a possible hardware issue. Nero probably caches temp data to C:\ and if C:\ had some messed up sectors etc it could definitely cause the problems you are seeing.

Do you have SMART enabled in the BIOS?

miniboss, first of all, when you post your screenshots, you should at least blur out the stuff you are trying to burn. This stuff could get you banned from the site.... all you need to do when you save the image is open it up in MS Paint and paint over the filename.

Second, like DukaDurka said, do a chkdisk on C: and see if you get any errors.

Third, try playing the movie on your computer from beginning to end and see if it completes. If the burning software has a problem reading the file at a certain point, the movie should have trouble playing at that same point. If you don't know what software to use to play ISO files, you could probably try "VLC" (Video Lan Client) I think it can play iso files directly.

Fourth, and how much free space do you have on your 75gb drive?

Fifth, have you tried burning other files to your cd's? Try writing some random files... or better yet, some files that you probably want backed up. After that is complete, try taking those files from the disc and putting it back to the computer (into a temp drive which you can delete later). If it completes with no problem... then you can rule out a problem with the cd/dvd drive.

Thanks.

Hey, to: DurkaDurka, yes, I do believe SMART is enabled in the BIOS. I did run chkdsk on c:, and it did say windows found some issue and "fixed" it.

To cdn_bc_ca: I have about 1.42gb left. on c:. The iso file is on a different drive, but the burning program I use is installed to c:. As far as the screenshots go, my bad, I'll rub out the "unmentionable stuff", from now on. Thanks for the heads up. After I ran the chkdsk, and "fixed", whatever it fixed, I tried to burn it again, with the same result, the first one is still giving me greef, It may be defective, the other tester I used still dropped to zero on occasion, but it finished the burn. Will doing a repair install have an effect to the issue I'm having? thanks.

Ok, to be honest here, the hard drive is probably ****ed. Doing a repair/format/partition deletion will not give you better stability.

You would be better off to garbage this drive and spend $50 for a new 500GB, 7200RPM system drive. reason being, those check disk errors will probably come back and are indicative of a serious HD problem.

I would back up my files now before the drive dies completely.

I agree. You can confirm the problem with the HDD by playing the iso on the computer. It should stutter or fail to play at some point because of a bad sector or something.

Hey, I have a screenshot of the "chkdsk" on my c:, that I ran today.

http://img718.imageshack.us/img718/4164/chkdsk.jpg

I had already ran it a day or two ago, with the "\f" extension, to "fix" whatever problem it found. Now it's finding it again. Is this the beginning of the end for my hard drive? Thanks.