Unable to browse Internet w/IE or FF, can ping, can browse intranet pages

I have a Windows XP machine on a network with 20 other computers. This is the only  machine with a problem. It will not access any website. I have tried Internet Explorer and Firefox and both DO NOT work. I can open up Outlook web access through the local network and the web interface on our copy machine. When I try to go to www.yahoo.com it fails. When I try to go to yahoo.com using the IP address, it fails. I can ping www.yahoo.com and any other address I put in. From command line, everything works. From the browser, only internal works, nothing external. I hooked up a laptop to the exact same cable and the laptop works fine. I restored windows to a time before this quit working and it still doesn't work. I uninstalled and reinstalled the NIC, reset WINSOCK, flushed DNS, reset IE settings, logged in as a different user, repaired TCP/IP connection, tried dynamic and static IP address, all firewalls are disabled. I am out of options. PLEASE HELP!!!
LakelandOfficeAsked:
Who is Participating?
 
LakelandOfficeConnect With a Mentor Author Commented:
Problem with the NIC. Installed a USB NIC and it works just fine. Not sure why though.
0
 
netjgrnautCommented:
Do you by any chance have Norton or Symantec installed?

Have you tried an HTTPS site for testing (in addition to a plain old HTTP)?
0
 
ventaurCommented:
In IE, go to the Tools menu, then Options. On the Security tab, verify that the Internet zone is set to Medium-high, or lower (i.e., Medium, Low). Also, be sure Yahoo is not listed under Restricted sites.
0
The new generation of project management tools

With monday.com’s project management tool, you can see what everyone on your team is working in a single glance. Its intuitive dashboards are customizable, so you can create systems that work for you.

 
LakelandOfficeAuthor Commented:
we use Trend Micro AV. All computers have it. AV only, no firewall. Just tried https://www.paypal.com and same result.
0
 
LakelandOfficeAuthor Commented:
ventaur - i used yahoo as an example, tried many websites. Even the direct IP address for yahoo and other sites. Firefox doesn't work either.
0
 
netjgrnautCommented:
No proxy server used on the network?  No proxy server set on the client?

You said ping works.  Try this in a cmd window:

C:\> telnet www.yahoo.com 80

What happens?

Hit enter a couple of times.  What happens?
0
 
LakelandOfficeAuthor Commented:
no proxy

 telnet result - could not open connection to host, connect failed.

Tried telnet locally - can't telnet locally. I can telnet into our copy machine from my PC but get connect failed on the problem PC. Interesting!!!!
0
 
netjgrnautCommented:
But you can get to local web sites?

Are you using the "80" at the end of the telnet command?  Just making sure - that'll connect you to the HTTP listener instead of the (non-existent) telnet listner.

Using basic telnet - to your local copier - are you on the same subnet?  

I'd be looking at default gateway on the problem host, except you said ping works to outside sites.

Is there any possibility that you've got a duplicate IP address on the problem host?

This has some signs of a routing issue, but I can't put my finger on what exactly (since ICMP appears to be working).  Do you have more than one subnet at your site?  Can you communicate with anything *other* than ICMP across subnet boundaries?

Otherwise, it sure looks like a firewall problem, where either outbound or inbound TCP traffic is being blocked.  More details about your network config would be helpful.
0
 
LakelandOfficeAuthor Commented:
yes, local websites (web interface on copier, sonicwall interface and OWA) work fine. I used port 80 on the telnet for yahoo.com but not when trying to telnet to the copy machine. The copy machine accepts 23. I can telnet straight to the copier with my computer on same network but can't telnet using the problem computer but can access the web interface for the same copier using IE.

Same subnet

default gateway is the same as my computer which works fine.

it is DHCP so not likely it's a duplicate, no duplicate errors and I would think it would cause more issues than just browsing.

there are 3 subnets. each subnet is connected by an MPLS. I am on the same network as the problem computer. The problem computer can ping any address on its own subnet as well as a server at each of the other subnets.

sonicwall firewall on network, no one else having trouble. no firewall on the problem pc.
0
 
netjgrnautCommented:
OK... so
ICMP works everywhere  
TCP/80 works locally across subnets
TCP/23 fails locally
TCP/everything fails beyond the network perimeter

Sound pretty much like what you're going through?

Out of curiosity, run nslookup.  The execute "server 8.8.8.8".  Then execute "www.vifi.com".  Does it work?
0
 
LakelandOfficeAuthor Commented:
yep, that sounds about right and nslookup works on both.
0
 
netjgrnautCommented:
OK, so that means you're passing traffic to Google's public DNS server.  That's TCP/53 by default (MS), UDP/53 default (everyone else).

Very specific service blocks, and the fact that some of them are local (the telnet test) really points to the XP host itself as the source of the problem.

Not very insightful, I realize.  I'm stumped too.  I'd be looking for errant software on the broken host.  Malware, broken software.  Can you roll it back via system restore to a point in time when it worked?
0
 
LakelandOfficeAuthor Commented:
i rolled back system restore to 2 days ago when it was working and it no luck
0
 
netjgrnautCommented:
Sounds like it's time for a re-image.
0
 
johnb6767Commented:
I would dl and run TDsSKiller to make sure you don't have a root kit.. Have seen it do weird things....
0
 
LakelandOfficeAuthor Commented:
I figured out the solution myself. Nothing suggested by everyone else fixed the problem.
0
All Courses

From novice to tech pro — start learning today.