Unable to download/run ActiveX controls

  • Thread starter Thread starter John S
  • Start date Start date
J

John S

I keep getting the "Your current security settings prohibit
running ActiveX controls on this page. As a result, the
page may not display correctly".

I'm running IE6, WinXP SP1. I do not have a domain controller.

Here's what I've tried:

Verified that the security settings in ALL zones
(Tools/Internet Options/Security) are set to:

Download signed ActiveX controls (prompt or enable)
Download unsigned ActiveX controls (prompt)
Initialize...not marked as safe (prompt)
Run ActiveX controls and plug-ins (enable)
Script ActiveX controls marked safe for scripting (enable)

I've also tried adding the URL of the site to the "Trusted
sites" zone all with no luck. This occurs on several URLs
including Windows Update, the Macromedia shockwave site.
Pretty much any site that uses ActiveX.

I'm configured to use only the local machine settings for
the security zones, in other words:

HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\CurrentVersion\Internet
Settings\Security_HKLM_Only

is set to 1. I don't think I have any other group policies
in effect.

I've also tried reregistering a bunch of the crypto DLLs, i.e.

regsvr32 softpub.dll
regsvr32 wintrust.dll
regsvr32 initpki.dll
regsvr32 dssenh.dll
regsvr32 rsaenh.dll
regsvr32 gpkcsp.dll
regsvr32 sccbase.dll
regsvr32 slbcsp.dll
regsvr32 cryptdlg.dll
regsvr32 softpub.dll

SSL works fine so I don't think it's a problem with the
crypto libs.

Any ideas? Anyone?

Thanks!
John S
 
Hi John :-)

Try setting your Security to Med or Low and see if that helps:

or........

If you have McAfee: disable the McAfee ActiveX controls Applet filters in
the Internet Filter window when you select Customize your VShield settings

or.........

"Your current security settings prohibit running Active X controls on this
page. As a result pages may not display correctly."
http://www3.telus.net/dandemar/acxen.htm
or
http://support.microsoft.com/default.aspx?scid=kb;EN;Q319585&LN=EN

or........

Active x Errors and Settings
Try here:
http://inetexplorer.mvps.org/answers3.htm#activex

or.........

1. Try temporarily disabling your firewall to see if HTTPS then works
correctly.
2. You may have other software installed that is blocking ActiveX content.
3. An option in anti-spyware software you installed and enabled.
4. Could be a BHO (browser helper object) that you installed to provide
additional protection; use BHO Demon to see them, or use Spybot's tools to
list them.
5. You may have used SpywareBlaster to install kill switches in the registry
so certain ActiveX controls will not run, and you've hit one of those
malware AX controls.
6. It may be that you installed lots of other stuff that will affect the web
over which IE has no control.
7. It may be that the deveoper of the website has programmed something into
the page that is causing the problem. You will have to contact the
webmaster and let them know.

and.............

ActiveX Error Message
http://www.kccsoft.com/etraining/technical.asp#activex
http://www3.telus.net/dandemar/acxen.htm

ActiveX problems in IE
http://inetexplorer.mvps.org/answers3.htm#activex

See: "Various Registry Fixes."
http://mvps.org/winhelp2002/unwanted.htm


If these steps do not resolve your problem, please post back to this thread
with the details and any error messages.

Hope this helps

Jan :)
Smiles are meant to be shared,
that's why they're so contagious.

Please reply to the newsgroup so others may benefit.
Replies are posted only to the newsgroup for the benefit or other readers.

How to make a good newsgroup post:
http://www.dts-l.org/goodpost.htm
 
Hi Jan,

Thanks for the suggestions. Below are my experiences with
the links you provided:
Try setting your Security to Med or Low and see if that helps:

I get the same error message.
If you have McAfee...

I don't have any antivirus software currently running.

None of the 3 suggestions here worked.

This one doesn't quite apply to my situation--all pages
containing ActiveX controls produce the same error message,
not just Windows Update.

No luck here. None of those apply to my specific situation.
1. Try temporarily disabling your firewall to see if HTTPS
then works correctly.

HTTPS works fine. No firewall software running at this time.
2. You may have other software installed that is blocking
ActiveX content.

I don't have much running on this computer. The only thing
I can think of here is PopupCop, but I've uninstalled that
and still no luck.
3. An option in anti-spyware software you installed and
enabled.

Not currently running any anti-spyware software.
4. Could be a BHO (browser helper object) that you installed to provide
additional protection; use BHO Demon to see them, or use Spybot's tools to
list them.

None show up.
5. You may have used SpywareBlaster to install kill switches in the registry
so certain ActiveX controls will not run, and you've hit one of those
malware AX controls.

Never used it. Anyway, Windows Update and Shockwave seem
unlikely candidates to be flagged as malware.
6. It may be that you installed lots of other stuff that will affect the web
over which IE has no control.

I can't rule that out with absolute certainty, but I can't
think of anything specific.
7. It may be that the deveoper of the website has programmed something into
the page that is causing the problem. You will have to contact the
webmaster and let them know.

Windows Update and Macromedia Shockwave seem unlikely
candidates. Anyway these sites used to work for me.

Nope. This is just a suggestion to check the security
settings in IE.

Tried that one already.

Tried that one already.

Tried all applicable fixes, no luck.


I've tried a different (administrator level) account but it
has the same problem. This appears to be a machine level
problem. I did change some group policy settings, but as
far as I can tell, I've changed them back.

Perhaps it is a file permission problem? In other words,
is it possible that for some reason, I don't have
permission to save the control in C:\windows\Downloaded
Program Files? It seems to be a special folder of some
sort because I can't view the security permissions.

John
 
Hi :-) (e-mail address removed) wrote:

Try the following and see if it helps:

Enable 3rd party browser extensions
Tool>Internet Options>Advanced> check the box next to Enable 3rd party
browser extensions (requires restart)

Problems accessing secure sites/cannot install 128 bit encryption
http://inetexplorer.mvps.org/answers2.htm#secure_sites

Troubleshooting Secure Sites in WinXP SP2
http://support.microsoft.com/?kbid=870700

Allow active content to run in files on My Computer - Windows XP Service
Pack 2:
http://www.winxptutor.com/lmzunlock.htm

To download Java VM for XP:

Download the Microsoft Java VM for Windows XP here
http://windowsupdate.microsoft.com

You might also try installing the Windows Script 5.6 for Windows 2000 and XP
if you have not already done so. The install includes a new jscript.dl
http://www.microsoft.com/downloads/...43-7E4B-4622-86EB-95A22B832CAA&displaylang=en

Hope this helps

Jan :)
Smiles are meant to be shared,
that's why they're so contagious.

Please reply to the newsgroup so others may benefit.
Replies are posted only to the newsgroup for the benefit or other readers.

How to make a good newsgroup post:
http://www.dts-l.org/goodpost.htm
 
Hi :-)

Here are a couple more bits of information you might try as well. Don't
know if it addresses your problem correctly, but thought it might help:

Problem reaching Windows Update
http://v4.windowsupdate.microsoft.com/troubleshoot/#Problem reaching Windows Update

In case you can not access this site either, here is the information it
provides:
~~~~~~~~~~~~~~~~~~~~~~~~~
When you attempt to use the Windows Update site, you may receive an error
message similar to the following:

Administrators Only (-2146828218) To install items from Windows Update, you
must be logged on as an administrator or a member of the Administrators
group. If your computer is connected to a network, network policy settings
may also prevent you from completing this procedure.

You receive this message even though you are already logged on as an
administrator or a member of the Administrators group.


Resolutions:

This issue indicates a problem accessing a resource and may not indicate a
lack of administrative privileges. One of the resolutions below may help.

To resolve this issue, follow these steps:

1. Click "Start," and then click "Run."
2. In the Open box, type regedit and then click "OK."
3. Locate and select the following registry key:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\WindowsUpdate
4. click "Edit," and then click "Permissions."
5. Click "Add," and then type "Everyone" in the
dialog box that appears.
6. Click "Check Names," and then click "OK."
7. Select "Everyone" in the "Group or user names" list.
8. Under Permissions for "Everyone," select the "Full Control" check box
in the "Allow" column. Note that the "Read" check box in the "Allow" column
is now also selected.
9. Select each user, in turn, in the "Group or user names" list, and then
verify
that no check boxes are selected in the "Deny" column. Clear any check boxes
that are selected in the "Deny" column.
10. Click "Advanced," and then select the "Replace permission entries on all
child objects with entries shown here that apply to child objects" check
box, and then click "OK."
11. Click "Yes" if you are prompted for confirmation.

NOTE: You should also check the firewall and the proxy server settings and
configurations, or ask the appropriate administrator to do so.
----------------------------------------------------------------------------
----
You can work around this issue by adding the following to the exceptions
list in the Internet

Options Proxy Settings:

Windowsupdate.microsoft.com
V4.Windowsupdate.microsoft.com
Download.Windowsupdate.com

To access the Exceptions settings.
1. Open Internet Explorer
2. Click "Tools," and then click "Internet Options."
3. Click "Connections," and then click "LAN Settings."
4. Click "Advanced" and add windowsupdate.microsoft.com to the exceptions
list.
----------------------------------------------------------------------------
----
1. Open Internet Explorer, click "Tools" and then click "Internet Options."
2. Click "Advanced".
3. Scroll down until you see "Use HTTP 1.1 through Proxy Connections," and
then select the
check box.
4. Click "OK."
5. Close and restart Internet Explorer. You should now be able to connect to
Windows Update.
----------------------------------------------------------------------------
----
Rename the subdirectory C:Windows\System32\Catroot2 to
C:Windows\System32\Catroot2temp\.
Restart the computer and then try to run Windows Update.
~~~~~~~~~~~~

Hope this helps

Jan :)
Smiles are meant to be shared,
that's why they're so contagious.

Please reply to the newsgroup so others may benefit.
Replies are posted only to the newsgroup for the benefit or other readers.

How to make a good newsgroup post:
http://www.dts-l.org/goodpost.htm
 
Hi Jan,

Sadly none of these helped.
Enable 3rd party browser extensions

This was already enabled.
Problems accessing secure sites/cannot install 128 bit encryption
http://inetexplorer.mvps.org/answers2.htm#secure_sites

I checked everything here except reinstall IE6. No luck.
Troubleshooting Secure Sites in WinXP SP2
http://support.microsoft.com/?kbid=870700

Doesn't apply. I don't have SP2 installed.
Allow active content to run in files on My Computer - Windows XP Service
Pack 2:
http://www.winxptutor.com/lmzunlock.htm

Doesn't apply. I don't have SP2 installed.
Download the Microsoft Java VM for Windows XP here
http://windowsupdate.microsoft.com

That won't work since I can't run Windows Update.
You might also try installing the Windows Script 5.6

Tried that. Didn't make a difference.
Problem reaching Windows Update
http://v4.windowsupdate.microsoft.com/troubleshoot/#Problem reaching Windows Update

Nope. I tried the one relating to the permissions setting
but it didn't work either.
Hope this helps

Thanks for trying to help!

I see IE downloading the cab file for Windows Update, i.e.
wu_website.cab (I did a packet trace using Ethereal), but
it doesn't seem to be able to install it or run it. Is
there some sort of log file for IE6 that shows what error
occurred?

John
 
Hi John S :-)

Dang! When ya get a bone.... ya get a good one, doncha! ;o)))

'k.....try this:

Troubleshooting: Your current security settings prohibit running Active X
controls
http://www.switcharoozoo.com/tshoot.htm

Now, here's a little test that will let you know if your ActiveX is working
or set properly:

Test Your ActiveX Installation
http://www.pcpitstop.com/testax.asp

When you first open the site you'll get a box that asks if your want to
allow the ActiveX, say no. Then you'll get the box that tells you that the
page may not display correctly...s'alright. Then follow the instructions
there and see if it helps.

If not......try the following:

Your current security settings prohibit running Active X controls
http://www.auburn.edu/oit/support/employees/browsers/ht_ie6_browser_medium_security.php

223310 - Your Current Security Settings Prohibit Running ActiveX Controls
on This Page...
http://support.microsoft.com/defaul...port/kb/articles/q223/3/10.asp&NoWebContent=1

also.....

Clearing the TIF Cache -

Safely Delete the Temporary Internet Files
http://www.mvps.org/winhelp2002/delcache.htm

or...

You may have downloaded a security patch from MS that reset your security
settings.

In Internet Explorer:
Click Tools>Internet Options>Security tab>click the Custom Level button:

Change any ActiveX items set to Disable to Prompt, you can change those
settings back to Disable one at a time to see if any may be the problem.

Overall, tor best security set Active X settings to:

My settings are for Active X are:
Prompt
Disable
Disable
Prompt
Prompt

If the security level is set to high then it will be blocking active x
controls:
Set the security level to Medium.

or...........

Be sure your Java is "Enabled."

To enable Java, take these steps:
Internet Explorer User:
From the Menu bar, select Tools.
Select Internet Options.
Select Security.
Internet.
Click Custom Level.
Scroll down the Security Settings box to Microsoft VM, then Java Permission,
select Medium Safety. Click OK.
A prompt box will now appear asking "Warning... Are you sure you want to
change the security settings for this zone? Yes/No." Click Yes.
Click OK.

also...................

Here is a bit more information that might be of help -

Courtesy of Eric Howes -
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-------------------------------------
How can I tell which entry is causing
a problem with a web site?
-------------------------------------

Web pages can draw content from multiple sources, including third party
sources. Thus, for example, you might visit www.cnn.com and encounter a
widget on that page that doesn't work. But that widget isn't being drawn
from cnn.com (which isn't even IE-SPYAD). In this case, you'll have to
identify the sources for the content on cnn.com's home page. It's likely
that the widget is being pulled from some third-party source (say,
doubleclick.net) that IS in IE-SPYAD's list of Restricted domains and
servers. If you can identify the source for content that isn't working, you
can then remove the entry which is causing the problem from the Restricted
sites zone.

It can be a bit tricky to identify all the sources for a web page's content.
One good tip-off that a web page is drawing content from multiple sources is
the "Mixed" zone icon that you might see in the bottom right-hand corner of
Internet Explroer. A "Mixed" zone means that a web page is drawing content
from multiple sources which fall into different zones. One of those sources
is likely in the Restricted sites zone.

There are several ways to identify all the sources for a web page's content:

1. Info on the page itself

Hover your mouse over images (esp. banner ads) and other links and watch the
bottom band of Internet Explorer, which previews the sites which are linked
to. You can also right-click on images and look at the "Properties" for
those images. Either method will provide some indication as to where page
content is being drawn from.

2. The IE6 Privacy Report

In Internet Explorer 6.0, go "View" >> "Privacy Report." The Privacy Report
gives you a rundown of "Web sites with content on the page."

3. Personal firewall logs

Most personal firewalls provide logging of some sort, and you can look
through your firewall's logs to get some indication of the sources for a
page's content.

4. View the HTML source

Go "View" >> "Source" to open the HTML source for a page. Looking through
HTML can be a pain, but it does reveal all the sources for page content.
Note: if the site uses frames, you'll have to open the framed page
separately (right click on the framed page, then "Open Frame in New
Window"). Then you can "View" >> "Source."

It's not always difficult to track down the specific entry in the Restricted
sites zone that's causing a web site not to work, but sometimes it does
require some patience.

Hope the above is of assistance to someone.

Best,

Eric L. Howes
~~~~~~~~~~~~~~~~~~~~~

WHEW!! If these steps do not resolve your problem, please post back to this
thread with the details and any error messages. :-)

Hope this helps

Jan :)
Smiles are meant to be shared,
that's why they're so contagious.

Please reply to the newsgroup so others may benefit.
Replies are posted only to the newsgroup for the benefit or other readers.

How to make a good newsgroup post:
http://www.dts-l.org/goodpost.htm
 
Hi Jan,
Dang! When ya get a bone.... ya get a good one, doncha!
;o)))

Yeah, tell me about it! :)

Nope. Nothing here worked.

I followed the instructions here but it didn't fix it. The
only possibility is that perhaps I have spyware installed
that prevents activex from running. I used ad-aware but it
didn't find anything.

Nope. That one just tells me to change my security settings.

Ditto.
Safely Delete the Temporary Internet Files
http://www.mvps.org/winhelp2002/delcache.htm

Didn't work....sigh!
You may have downloaded a security patch from MS that reset your security
settings.

Nope. I checked my settings many times.
My settings are for Active X are:
Prompt
Disable
Disable
Prompt
Prompt

Those are mine as well. For all zones.
Be sure your Java is "Enabled."

Nope. Didn't help.
Here is a bit more information that might be of help -

Courtesy of Eric Howes -

Nothing here helped either. :(

I did find something interesting: A file was placed in my
IE cache that contains details of the problem. Here is the
one that is created when I go to WindowsUpdate:

<html><pre>
*** Code Download Log entry (08 Oct 2004 @ 21:47:35) ***
Code Download Error: (hr = 800b010b) Generic trust failure.

Operation failed. Detailed Information:
CodeBase:
http://v5.windowsupdate.microsoft.c...ls/en/x86/client/wuweb_site.cab?1097297254691
CLSID: {6414512B-B978-451D-A0D8-FCFDF33E833C}
Extension:
Type:

LOG: Reporting Code Download Completion: (hr:800b010b
(FAILED), CLASSID: 6414512b...,
szCODE:(http://v5.windowsupdate.microsoft.c...ls/en/x86/client/wuweb_site.cab?1097297254691),
MainType:(null), MainExt:(null))
--- Detailed Error Log Follows ---
LOG: Download OnStopBinding called (hrStatus = 0 /
hrResponseHdr = 0).
LOG: URL Download Complete: hrStatus:0, hrOSB:800b010b,
hrResponseHdr:0,
URL:(http://v5.windowsupdate.microsoft.c...ls/en/x86/client/wuweb_site.cab?1097297254691)
LOG: Reporting Code Download Completion: (hr:800b010b
(FAILED), CLASSID: 6414512b...,
szCODE:(http://v5.windowsupdate.microsoft.c...ls/en/x86/client/wuweb_site.cab?1097297254691),
MainType:(null), MainExt:(null))

</pre></html>


Thanks for helping! :)

John
 
Hi John :-)

Shooooeeee!!! Still evil!.....<sigh>

You may very well have a hijacker, malware, spyware or parasites on your
system causing this problem. Thus, we'll start here......in addition to
running your updated anti-virus program, you should do the following to be
sure none of these are present on your system. Although you may have
already run one or more of the programs, please do so again according to the
instructions below. Some variants of malware can replicate themselves over
and over if not removed properly. Please follow all instructions carefully
to be sure your system is thoroughly cleaned:

Dealing with Unwanted Spyware and Parasites:
http://mvps.org/winhelp2002/unwanted.htm
Be sure to run CWShredder, Ad-aware and Spybot.
Also be sure to use the HijackThis. Please do not post your log to this
newsgroup, but to the SpywareInfo or the Aumha HiJackThis forums
http://forum.aumha.org/viewforum.php?f=30, to allow the experts there to
evaluate your log and advise you of the necessary steps to clean your
system.

CAUTION!!!!! Before you try to remove spyware using any of the programs
below, download a copy of LSPFIX from any of the following sites:
http://www.cexx.org/lspfix.htm
http://www.spychecker.com/program/winsockxpfix.html
(if your OS is Win2k or XP) The process of removing certain malware may kill
your internet connection. If this should occur, this program, LSPFIX, will
enable you to regain your connection.

Also, get a copy of WINSOCKXPFIX available at:
http://www.spychecker.com/program/winsockxpfix.html
and
WinsockXP Fix- WinXP
http://www.spychecker.com/program/winsockxpfix.html
Also, with instructions, at
http://www.iup.edu/house/resnet/winfix.shtm
also
From LavaSoft- all versions of Windows-
http://digital-solutions.co.uk/lavasoft/whndnfix.zip
also ....
(NOTE: It is reported that in XP SP2, the command netsh winsock reset
will fix this problem without the need for these programs.)

or ........

Winsock Fix Utility
http://www.dfwonline.net/files/WinsockFix.zip

Also.........

Courtesy of Jim Byrd -

Download Sysclean.com, from Trend Micro, here:
http://www.trendmicro.com/download/dcs.asp along with the latest pattern
file, here:
http://www.trendmicro.com/download/pattern.asp
Be sure to read the "How-to" info here:
http://www.trendmicro.com/ftp/products/tsc/readme.txt
You might also want to get Art's updater, SYS-UP.Zip, here for future
updating of these: http://home.epix.net/~artnpeg/.
(If you download and use the updater from the beginning, it will
automatically handle downloading the other files. Place them in a dedicated
folder after appropriate unzipping, and then run. This scan may take a long
time, as Sysclean is VERY extensive and thorough

If these steps do not resolve your problem, please post back to this thread
with the details and any error messages.

Hope this helps

Jan :)
Smiles are meant to be shared,
that's why they're so contagious.

Please reply to the newsgroup so others may benefit.

How to make a good newsgroup post:
http://www.dts-l.org/goodpost.htm




Hi Jan,
Dang! When ya get a bone.... ya get a good one, doncha!
;o)))

Yeah, tell me about it! :)

Nope. Nothing here worked.

I followed the instructions here but it didn't fix it. The
only possibility is that perhaps I have spyware installed
that prevents activex from running. I used ad-aware but it
didn't find anything.
security.php

Nope. That one just tells me to change my security settings.
http://support.microsoft.com/default.aspx?scid=http://support.microsoft.com :80/support/kb/articles/q223/3/10.asp&NoWebContent=1

Ditto.

Safely Delete the Temporary Internet Files
http://www.mvps.org/winhelp2002/delcache.htm

Didn't work....sigh!
You may have downloaded a security patch from MS that reset your security
settings.

Nope. I checked my settings many times.
My settings are for Active X are:
Prompt
Disable
Disable
Prompt
Prompt

Those are mine as well. For all zones.
Be sure your Java is "Enabled."

Nope. Didn't help.
Here is a bit more information that might be of help -

Courtesy of Eric Howes -

Nothing here helped either. :(

I did find something interesting: A file was placed in my
IE cache that contains details of the problem. Here is the
one that is created when I go to WindowsUpdate:

<html><pre>
*** Code Download Log entry (08 Oct 2004 @ 21:47:35) ***
Code Download Error: (hr = 800b010b) Generic trust failure.

Operation failed. Detailed Information:
CodeBase:
http://v5.windowsupdate.microsoft.c...ls/en/x86/client/wuweb_site.cab?1097297254691
CLSID: {6414512B-B978-451D-A0D8-FCFDF33E833C}
Extension:
Type:

LOG: Reporting Code Download Completion: (hr:800b010b
(FAILED), CLASSID: 6414512b...,
szCODE:(http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/c
lient/wuweb_site.cab?1097297254691),
MainType:(null), MainExt:(null))
--- Detailed Error Log Follows ---
LOG: Download OnStopBinding called (hrStatus = 0 /
hrResponseHdr = 0).
LOG: URL Download Complete: hrStatus:0, hrOSB:800b010b,
hrResponseHdr:0,
URL:(http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/clie
nt/wuweb_site.cab?1097297254691)
LOG: Reporting Code Download Completion: (hr:800b010b
(FAILED), CLASSID: 6414512b...,
szCODE:(http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/c
lient/wuweb_site.cab?1097297254691),
MainType:(null), MainExt:(null))

</pre></html>


Thanks for helping! :)

John
 
Hi Jan,

I fixed it! Here's one to add to your list:

http://www3.telus.net/dandemar/0x80092026.htm

Figuring that I could just install the activex control for
WindowsUpdate manually, I download the cab file, expanded
it and registered the COM component (DLL). This time
WindowsUpdate returned the error code 0x8009202. Googling
this gave me that page.

Thanks for all your help!

John
 
Hi John :_0

Ha!!! Right on! Good job!

You're very welcome! Glad to hear you were able to resolve your problem.
Thank you for posting back and letting us know what worked for you, and for
the benefit of other readers who might have a similar problem. :-)

Jan :)
Smiles are meant to be shared,
that's why they're so contagious.







Hi Jan,

I fixed it! Here's one to add to your list:

http://www3.telus.net/dandemar/0x80092026.htm

Figuring that I could just install the activex control for
WindowsUpdate manually, I download the cab file, expanded
it and registered the COM component (DLL). This time
WindowsUpdate returned the error code 0x8009202. Googling
this gave me that page.

Thanks for all your help!

John
 
John,

You are the man....I have the same problem and it was bugging me pretty bad.
Now I am free..

Thanks,
Song K.
 
Back
Top