I've scanned the system with spybot s&d, and deleted all the items. Result: IE still does not work if I remove all the items. So what I did is restore the deleted items in groups of name, like I restored the DSO exploits entries, reboot the pc and then try IE again, to try to pinpoint the problem. As soon as I restored the "ShopAtHome" entries and rebooted the system, IE was working again! The "ShopAtHome" items are in the registry and are located here: ShopAtHome: Interface (Registry key, nothing done) HKEY_CLASSES_ROOT\Interface\{4E570F74-DEEE-4FCF-B960-FEEFA4B8C6FC} ShopAtHome: Interface (Registry key, nothing done) HKEY_CLASSES_ROOT\Interface\{4828C95F-C5DB-4AB6-A945-8D8EC44B98A8} So if I delete those 2 items, my internet will not work at all! not only IE! How could I remove that item and still have my internet working? I mean this is ridiculous, an adware that makes my internet not work!

0

Response #4 has your answer Check your configuration of Ad-ware, maybe thats removing the registry entries for your TCP/IP stack. Spybot S&D will automatically remove the registry entries for your TCP/IPA stack, the removal or fix option {when checking all items] in Spy bot S&D should be used carefully. HTH Alan56

0

Good point. Review the setting 'automatically try to unregister objects prior to deletion' in Scan Now > Customize >TWEAK >Cleaning Engine.

0

You could also try deleting a file called Hosts with no file extension. I delete mine about once a month after doing Adaware. Spybots sometimes put redirections in there to blank or ficticious sites.

0

Grafdude, You can solve that problem by going to the link below, read the page and the lspfix.txt file at the bottom then download the LSPFix.exe either on to your hard drive or a floppy disc. Afterwards run Ad-aware and let it remove everything then run the LSPFix.exe and it will repair your Winsock 2 settings. It's a good idea to have this on a floppy disk for future use on your or someone elses computer that can't access the Internet after removing some spyware that messes with the Winsock settings. LSPFix Tufenuf

0

The above link that Tufenuf provided to the LSPFix has a worm called worm/lovsan.a in it. When you download the LSPFix.exe download that does not require a zip program to open it will install the worm into your computer. I'm sure that no one knew it would do that or they would not have posted it here. How it got into the download of the LSPFix.exe file is beyond me, but it's there. I had downloaded it to a floppy and when the download was complete the virus warning came up on my computer. I did a virus scan of the 3 1/2 foppy that i downloaded and the virus was back into my computer again. So any computer that i would have used the disc in would have been infected.....Red

0

red, That is strange because I had downloaded a few weeks ago and scanned it with my up-to date Norton 2003 AV and it came up clean. I know of several others who have downloaded and ran it recently with no virus problems whatsoever. Is it possible that the floppy you used was infected previously? Tufenuf

0

red, I just downloaded the LSPFix.exe onto a floppy disk and scanned the floppy with my updated NAV 2003 and the file is clean (no viruses). I have no idea on how the file you downloaded was infected. Tufenuf

0

Confirmed... I had just done a full scan - clean -, so perfect time to test the cexx.org site; Both the lsp.exe and lsp.zip came up clean all both downloads and execution.

0

I forgot to mention that i also tried to download the LSPFix.txt to the floppy too. So maybe it was in there. Did you try that? I did not download anything else yesterday except that file and i keep my antivirus {AVG} updated everyday. This is a brand new computer loaded with Windows XP home edition on it and i was working with it to get use to it as i normally use Windows 98 SE..

0

red, I haven't downloaded the lspfix.txt but have opened it from the site numerous times and it never contained any viruses. My Norton is running full time and it would have picked it up as soon as I opened it if it was virus infected. I frequent many forums and know that many people have downloaded and ran the LSPFix.exe and have never had anyone experience any virus problems with that file. Which virus did AVG state it was? Tufenuf

0

The computer said it was identified as the Worm/lovsan.A in C:\windows\system32\msblast.exe.... The antivirus {AVG} deleted it with out a problem. I'm going to go back and see if i can download the file again and see what happens. I'll let you know what happens as soon as i do it.

0

Well I downloaded the file LSPFix.exe the same way i did yesterday and it came in clean with no detection of a virus. I used another floppy from the same one's i had just purchased from Wal-Mart. So i don't think it has anything to do with the floppys. Prior to going to Computing.net i installed and upgraded my antivirus and then installed and upgraded my AD Aware program, then i went to Computing.net.. Now i'm puzzled as to how i got the virus when i downloaded the file. I even put the foppy in the A: drive and did a virus scan on it and got a warning that the virus was back in my computer. This is the first time i can remember getting a virus back into my computer when doing a virus scan of a floppy in drive A: But then the last virus i found on a floppy was the Monkey virus on a set of DOS 5.5 discs. If anyone has a clue as to how i got that virus on this new computer i sure would like to know.

0

red, Read all the info including the various links at the link below and make sure that you download the Microsoft patch. Did you by chance get an e-mail from Microsoft (supposedly) with an attachment to download a patch? This is a way that this virus is spread and Microsft NEVER sends e-mails with a patch attachment. W32.Blaster.Worm/alias=Worm/lovsan.A Tufenuf

0

Tufenuf, Thanks for the link to the site. It seems that i was at fault for the virus invading my computer.In using this computer {only the fourth day} with Win XP on it, i did not have the firewall enabled when i installed the new operating system and did not have the latest updates from Microsoft Updates. The Microsoft site said that it's possible to get this virus just by visiting a web site and not having the latest patch installed. I do beleive this is what happened and not from the download. By the way i beleive the virus was also in my system restore program as another warning popped up saying a virus was detected in Windows\system volume or something close to that. Everything has been cleared up and i thank you again for the help... red

0

red, Glad to help and Thanks for posting back to let us know all is well. Tufenuf

0