so I restored the ad's that were quarantined on the day I had the problem... and all is back to normal

Um, let's ponder this for a moment: you "fixed" your connectivity problem by reinstalling the malicious or infected files??

Isn't that sort of like a doctor removing a diseased liver from a patient, but then putting it back because he discovered that the patient couldn't function without a liver? :eek: :p

Some malicious programsdo integrate themselves into the chain of your networking software in such a way that removing them "breaks" the chain of network communication. The solution, however, is not to reinstall the offending programs, but to use one of the utilities such as LSPFix or WinsockXPfix to repair the damage.

By restoring the quarrantined objects, you've almost certainly reintroduced malicious code into your system.

Glad to hear the "solution" was only temporary! :mrgreen:

Seriously though, here's a bit more of an explanation of what I said earlier:

The programs I mentioned fix damage done by malicious programs to your LSP stack:

LSP = Layered Service Provider. Very basically, this is a Microsoft networking software component which is an extention/addition to the core TCP/IP software (TCP/IP stack). The word "layered" refers to the fact that many different individual networking components can be layered/stacked/chained together such that they act as a single "pipeline" for network communication. Unfortunately, malicious programs can insert themselves into this chain to alter that communication; think of it as a parasitic biological organism grafting itself into the ladder structure of DNA.
When the offending program is removed, it leaves a broken link in the chain, which needs to be repaired.

The two programs I mentioned (links below) can do just that, but they should not be used unless you know what you're doing or have received instructions from an expert. Having the programs "fix" the wrong thing can break your networking software even further.

http://cexx.org/lspfix.htm
http://www.bu.edu/pcsc/internetaccess/winsock2fix.html


What you should do:

1. Run Ad Aware and SpyBot again, having them fix everything they find.

2. Download and run the HijackThis utility; among other things, it can detect the presence of a broken LSP stack. In our Security forum you will find many threads containing instruction on just how to use HijackThis; follow those instructions carefully and post the contents of the log file that HijackThis generates in a new thread in the Security forum, not in this forum. Our security experts will analyse your log and guide you through the proper repairs.