DNS ERROR>>>CANNOT CONNECT TO SECURE SITES

Try the following advice from chetnet.co.uk:

Open Internet Options.

Clear the Secure Sockets Layer (SSL) slate and AutoComplete history. To do so:
Click the Content tab.
Under Certificates, click Clear SSL Slate.
Click OK when you receive the message that the SSL cache was successfully cleared.
Under Personal information, click AutoComplete.
Under Clear AutoComplete history, click Clear Forms. Click OK when you are prompted to confirm the operation.
Click Clear Passwords. Click OK when you are prompted to clear all previously saved passwords, and then click OK two more times.
Verify that Internet Explorer is configured to use SSL 2.0 and SSL 3.0. To do so:
Click the Advanced tab.
In the Settings box, under Security, click to select the Use SSL 2.0 and Use SSL 3.0 check boxes (if they are not already selected), and then click OK.

Verify that the Date and Time Settings on Your Computer Are Correct
To verify that your computer is configured with the correct date and time settings:
Click Start, and then click Control Panel.
Click Date, Time, Language, and Regional Options, and then click Date and Time.
Click the Date & Time tab.
Make sure that the date and time settings are configured to use the current date and time, and then click OK.

Verify that Your Computer Is Using 128-Bit Encryption
To do so:
In Internet Explorer, on the Help menu, click About Internet Explorer.
The level of encryption on your computer appears next to the words Cipher Strength. Verify that the Cipher Strength value appears as 128-bit.
Click OK.

everything is how it should be, but still no secure sites.....doesn't anybody know what is wrong with my computer????? Crunchie, I am not saying you don't know, it is just that I have had tons of experts tell me the same thing you are telling me, and nobody knows what is wrong.

Have a look here http://service1.symantec.com/SUPPORT/nip.nsf/docid/2001092809135036?Open&src=&docid=2001121211273436&nsf=nip.nsf&view=docid&dtype=&prod=&ver=&osv=&osv_lvl=

I only have Nortan Anti-Virus 2003. I am lost on what to do now.

Instructions there are for 2003.

Open Event Viewer (in your Administrative Tools folder) and look through your logs for any errors relating to DNS, SSL, or Certificates. If you find such any errors, please post the full text of the messages, especially the specific error codes.

- I see that you have AOL, which uses a modified version of Internet Explorer. Does the problem happen when using AOL's browser or the stand-alone version of IE, or does it only happen with one or the other? As a related test, you could download Netscape or Firefox and see if problem occurs in those browsers as well as IE. Doing so would at least let us know if the problem is specific to IE or not.

- How are you connected to the Internet? If you're going through a hardware router/firewall or a proxy, it's possible that the problem lies there.

I do not have any errors for DNS, SSl or Certificates. I do have a few errors telling me something about the registry and about IPSEC filters. This problem occurs using both IE and AOL browsers. I attempted to use Netscape a few months ago and got the same error. I am connecte through dial-up at the moment, but in 10 days I will be up and running DSL. No router and all firewalls are disabled.

I had difficulty with secure (https) websites. I found this post on another site. I didn't trust winsockxpfix so i just manually ran netsh int ip reset logfile.txt and rebooted. That did the trick.It is advisable to back up your registry first since that command changes registry entries.

The second post, I pasted at the bottom, Was also helpful for some people.

Good luck!!!

++++++++++++++++++++++++++++++++++++++++++++++++++
FIXING THE TCP/IP STACK AND WINSOCK

TCP/IP stands for Transmission Control Protocol / Internet Protocol and the TCP/IP Stack is the set of layers of communications protocol that connects computers on the internet. In Windows, this is controlled by a file called Winsock.dll. If you are having troubles relating to this type of problem, some of the symptoms you encounter may be that you can "ping" pages on the internet, but your browser always returns a "page cannot be displayed" error.

Sometimes this type of error develops as a result of running a program like LavaSoft's AdAware or SpyBot Search & Destory in order to get rid of "spyware" running behind the scenes on your computer. These programs may inadvertently destroy your internet connectivity by removing certain necessary Registry entries. You might also develop such a problem after removing network software incorrectly or uninstalling a firewall improperly, or even running a Registry cleaner a little too recklessly.

In previous versions of Windows, you can reinstall the TCP/IP protocol fairly easily, but in Windows XP the TCP/IP stack is a core component of the OS. However, you can "reset" the TCP/IP to the same state it was in as when you first installed Windows XP, as described in this Microsoft Knowledge Base article:

http://support.microsoft.com/default.aspx?scid=kb;en-us;299357
How to Reset Internet Protocol (TCP/IP) in Windows XP

What you basically have to do is to type at a Command Prompt a command like the following:

netsh int ip reset logfile.txt

When this command is executed, it rewrites pertinent registry keys that are used by the Internet Protocol (TCP/IP) stack to achieve the same result as the removal and the reinstallation of the protocol. The registry keys affected are at the following:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DHCP\Parameters\

There is a program available called WinsockXpFix.exe that does the above, and that also does some other things that are aimed at fixing Winsock in XP. It replaces Registry keys here:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Winsock

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Winsock2

It backs up a file called Hosts in the folder WINDOWS\system32\drivers\etc and then replaces it with a default new one. The Hosts is a plain text file linking web or network addresses with their IP addresses; this file may contain invalid entries due to modified web page addresses, and may become corrupted as the result of spyware, trojans, the use of file transmission networks such as KaZaa, etc.

After doing all this it reboots the computer.

The WinsockXpFix.exe program can be downloaded directly from the author, here:

http://members.shaw.ca/techcd/WinsockXPFix.exe
+++++++++++++++++++++++++++++++++++++++++++++++++++

Basically I found an article at Microsoft's site
entitled "How to troubleshoot situations where you
cannot complete MSN sign-up or connect to SSL secured
(128-Bit) Web sites by using Internet Explorer in
Windows XP" ... for some reason this forum is not
letting me add a link to the article. Let me know if
you can't find the article and need a link.

To make a very long story short ... all I had to do
was re-register the following .dll files:

Softpub.dll
Wintrust.dll
Initpki.dll
Dssenh.dll
Rsaenh.dll
Gpkcsp.dll
Sccbase.dll
Slbcsp.dll
Cryptdlg.dll

To re-register these files, follow these steps:

-----------------------------------------------

1. Click Start, and then click Run.

2. In the Open box, type one of the following
commands, and then click OK (copy and paste is your
best friend):

regsvr32 softpub.dll
regsvr32 wintrust.dll
regsvr32 initpki.dll
regsvr32 dssenh.dll
regsvr32 rsaenh.dll
regsvr32 gpkcsp.dll
regsvr32 sccbase.dll
regsvr32 slbcsp.dll
regsvr32 cryptdlg.dll

4. Click OK when you receive the message that says
DllRegisterServer in FileName succeeded.

5. Repeat for each command line listed above