|
I have a PC running Windows XP Pro Service Pack 2. Struck by the viruses, malwares. IE pops new windows every 15 minutes. I messed up LSP (Layered Service Provider) in Windows LSP stack, no network anymore. I reinstall Windows XP, select "Repair" doesn't help too much. After installation, if I reboot it again, Windows XP into The Blue Screen of Death (BSOD), but I can get into Safe Mode. I know it's problem Windows XP with display card driver. But I can't uninstall it. Fortunately, I have another same hard ware specification box running Windows XP Pro Service Pack 2 as well. I swap hard disk and video card. Unbelievable! Windows can get into Normal Mode with the correct screen resolution. Next is to repair the network. I follow the instructions from Microsoft Help and Support Center (see the reference below) to reset Internet Protocal (TCP/IP) and recover from Winsock2 corruption, but without luck. I just can't delete Winsock2 in Reg Tree by using regedit. Every time I delete winsock2, it back again (because malwares is running as hard ware drivers at the same time). After I run LSP-Fix (by cexx.org - v 1.1), a Winsock 2 Repair Utility, I find a suspect LSP - aelupsvc32.dll aelupsvc32.dll in under C:\Windows\system32 directory. I can't delete it in LSP-Fix. It's back again every time after deletion. Further research I found there are aelupsvc32.dll, iexpl0re.exe, and wsfit32.sys in my system as well. iexpl0re.exe is under C:\Windows and wsfit32.sys is under C:\Windows\System32\Drivers directories. According to Castlecops, aelupsvc32.dll is Rogoo Hijacker (Chinese). See the reference below. So the solution is boot the Windows XP CD, select Repair and get into Console. Delete above 3 files. Reboot Windows into Safe mode, running LSP-Fix again. This time I can remove aelupsvc32.dll from LSP list now. Good! I repeat to reset Internet Protocol (TCP/IP) and recover from Winsock2 corruption, with a bit of problem. I decide to remove Winsock and Winsock2 in registration table manually. I make some progress, run "ipconfig /all" ip address is 169.254.xxx.yyy. DHCP Client still not works correctly. I try to run "netsh winsock reset", I still get some kind error. The this is the crucial part, I export Winsock and Winsock2 reg to files from the-no-problem Windows XP box, then import into Windows XP box with the-problem. Reboot the box, bingo! Windows XP has the correct network! Hallelujah! Reference: + How to reset Internet Protocol (TCP/IP) in Windows XP - http://support.microsoft.com/default.aspx?scid=KB;EN-US;q299357& + How to determine and recover from Winsock2 corruption - http://support.microsoft.com/kb/811259/ + Castlecops aelupsvc32.dll - http://www.castlecops.com/lsp-224.html + IP of 0.0.0.0 - http://www.z123.org/techsupport/xpipzero.htm |