Lop.com page

Posted on 2005-03-11
Medium Priority
Last Modified: 2010-04-11
Hello all
I have tried repeatedly to remove the LOP.COM tool bar from my browser but it eventually come back after a few weeks or months. How can I permanently get rid of it. I do not truct som eof the software the web is suggesting I used. I prefer to download software/any utility for well known/trusted sites. Any assistance will be greatly appreciated.

I went to www.antivirus.com and perform a complete scan. It saw it and said its remove but its not. When I open my browser its still there

The Falcon
Question by:FalconTwo
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
LVL 29

Expert Comment

ID: 13518233

Try Toolbarcop:


And/or BHODemon:


Install also:

Avoids malicious Active X installs.
Advantage: no system resources used!!!
Currently protects against 3450+ items.
Just download, install and UPDATE.

LVL 27

Expert Comment

ID: 13519120
Here are special instructions:


Remove Lop Spyware
About Lop

Lop is a family of programs that set your start page and IE's search features to use the site lop.com ('Live Online Portal') or one of its clone sites. Known lop sites include:

    * aavc.com
 ...long list...
    * wflu.com

Remove this spyware using Spyware Doctor

Lop has many variants:

lop/Trinity: an old variant of the software, which only adds the shortcuts and does the homepage/search hijacking.

lop/Dialer is a plain porn dialler delivered with the startup task.

lop/Toolbar : includes the startup task and an IE toolbar with more lop links. This variant can be detected by the script at this site.

lop/Rnd : a version of lop/Toolbar that uses completely random class IDs as well as pseudo-random filenames, making it difficult to detect.

lop/AYB : a URL protocol module used by the MP3Search (or similar) minibrowser launched by the startup task. This variant can be detected by the script at this site; having it is usually a sign you may have lop/Toolbar or lop/Rnd as well.

lop/Loader : an installer process that opens a small progress window in the middle of the screen and loads and runs both lop/AYB and either lop/Toolbar or lop/Rnd.

lop/IMZ : an installer process like lop/Loader, but installing lop/Rnd and FavoriteMan/IMZ . lop/AYB is not installed, so the script at this script usually cannot detect lop/IMZ installations.

lop/Active : an update of lop/Rnd which monitors web pages viewed for keywords, and sets the buttons in the toolbar to match. This also opens a floating window on the desktop on startup. Can also hijack to active-max.com, mysearchnow.com, searchwebnow.com or find-quick.com as well as one of the traditional four-letter domains.

How to Remove Lop Spyware?

Follow these removal steps to manually remove LinkReplacer from your computer.

   1. Open RegEdit (click Start > Run, and type 'regedit').
   2. Delete the following keys:

      HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{d44b5436-b3e4-4595-b0e9-106690e70a58}

Expert Comment

ID: 13520255
http://www.acesoft.net/lop.com.htm         .....info and removal instructions.
The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.


Expert Comment

ID: 13529272
The following worked for me
LVL 24

Expert Comment

by:Mohammed Hamada
ID: 13535206

Accepted Solution

graemeboro earned 375 total points
ID: 13535352
Once you have this removed I would advise you to do web browsing with the Mozilla Firefox browser which is a lot less prone to spyware.

You can download it here :-



Featured Post

Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There is a lot to be said for protecting yourself and your accounts with 2 factor authentication.  I found to my own chagrin, that there is a big downside as well.
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question