Thought I'd share this with you since this stuff rarely happens to me thought you might enjoy it.
I got careless and lazy...stopped running antivirus/anitspyware/firewall....hell the list of security programs just goes on and on that u could run on your machine.
Anyway I got something nasty called, "surfsidekick 3"....HOW did it get installed u might ask? well it was installed through the installation of EDONKEY2000. I got the version with crack from EMULE of all places and I don't believe the crack worked...it might even have been a virus.
Gone were the days when I would scan each and every executable before running it...my catch was..how do I know the pirated antivirus I'm using is in fact uncompromised its self and luring me into a false sense of security when the very patch for it could have disguised or enabled a trojan.
Anyway I digress...whatever the surf thing is has downloaded about a dozen other appz which have installed themselves automatically without my knowledge or permission.
My startup file is riddled with mysterious processes.
Here's three to wet ur taste buds:
Ssk.exe
SskBho.dll
SskCore.dll
These three are in this folder:
'C:\Program Files\SurfSideKick 3'
and I tried deleting ssk.exe but can't do it...not even with move on boot.
What I need to know is there way to reboot into dos mode with windows xp and remove these files manually?
Seems like there was one more question here that I needed or wanted to ask but can't think of it
atm. (still very tired)
if anyone wants to help with this...please do...i refuse to format and want this problem solved.
Edit: oh yes, How do u boot into safe mode with windows xp professional and service pack 2 installed (dell branded if that matters).
"They make a good read over a smoke and coffee,
while waiting for your life to download."
Durning startup press F8 and select safe mode, you can delete those files manually though I would suggest you let an Antivirus do that for you (you can do that while your system is in safe mode if you want). My suggestion is to scan first with BitDefender and then with Ewido. Other good scanners include Kaspersky's, and NOD32s.
I'll try those suggestions...I forgot to mention there were 2 programs installed surreptitiously that had a listing in control panel under add remove programs..i forgot to document what they were...but they had a really weird uninstall routine that forced u to enter in a numerical code first before it would continue with the uinstall....it reminded me of the procedure u would use for signing up for a vbulletin website and having to enter the code generated to confirm u weren't a bot...anyway here's the latest part of this mess I found this in my control panel under add/remove programs:
'C:\Program Files\OpenWebScope'
I removed it of course because I think I remember reading on another security related site that whenever something has an option or feature to remove it from the control panel that it was considered something you Should do...so I did.
Edit:
I did the f5, f8, ctrl f5, ctrl f8, alt f8, atl f5, and no joy in getting any type of dialogue concerning safe mode.
Edit #2: Think I got rid of surfsidekick...yes there was an option in add/remove control panel for surfsidekick but it would error on shutting down explorer.exe so when u forced explorer.exe to close...it would crash it and not remove surfsidekick repeating this process endlessly.
this time I ended explorer.exe in ctrl+alt+del (task manager) and selected to restart from the shutdown properties in task manager..when it rebooted surfsidekick was gone..but what of the 'the other 13 ghosts of Scooby-doo' (in reference to the other malware that got downloaded and installed as a result of this being on my machine?)
programs such as 'weather.exe' which I was able to delete manually with 'eraser'.
There's other shit I ain't found yet..some I've found and forgotten...moral of the story don't install edonkey2000 kids and if u do u're fucked.
I saw no way to opt out of the crap.
"They make a good read over a smoke and coffee,
while waiting for your life to download."
There are still a lot of wanna be virus writers or hackers out there , so be carefull always!
Ssk.exe
SskBho.dll
SskCore.dll
end those process(how ever u spell it) then delete them
"Hands down your pants"
Nod32 / AdAware SE + VX2 / Ewido Anti-Malware / Outpost Firewall Pro
(Keep this kind of thing from happening a second time)
My security guide @ Zeropaid
Unless you are the following people, I do not particularly wish to associate with you:
Krell, HelenaP, mountain_rage, mfgbypooter, Mels_Smileys45, excrement_cranium.
That's it for now. This list will be updated whenever I feel like it.
I had some wierd trojan from when my nephew was over.
I wouldn't have noticed at all, my avg didn't pick it up, adaware didn't pick it up. It really only reared it's head when I tried to play Wolfenstein.
I finally had to get a startup manager to dig it out. Nothing else would detect the bugger.
“The martyr sacrifices themselves entirely in vain. Or rather not in vain; for they make the selfish more selfish, the lazy more lazy, the narrow narrower.” - Florence Nightingale
The lattest version of eDonkey2000 is riddled with spyware, but you can still install it without the spyware.
Just unplug your internet connection while installing it. The eDonkey2000 installer has to download the installers for the spyware from the internet. eDonkey2000 made a bad mistake by adding this crap back to their program. It wasn't that long ago that they removed all bundles, now they go and even add more.
The spyware is downloaded from http://install.overnet.com/ through the eDonkey2000 installer, you can also block this website with your firewall.
Thanks.:icon_sunn
..
This Was Deleated By Me.
..
Rest in peace mother
16.1.2006
You will always be with me.
AVG isint a very good antivirus and ad-aware though incredibly popular dosent have a very high detection either (ad-aware also only detects spyware).Originally Posted by Excrement_Cranium
have a look at this log, auggie...it was done with spybot search and destroy and was the very first scan I did to detect this stuff.
"They make a good read over a smoke and coffee,
while waiting for your life to download."
why is avg no good? facts please! It has worked for me for several years without one virus slipping by. You tell me what's wrong with those %? You come across as some sort of expert, so may I ask what your creditials are? Just because something doesn't work for you doesn't mean that it doesn't work at all or it's no good. I agree about ad-aware sucking, but I do whole heartedly disagree with you on AVG.
Protest long enough that you are right, and you will be wrong
Well apart from the fact that he is correct, I'm unsure as to his credentials.
My security guide @ Zeropaid
Unless you are the following people, I do not particularly wish to associate with you:
Krell, HelenaP, mountain_rage, mfgbypooter, Mels_Smileys45, excrement_cranium.
That's it for now. This list will be updated whenever I feel like it.
Posting Permissions
Reply With Quote
Bookmarks