Results 1 to 5 of 5

Thread: Can't remove DSD Exploit & Erodata

  1. #1
    Junior Member
    Join Date
    May 2009
    Posts
    2

    Default Can't remove DSD Exploit & Erodata

    Everytime I run Spybot, the search results in 5 entries for DSD Exploit and 2 entries for Erodata.

    When I hit "Fix Selected Problems" I wind up with a message that a program using these items might currently be in use and that's maybe why they can't be deleted. I'm then asked if I'd like to automatically run Spybot next time I start my computer. I have clicked "yes" to this and when Spybot runs a search when I start my computer, I wind up with the same thing: I can't delete any of these items.

    The 5 DSD Exploits have this folder trail: \internet settings\zones\0\1004!=W=3

    The 2 Erodatas have this folder trail: \remote access\profile\telecoin

    Any suggestions on how to get rid of these?

    Thanks.
    Last edited by tashi; 2009-05-19 at 17:29. Reason: Moved from Malware forum

  2. #2
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,471

    Default

    Hello maxcalvada,

    Please open Spybot Search & Destroy > Help > About and let us know the version and date of last definitions.

    Best regards.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  3. #3
    Junior Member
    Join Date
    May 2009
    Posts
    2

    Default

    Spybot - Search & Destroy 1.3

  4. #4
    Senior Member
    Join Date
    Oct 2005
    Location
    Germany
    Posts
    5,263

    Default

    Hello,

    You are running a six year old version that has old scanning routines and is not being updated anymore.

    Please uninstall Spybot - Search & Destroy according to the following link:
    http://www.safer-networking.org/en/howto/uninstall.html
    Then make a fresh install of Spybot - Search & Destroy 1.6.2.

    Best regards
    Sandra
    Team Spybot

  5. #5
    Spybot Advisor Team [Retired] md usa spybot fan's Avatar
    Join Date
    Oct 2005
    Posts
    5,859

    Default

    What version of Windows Internet Explorer are you running and when is the last time you updated it?

    The "DSO Exploit" was first reported by GreyMagic Software of Israel on February 27, 2002. This exploit of defective code allowed the execution of dynamically insert HTML without using Active Scripting (ActiveX) in Microsoft Internet Explorer 5.01, 5.5 and 6.0. A "workaround" for Microsoft's defective code was provided by Axel Pettinger and Garland Hopkins on March 3, 2002 involving the editing of the Windows registry to alter values contained within Internet Explorer's Internet Zones configurations. This is the original article about the "DSO Exploit", edited after the "workaround" was discovered:
    http://www.greymagic.com/security/advisories/gm001-ie/

    On March 28, 2002 Microsoft published Security Bulletin MS02-015 which addressed the problem and provided patches to correct the defective code:
    http://www.microsoft.com/technet/sec.../MS02-015.mspx
    Internet Explorer Security Update, March 28, 2002:
    http://www.microsoft.com/windows/ie/...82/default.asp

    The bottom line: If you applied Microsoft's March 28, 2002 Internet Explorer Security Update or any subsequent cumulative security updates or upgraded Internet Explorer since then, you can safely ignore Spybot's report of a "DSO Exploit".

    Getting an answer is one thing, learning is another.


    Microsoft Windows XP Home Edition running on a 2.40GHz IntelŪ PentiumŪ 4 Processor with 512 MB of RAM and a 533 MHz System Bus.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •