DSO Exploit

Forum Moderators: open

Message Too Old, No Replies

DSO Exploit

Anyone familar with this?

krieves

7:19 pm on Sep 28, 2004 (gmt 0)

Last night I ran Spybot S&D on my PC and found that I had a DSO Exploit. I used Spybot to get rid of it, but it kept showing up. In reading a bunch of forums, it appears that there is a bug in Spybot in that it does fix the exploit, but leaves a some code in the register the makes it continue to show up.

I haven't been able to find out where this came from. I'm very careful about opening email with attachments and am running Trend Micro anti-virus as well as the firewall. I keep my system patched and recently installed SP2.

Does anyone know where a DSO Exploit would come from or have specific knowledge what it does? There's quite a bit of chatter about it, but much info is contradictory and unclear.

webdude

7:17 pm on Sep 29, 2004 (gmt 0)

I have had the same problem on numerous machines. Some that haven't even been used for surfing (ie. straight out of the box). You must do some registry edits to get rid of this. In the details of the scan, it will give the various details as to what values are set in the hive.

I did find this easier method, but have nor tried it...

Have "Search & Destroy" look for problems the usual way and then (1) highlight one of the "Data source object exploit" items, (2) Right click the highlighted item to bring up the menu list and select "More details", (3) Now click "Jump to location", (4) You are now viewing the Registry and can use the path shown in the Search & Destroy window to get to the key shown, (5) I manually deleted each of the 5 keys.

pegtek3

7:02 pm on Oct 5, 2004 (gmt 0)

Webdude's solution worked for us.

webdude

12:54 pm on Oct 6, 2004 (gmt 0)

Glad to help :-)

DSO Exploit

Anyone familar with this?

krieves

webdude

pegtek3

webdude

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week