Member Panel

hey

i am jon. i am new to the forum. it seems like everybody is really nice here and seem to be able to help a lot of people. so i was wondering if anyone could help me with surf sidekick 3. i have tried to remove everything i can but i cant get rid of it all. it keeps coming back. here is my log. if anyone could help me out i would appreciate it. thanks.

Hi Snides84,

Welcome to the PC Help Forum.

We have an excellent tea of tech and security experts who will be glad to help you out.

Could you please follow the instructions in the *Prework* link in my signature and then post a new hijack this log?

Hang tight and one of our secuity analysts will go to town on it.

thank you for helping. here is the logs i have taken after following the steps you told me. let me know what i should do next. thanks

Hya Snides84.


Make sure you have system restore still disabled and hidded files set to show. Also make sure you still have Ccleaner.

Download:
- Unlocker

And install it.

Download:
-SSKfixXP

Using and or Remove Programs in the Control Panel uninstall the following if present:

Surfsidekick
Surfsidekick 2
Surfsidekick 3

if SurfSideKick is not in Add or Remove Programs, go to:



Start -> Run

Type "C:\Program Files\SurfSideKick 3\ssk.exe" /u -> ENTER.

Enter the given security code (generated automatically by the uninstaller) > OK
Click on YES at the reboot prompt.

Make sure PC boots in Safe Mode afterwards.


Open Windows Explorer and browse to:

c:\windows\system32 or c:\winnt\system32


Look for all instances of repairs.dll file, once located, right-click > Unlocker > Unlock All
Note: In newer versions of the SurfSideKick 3 infections the name has changed to repairs302972940.dll
If repairs.dllor repairs302972940.dllcan not be found then search for both files on the local hard drive using the search function in the Start Menu.


Immediately afterwards delete all instances of repairs.dll and/or repairs302972940.dll



Now run SSKfixXP.exe (towards the end of the process it might boot your PC if that occurs, make sure you keep tapping on the F8 key to boot back in Safe Mode). Run the fix again to complete the process.


Run HijackThis and fix the following lines

And delete C:\Program Files\SurfSideKick 3 if still present.

Run CCLeaner .


And do you know what this is from?

O18 - Filter: text/html - {2F6E85DC-8D2D-4896-8A4F-7DF8A7B1749D} - C:\PROGRA~1\Jalmp\jalmp.dll

If not then please upload the file in bold to this site and report back the result:

http://www.virustotal.com/flash/index_en.html

And post a new hjt log when youre done.

hey

i did everything that you said. one thing i noticed is that when i run sskxpfix.exe tea timer says that the change was denide. tea timer also blocks a few surf side kick files that try to run everytime windows loads. i have a log file after i ran sskxpfix.exe in safe mode and a log file after i rebooted into windows. i dont know what that other files is so i have the results for that. the log file after reboot is the latest one.

here is the jalmp result. i would have put it in a file but the file size was to big for the forum upload rules.

Looking pretty good , but boot in safemode again and look for an uninstaller for "Jalmp" in add/remove programs and uninstall it if present.

Then fix this one with hjt if still present:

and delete the folder in bold.

Then run the SSKfixXP.exe again , but first disable spybot's teatimer temporary.

You should be clean after that. :smiley: