ssdiag.exe

Every time i turn my pc on i am faced with 6 or 7 windows that are being
controlled by "ssdiag.exe". I have no idea where it came from, or how to get
rid of it, or what it is even for.

It has only just appeared, and im pretty sure that i didnt put it there.

How can i get rid of it???

This doesn't appear to be a Windows Update question and perhaps you
should try a newsgroup for your operating system.

It could be: Equinox "Configuration and DOS Diagnostic for DOS and
Windows platforms" but it also could be an unwelcome visitor.
I suggest you uncheck it in Msconfig (Start-Run-MSCONFIG-Startup tab)
if the Properties of ssdiag.exe don't look right or you don't
recognize anything at www.equinox.com

....Alan

--
Alan Edwards, MS MVP W95/98 Systems
http://dts-l.org/index.html


In microsoft.public.windowsupdate, "moonshine1283"
<> wrote:

>Every time i turn my pc on i am faced with 6 or 7 windows that are being
>controlled by "ssdiag.exe". I have no idea where it came from, or how to get
>rid of it, or what it is even for.
>
>It has only just appeared, and im pretty sure that i didnt put it there.
>
>How can i get rid of it???

From: "moonshine1283" <>

| Every time i turn my pc on i am faced with 6 or 7 windows that are being
| controlled by "ssdiag.exe". I have no idea where it came from, or how to get
| rid of it, or what it is even for.
|
| It has only just appeared, and im pretty sure that i didnt put it there.
|
| How can i get rid of it???

Sounds like a Trojan, may be a QHosts variant !

Dump the contents of the IE Temporary Internet Folder cache (TIF)
Start --> Settings --> Control Panel --> Internet Options --> Delete Files

Dump the contents of the Mozilla FireFox Cache
Tools --> Options --> Privacy --> Cache --> Clear

1) Download TrendMicro Sysclean by other of the following 2 methods

Trend Sysclean Method 1
---------------------------------------
Trend Sysclean Package
http://www.trendmicro.com/download/dcs.asp

Latest Trend signature files.
http://www.trendmicro.com/download/pattern.asp

Create a directory.
On drive "C:\"
(e.g., "c:\sysclean")

Download SYSCLEAN.COM and place it in that directory.
Download the signature files (pattern files) by obtaining the ZIP file.
For example; lpt600.zip

Extract the contents of the ZIP file and place the contents in the same directory as
SYSCLEAN.COM.

Trend Sysclean Method 2
---------------------------------------
Download the utility SYSCLEAN_FE at the following URL --
http://www.ik-cs.com/got-a-virus.htm
SYSCLEAN_FE automates the download and execution process of the Trend Sysclean Package.
Direct URL --
http://www.ik-cs.com/programs/virtools/Sysclean_FE.exe

2) Download Ad-aware SE (free personal version v1.05)
http://www.lavasoftusa.com/

Update Ad-aware with the latest definitions.
3) If you are using WinME or WinXP, disable System Restore
http://vil.nai.com/vil/SystemHelpDoc...SysRestore.htm
4) Reboot your PC into Safe Mode and shutdown as many applications as possible.
5) Using both the Trend Sysclean utility and Ad-aware, perform a Full Scan of your
platform and clean/delete any infectors/parasites found.
(a few cycles may be needed)
6) Restart your PC and perform a "final" Full Scan of your platform using both the
Trend Sysclean utility and Adaware
7) If you are using WinME or WinXP,Re-enable System Restore and re-apply any
System Restore preferences, (e.g. HD space to use suggested 400 ~ 600MB),
8) Reboot your PC.
9) If you are using WinME or WinXP, create a new Restore point

* * Please report back your results * *
--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm

An alternative:

1. Use task manager to kill the running ssdiag.exe program
2. Using the registry editor, go to
HKLM\Software\Microsoft\Windows\CurrentVersion\Run , and remove any reference
to ssdiag.exe that you see there (most trojans insert themselves at that
location).
3. Restart the PC. If "ssdiag.exe" pops up again, then follow the steps
below :-)
4. Make sure that your virus scanner is up to date, disconnect your PC from
the Internet, and scan your system for viruses.
5. Reconnect your PC to the Internet, and use Windows Update to update it.
6. If ssdiag.exe appears again, repeat steps 1-4 (it's possible that your PC
might get infected during the update process).


Brian



"David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in message
news:...
> From: "moonshine1283" <>
>
> | Every time i turn my pc on i am faced with 6 or 7 windows that are being
> | controlled by "ssdiag.exe". I have no idea where it came from, or how to
> get
> | rid of it, or what it is even for.
> |
> | It has only just appeared, and im pretty sure that i didnt put it there.
> |
> | How can i get rid of it???
>
> Sounds like a Trojan, may be a QHosts variant !
>
> Dump the contents of the IE Temporary Internet Folder cache (TIF)
> Start --> Settings --> Control Panel --> Internet Options --> Delete Files
>
> Dump the contents of the Mozilla FireFox Cache
> Tools --> Options --> Privacy --> Cache --> Clear
>
> 1) Download TrendMicro Sysclean by other of the following 2 methods
>
> Trend Sysclean Method 1
> ---------------------------------------
> Trend Sysclean Package
> http://www.trendmicro.com/download/dcs.asp
>
> Latest Trend signature files.
> http://www.trendmicro.com/download/pattern.asp
>
> Create a directory.
> On drive "C:\"
> (e.g., "c:\sysclean")
>
> Download SYSCLEAN.COM and place it in that directory.
> Download the signature files (pattern files) by obtaining the ZIP file.
> For example; lpt600.zip
>
> Extract the contents of the ZIP file and place the contents in the same
> directory as
> SYSCLEAN.COM.
>
> Trend Sysclean Method 2
> ---------------------------------------
> Download the utility SYSCLEAN_FE at the following URL --
> http://www.ik-cs.com/got-a-virus.htm
> SYSCLEAN_FE automates the download and execution process of the Trend
> Sysclean Package.
> Direct URL --
> http://www.ik-cs.com/programs/virtools/Sysclean_FE.exe
>
> 2) Download Ad-aware SE (free personal version v1.05)
> http://www.lavasoftusa.com/
>
> Update Ad-aware with the latest definitions.
> 3) If you are using WinME or WinXP, disable System Restore
> http://vil.nai.com/vil/SystemHelpDoc...SysRestore.htm
> 4) Reboot your PC into Safe Mode and shutdown as many applications as
> possible.
> 5) Using both the Trend Sysclean utility and Ad-aware, perform a Full
> Scan of your
> platform and clean/delete any infectors/parasites found.
> (a few cycles may be needed)
> 6) Restart your PC and perform a "final" Full Scan of your platform
> using both the
> Trend Sysclean utility and Adaware
> 7) If you are using WinME or WinXP,Re-enable System Restore and
> re-apply any
> System Restore preferences, (e.g. HD space to use suggested 400 ~
> 600MB),
> 8) Reboot your PC.
> 9) If you are using WinME or WinXP, create a new Restore point
>
> * * Please report back your results * *
> --
> Dave
> http://www.claymania.com/removal-trojan-adware.html
> http://www.ik-cs.com/got-a-virus.htm
>
>