Re: Bloodhound.exploit.6 Trojan
From: Cris (cris_at_notienecorreo.com)
Date: 08/27/04
- Next message: Cris: "Re: Bloodhound.exploit.6 Trojan"
- Previous message: rainbowbritee: "Re: w32.spybot.worm"
- In reply to: Lon: "Bloodhound.exploit.6 Trojan"
- Next in thread: Cris: "Re: Bloodhound.exploit.6 Trojan"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 27 Aug 2004 03:25:08 +0200
Here you have a copy&paste of pauly's post:
---------------------
Hi Lon,
Thanks for your post. Regarding your questions:
Q1. From what I have said above, can someone tell me if I no longer have
this bloodhound.exploit.6 virus? And how can I tell if it is gone or not?
And if it is gone how did I get rid of it when I didn't delete anything?
A1: It is not clear to me that you have removed this virus. Even though a
new scan does not show the virus, you should run a new scan using an online
virus scanner such as Housecall from Trend Micro. I will give you a list
of links to various online virus scanners at the end of this thread.
Q2. What does it mean when it said in Regedit Default REG_SZ no value set
A2: Each and every key in the registry (thousands) has a single default
value that is 'not set'. This is normal - it would be a problem if you did
not see this. Most keys also have numerous other values called something
other than Default - and these have various values other than 'Not Set'.
Q3. How can I get my computer to go into safe mode? When I boot up it says
to go to the BIOS click F1 but doesn't list safe mode.
A3: Instead of pressing F1 at boot time, press F8.
F1=BIOS
F8=Boot Menu.
Q4. Do I need to run full scan again in safe mode (once found) and go to
Regedit again in safe mode?
A4: Your locally installed AV product is great, but as a sanity check I
recommend that you run a scan using a different AV Scanner. This is most
easily accomplished using an online scanner. Also, please do not use
Regedit. If your scanning program recommends that you edit the registry,
please call Microsoft Product Support for assistance before going into the
registry.
MORE INFORMATION:
Trend Micro House Call:
http://housecall.trendmicro.com/
Panda ActiveScan;
http://www.pandasoftware.com/activescan/com/activescan_principal.htm
McAfee FreeScan:
http://us.mcafee.com/root/mfs/default.asp
Kaspersky Labs On-line Virus Checker:
http://www.kaspersky.com/remoteviruschk.html
BitDefender Online Scan:
http://www.bitdefender.com/scan/licence.php
Downloadable McAfee AVERT Stinger:
http://vil.nai.com/vil/stinger/
Here are some additional steps you can take:
1. Check for Spyware that may be installed on your computer using one or
more of these tools:
Spybot-S&D
http://www.safer-networking.org/
Ad-Aware
http://www.netsecurity.about.com/library/blfreespyware.htm
HijackThis
http://www.spychecker.com/program/hijackthis.html
Web Shredder
http://www.spywareinfo.com/~merijn/cwschronicles.html#cwshredder
2) Install a Firewall:
a. http://www.vicomsoft.com/knowledge/reference/firewalls1.html
b. http://firewalls.surferbeware.com/firewalls-basics.htm
c. http://www.techonline.com/community/related_content/14208
=========
This posting is provided "AS IS" with no warranties, and confers no rights.
MBSA Homepage:
http://www.microsoft.com/MBSA
Windows XP Security Homepage:
http://www.microsoft.com/windowsxp/security/default.asp
Windows 2000 Security Homepage:
http://www.microsoft.com/windows2000/security/default.asp
Top 10 Windows Newsgroups Security Questions:
http://www.microsoft.com/technet/newsgroups/default.asp?url=/technet/newsgro
ups/nodepages/sectop10.asp
=========
Paul Hayes, MCSE
Product Support Services
Microsoft Corporation
pauly@online.microsoft.com
--------------------
- Next message: Cris: "Re: Bloodhound.exploit.6 Trojan"
- Previous message: rainbowbritee: "Re: w32.spybot.worm"
- In reply to: Lon: "Bloodhound.exploit.6 Trojan"
- Next in thread: Cris: "Re: Bloodhound.exploit.6 Trojan"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
