From: "Roger" <
[email protected]>
| It is reported by NT that there is a virus named "Bloodhound.Exploit.6" and
| resides in the following position. C:\Documents and Settings\Roger Yu\Local
| Settings\Temporary Internet Files\Content.IE5\LWKNHXC9\index[3].htm
|
| However, NT can only isolate the virus but cannot kill it. I tried to delete
| it in the file manually but I couldn't access it. I'm worrying possible
| virus attack by the virus.How should I do?
|
There are anti virus News Groups specifically for this type of discussion.
microsoft.public.scripting.virus.discussion
microsoft.public.security.virus
alt.comp.virus
alt.comp.anti-virus
If this is Norton AV then "Bloodhound.Exploit.6" is a heuristic detection for an unkown or
for code exploit for a software vulnerability.
http://securityresponse.symantec.com/avcenter/venc/data/bloodhound.exploit.6.html
Dump the contents of the IE Temporary Internet Folder cache (TIF)
start --> settings --> control panel --> internet options --> delete files
1) If you are using WinME or WinXP, disable System Restore
http://vil.nai.com/vil/SystemHelpDocs/DisableSysRestore.htm
2) Reboot your PC into Safe Mode and shutdown as many applications as possible
3) Using your NAV software, perform a Full Scan of your platform and clean/delete any
infectors found
4) Restart your PC and perform a "final" Full Scan of your platform
5) If you are using WinME or WinXP,Re-enable System Restore and re-apply any
System Restore preferences, (e.g. HD space to use suggested 200 ~ 400MB),
6) Reboot your PC.
7) If you are using WinME or WinXP, create a new Restore point
* * Please report back your results * *