Solved

my norton found a virus called bloodhound.exploit.6 it has taken over my start page and is making my computer very slow ive tried using the hi jack this but nothing anti virus says repair failed

Posted on 2004-10-18
3
1,451 Views
Last Modified: 2008-01-09
what can i do to remove this also mcaffee found something called startpage_du.dll
0
Comment
Question by:denisepop
  • 2
3 Comments
 
LVL 49

Expert Comment

by:sunray_2003
ID: 12343097
Hi denisepop,

Have you checked this already
http://securityresponse.symantec.com/avcenter/venc/data/bloodhound.exploit.6.html

Are you having both Norton and mcafee anti-virus on the machine.
I would advise to remove one of them as having 2 anti-virus is not advisable.

Once you update one of the anti-virus and scan for virus
run stinger : http://vil.nai.com/vil/stinger/

Run both in normal and safe mode.,

post back  how it goes

SR
0
 
LVL 49

Expert Comment

by:sunray_2003
ID: 12343106
denisepop,

Before running hijackthis , run other spyware removal tools

Start --> run --> Type in "msconfig" and press "Enter"
goto Startup tab
Disable all the applications there except Anti-virus.Reboot the machine and check if the error occurs.
If not, then enable one at a time in the same startup tab and find the application that might cause this
at startup

Disable System restore if you have windows xp

Spyware:
--------

Please donot run spyware before running Anti-virus tools and making sure there is no virus in the machine.
Run spyware both in Normal and Safe mode to be sure that the system is free of spywares,adwares and Malwares.

PLEASE GET THE SPYWARE REMOVAL TOOLS FROM THE BELOW WEBSITE. THAT PAQ IS CREATED SO THAT ALL THE TOOLS ARE NOT GUMMED UP IN THIS THREAD.

Some of the experts here have helped in compiling all the important spyware tools and they are listed in this thread
http://www.experts-exchange.com/Web/Browser_Issues/Q_20975384.html

My recommendation would be to start with Spybot ,Ad-ware ,CWshredder.After installing them, First Update them and then run

Once running all the above tools and others given in that thread, download and run Hijackthis.
Download Hijacthis from here http://www.softpedia.com/public/cat/10/17/10-17-69.shtml.
Get the log from Hijackthis and save the log and paste it here http://hijackthis.de/index.php?langselect=english to analyze it. The analyser site is used so that you donot gum up the thread with the entire log.

Remove the bad ones that the site reports. If it says unknown process, then use a search engine to check if those are bad ones. If bad remove them , if you still cannot find then post those files alone here.


0
 
LVL 17

Accepted Solution

by:
Lobo042399 earned 500 total points
ID: 12344652
Hi Denise,

For the first problem. Open Norton. On the left panel hit on Reports, and then hit  View Report on Quarantined Items. From the list of Quarantined Items, select Bloodhound Exploit and hit the Delete button on the toolbar. That should do it.

Now, the second problem. Go to:

http://www.spywareinfo.com/downloads/spg/

and download StartpageGuard. It'll clean your start page and get rid of the malware there. It will also protect your browser (IE) from getting hijacked again.

Good Vibes!

Lobo
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Some site administrators might be considering how to filter incoming traffic to a site by identifying the domains or networks of the traffic source, in the same way that a spam filter does on an email server, such as blocking all emails sent from th…
These are on the increase and getting more common these days. Users who use the Google search engine may complain of having their search redirected to unwanted sites, regardless of what browser is used. This happens when the system is infected with…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now