Can't get rid of bloodhound.exploit.196!!!

Dell INSPIRON
June 1, 2009 at 08:50:54
Specs: Windows Vista
I've done everything on the Symantec website to get rid of bloodhound.exploit.196 virus and I can't get rid of it... My anti-virus has quarantined up to 60,000 in a day! This virus is slowing down my computer considerably, and is very annoying... PLEASE HELP!!!!

See More: Cant get rid of bloodhound.exploit.196!!!

Report •


#1
June 1, 2009 at 08:57:15
Hi,
Can you please post your AVZ and hijackthis log:
Note: Run AVZ in windows normal mode. If avz.exe doesn't start, then try to rename the file avz.exe to something else and try to run it again. Make sure you have your web browser open in background before following the steps below.

1) To create the logfile, download AVZ by clicking HERE. Please save this file to your desktop or "My Documents" folder.

2) Next, unpack the file to a new folder using the Compressed (zipped) folders wizard built into Windows XP/Vista, or a zip utility of your choice.

3) Once you have unpacked the contents of the zip archive, please launch the file AVZ.exe by double clicking on it or right clicking and selecting Open.
Note: If you are running Windows vista launch AVZ.exe by right clicking and selecting Run as Administrator.

You should now see the main window of the AVZ utility. Please navigate to File->Custom Scripts. Copy the script below by using the keyboard shortcut CTRL+C or the corresponding option via right click.

begin
ExecuteStdScr(3);
RebootWindows(true);
end.


Paste the script into the execution window by using CTRL+V keyboard shortcut, or the "paste" option via the right click menu. Click on Run to run the script, the PC will reboot. After the reboot the LOG subfolder is created in the folder with AVZ, with a file called virusinfo_syscure.zip inside. Upload that file and hijackthis log to rapidshare.com and paste the link here.

Image Tutorial

-------------------------------------------------


Report •

#2
Report •

#3
June 1, 2009 at 20:26:53
Your log doesn't show much. Can you post another hijackthis log with new version Hijackthis 2.0.2 http://download.bleepingcomputer.co... . Also Run a full scan with Kaspersky online scanner and post scan results.

-------------------------------------------------


Report •

Related Solutions

#4
Report •

#5
June 3, 2009 at 15:59:18
First:

Update your vista to SP2 via windows update.

Second:

Update your adobe to version 9.1.1.

After you have completed those Rerun HijackThis log and make a new log and upload it to rapidshare.

-------------------------------------------------


Report •

#6
June 3, 2009 at 16:24:39
i updated my windows through the windows update but there was no SP3 for vista. I searched for it on the internet and only found SP3 for XP.

my adobe was already updated to 9.1.1.


Report •

#7
June 3, 2009 at 17:05:10
Follow: http://www.symantec.com/security_re... After which if you still get those warning's post a screen shot of with. Make sure filename and full path is visible.

-------------------------------------------------


Report •

#8
Report •

#9
June 5, 2009 at 17:41:50
I've done everything and it still won't go away. This is a screen shot of what i normally see when i do the full scan and what pops up normally.


http://rapidshare.com/files/2413061...


Report •

#10
June 5, 2009 at 17:50:03
Looks like its scanning its own quarantine folder. Empty your quarantine folder check symantec website for help. Also follow:

Download Security Check by screen317 from here or here.
Save it to your Desktop.
Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
A Notepad document should open automatically called checkup.txt.
Please post the contents of that document.

-------------------------------------------------


Report •

#11
June 6, 2009 at 12:37:49
I've been trying to delete the quarantine folder but everytime I go to open the View Quarantine in SEP the program stops responding... same thing happens in safe mode. Is there a way to empty the folder outside of SEP?

Report •

#12
June 6, 2009 at 20:39:07
Refer to: http://www.symantec.com/connect/for...

-------------------------------------------------


Report •


Ask Question