Got a boot virus!!!

Author	All Replies
gt7697c Premium join:2001-02-16 The Hive	Got a boot virus!!! I have discovered that I have a boot virus on a floppy disk. The virus in question is called: said by NAV: Bloodhound Boot The floppy came with a shrink wrap product called Check IT Utilities. The interesting thing is that AVG latest version did not catch this at all. But that is not important now. NAV is offering to fix this, should I let it continue or what should I do???? -- Just my 2 bits.
	to forum · permalink · 2001-09-26 22:07:34 ·
OzarkMan$ join:2000-12-22 Ozark Mtns.	If you feel you have the latest signature updates, go for it. If however this shrink wrap program on a floppie is not that important, deep six it ! -- For all those who take the sword....will perish by the sword
	to forum · permalink · 2001-09-26 22:23:24 ·

gt7697c Premium join:2001-02-16 The Hive	Can't repair it. NAV can't repair it. The CD offers to create the floppy. So I took a clean floppy that I have and let the CD recreate the floppy. Then I ran NAV over the just created floppy. Guess what. Now it is infected with the boot virus. I wonder if the CD is infected with the virus, or if NAV is just a giving a false alarm??? Any suggestions???? -- Just my 2 bits.
	to forum · permalink · 2001-09-26 22:31:19 ·
Anon	Instead of just taking the word of NAV how about looking for information on the internet relating to signature files with this virus. Then look on your floppies and check them yourself. No signature files , probably no virus. Might be best to check it from DOS so to find hidden files. Just a though... -- when in doubt, your not alone.
	to forum · permalink · 2001-09-26 23:06:38 ·
gt7697c Premium join:2001-02-16 The Hive	I can't find anything about it at Symantec, except that NAV will detect it if I have the latest defs, which I have. Can somebody help me find some more in depth info on this virus??? -- Just my 2 bits.
	to forum · permalink · 2001-09-26 23:35:42 ·
redxii Premium,Mod join:2001-02-26 Sherwood, MI Reviews: ·Clear Wireless ·Suddenlink ·Sprint Mobile Br.. Host: Broadband Tweaks Suddenlink ISDN Fiber Optic AOL Broadband	reply to gt7697c Re: Got a boot virus!!! »www.symantec.com/avcenter/venc/d···und.html This is all that I could fine for now. Detected as: Bloodhound.Boot Aliases: None Area of Infection: Floppy Boot Sector, Master Boot Record Characteristics: Memory Resident -- "Never mess with the eagles!" BellSouth ADSL speed: 1410/230 of 1500/256.
	to forum · permalink · 2001-09-26 23:42:05 ·
Nsane_iceman Premium join:2001-02-26 North Richland Hills, TX	Ummm " Memory Resident " I hate those I have had two and on both of them I had to reformate my computer ...
	to forum · permalink · 2001-09-26 23:45:00 ·
gt7697c Premium join:2001-02-16 The Hive	reply to redxii How do I put the diskette into Quarantine to send it to them??? When NAV scans the diskette it does not give me the opportunity to Quarantine the floppy. -- Just my 2 bits.
	to forum · permalink · 2001-09-26 23:51:34 ·
gt7697c Premium join:2001-02-16 The Hive	reply to Nsane_iceman Well I am glad to say that it is not on the system itself. Thank the computer gods for NTFS. But it is on a floppy disk that I would like to use on reboot, which I will not use until it is either fixed or I find something better than the program that is on that disk. -- Just my 2 bits.
	to forum · permalink · 2001-09-26 23:57:20 ·
Name Game$ join:2001-09-01 North Myrtle Beach, SC	reply to gt7697c My strong suggestion is that you Fix NAV not the virus, but since that may not make any sense try this.....Bloodhound Aliases Bloodhound.AOLPWS, Bloodhound.MBR, Bloodhound.boot.string, Bloodhound Word macro virus, Bloodhound.NeuralMBR. Description Bloodhound is not the name of a virus, but a message displayed by Symantec's Norton Anti-Virus when it thinks it may have found a new virus. You may like to re-scan your system with Sophos Anti-Virus - if it is a virus that Sophos knows about it will tell you its correct name. If Sophos does not find a virus please send a sample to support@sophos.com so our experts can analyse the file. Our virus analysts will be able to ascertain quickly whether it is truly a new virus or a Norton Anti-Virus false alarm. »www.sophos.com/virusinfo/analyse···und.html
	to forum · permalink · 2001-09-26 23:57:59 ·
redxii Premium,Mod join:2001-02-26 Sherwood, MI	reply to gt7697c Format the floppy and send the infected CD to the garbage can(not the computer one). -- "Never mess with the eagles!" BellSouth ADSL speed: 1410/230 of 1500/256.
	to forum · permalink · 2001-09-26 23:59:20 ·
jaykaykay 4 Ever Young Premium,MVM join:2000-04-13 Scottsdale, AZ kudos:19 Reviews: ·Speakeasy	reply to gt7697c Seems to be a somewhat old one. Check this out: »www.google.com/search?q=Bloodhound%20Boot There's enough info here to keep you busy and perhaps be just a wee bit helpful at the same time.
	to forum · permalink · 2001-09-27 00:16:03 ·
gt7697c Premium join:2001-02-16 The Hive	reply to redxii The interesting thing is that I scanned the CD and nothing was found. Just the floppy that came with it, and the floppy that it created. The cd may be good. I have installed the programs off it before without having any problems, so I don't think the main software had the infection. If there is a virus on the cd it is probably in the subsystem that makes the floppy. -- Just my 2 bits.
	to forum · permalink · 2001-09-27 00:30:48 ·
IGGY No Guru Just Here To Help Premium,MVM join:2001-03-30 Chatham, IL	reply to gt7697c Here's what I came up with = »www.antivirus.com/vinfo/virusenc···oodhound But I noticed the GOOGLE link previously posted as a link to my info. But the link I posted has multiple info on several different viri with this name. -- Test Your Anti Virus & FIREWALL & MORE!! at IGGYZ [text was edited by author 2001-09-27 00:48:21]
	to forum · permalink · 2001-09-27 00:45:11 ·
gt7697c Premium join:2001-02-16 The Hive	Would the fact that this floppy contains stand alone Diagnostic Utilities cause NAV to think that this floppy contains the Bloodhound.boot???? -- Just my 2 bits.
	to forum · permalink · 2001-09-27 00:51:24 ·
Name Game$ join:2001-09-01 North Myrtle Beach, SC	Everything That I have ever read at Mcafee has the fine print on those back pages telling you to first uninstall Nut and Bolts, checkit and so many other apps. before you install and use their software.Norton has it own Utilites in competition with Checkit, why you can not even get a free security scan from Symantec if you have an outdated version of Norton AV on your PC, you must uninstall it first. I think you have now come to the correct conclusion. I was trying to tell you that in my other post. Every company wants your business. To make both of these apps. work together will be a challange for you.
	to forum · permalink · 2001-09-27 12:58:20 ·
Steve I know your IP address Consultant join:2001-03-10 Yorba Linda, CA kudos:5	reply to gt7697c said by gt7697c: Would the fact that this floppy contains stand alone Diagnostic Utilities cause NAV to think that this floppy contains the Bloodhound.boot???? Boot sector code has to fit in a very small space (less than 512 bytes), and by the time you add the code that simply has to be there to boot the machine, there is very little room for the shenanigans. This suggests that a relatively small signature is used to detect the "bad stuff", and it's not out of the question that "good stuff" could be mistaken for it. But I have zero actual knowledge of any of these utilities -- just speaking in general. Steve -- Stephen J. Friedl / Software Consultant / Tustin, California USA / »www.unixwiz.net
	to forum · permalink · 2001-09-27 13:01:20 ·

Broadband Tech > Security > Security > Got a boot virus!!!

Can't repair it.

Re: Got a boot virus!!!