• Toute la Communauté
    • Toute la Communauté
    • Forums
    • Idées
    • Blogs
Avancé

Pas ce que vous cherchiez ? Demandez aux experts !

Remerciements0

(9113e4f4-bdo2-11de-8c52-0023542e4eb2). dat Bloodhound.exploit.281)

Under resolved security risks I see (9113e4f4-bdo2-11de-8c52-0023542e4eb2). dat Bloodhound.exploit.281) detected by download insight

Status- quarantined

 RISK- HIGH

here is a photo I took of some actions it did

How come download insight found this if the only things I have downloaded are Microsoft updated , and norton updates????

[edit: Clarified subject and resized image.]

Message Edited by shannons on 11-11-2009 08:01 AM

Réponses

Remerciements1 Stats

Re: (9113e4f4-bdo2-11de-8c52-0023542e4eb2). dat Bloodhound.exploit.281)

Hi Grate Nate

This might have happened because both Windows Updates and the Norton updates came out the same day. The new updates most likely haven't been entered yet into the IPS definitions and also these updates just came out, so not too many people have them yet on their systems. Can you check to see if your windows updates were successfully downloaded and installed by going to Windows Update stie and checking on the installation history there.? You can also check to see if your NIS product changed to the newer version when you check About. Can you please let us know the results. Thanks.

Success always occurs in private and failure in full view. Windows 10 Pro 64 bit Norton Core Security Plus 22.18.0.213 Core Firmware 282 I E 11 Chrome latest version.
Remerciements0

Re: (9113e4f4-bdo2-11de-8c52-0023542e4eb2). dat Bloodhound.exploit.281)

No windows updates on oct 19, and yes im using the new norton update
Remerciements1 Stats

Re: (9113e4f4-bdo2-11de-8c52-0023542e4eb2). dat Bloodhound.exploit.281)

Hi Great Nate

Windows Updates just came out yesterday Nov 10th. Were those updates downloaded and installed according to your history in Windows updates history.?

Success always occurs in private and failure in full view. Windows 10 Pro 64 bit Norton Core Security Plus 22.18.0.213 Core Firmware 282 I E 11 Chrome latest version.
Remerciements0

Re: (9113e4f4-bdo2-11de-8c52-0023542e4eb2). dat Bloodhound.exploit.281)

Yes I got those updates from yesterday and installed them today. The bloodhound was found and quarantined awhile back. October 19th to be exact I was just looking over my scan results and saw it. was shoockled because I barely download anything. And if I do I reearch the site
Remerciements0

Re: (9113e4f4-bdo2-11de-8c52-0023542e4eb2). dat Bloodhound.exploit.281)

Hi Great Nate

It may have happened before the ips definitions were tweaked. It apparently found something which it felt needed to be removed. You could submit the file to Norton or Threatfire if you think it was a false positive. Oct was a month with a lot of Windows updates. Can you check to see if all the windows updates for Oct were successfully installed on that date?

I can't check to see when I installed the windows updates in Oct. because my hard drive died the last week of Oct and everything had to be installed again that week.

Message Edited by floplot on 11-11-2009 12:01 PM
Success always occurs in private and failure in full view. Windows 10 Pro 64 bit Norton Core Security Plus 22.18.0.213 Core Firmware 282 I E 11 Chrome latest version.
Remerciements0

Re: (9113e4f4-bdo2-11de-8c52-0023542e4eb2). dat Bloodhound.exploit.281)

they were all downloaded fine. Maybe it was just a good old fashond virus??? Maybe it secretly installed itself???
Remerciements0

Re: (9113e4f4-bdo2-11de-8c52-0023542e4eb2). dat Bloodhound.exploit.281)

Hi Great Nate

Yes, sometimes viruses just appear. It looks like your program did just what it was supposed to do. It found the virus and it got rid of it and put it into quaratine. If you want to make sure you are clean, you can run the free version of malwarebytes and do a full scan with that. www.malwarebytes.org. Download the program, install it, update it, and then run the scan. You can then post the saved scan here using the add attachments line directly below the post button.

Success always occurs in private and failure in full view. Windows 10 Pro 64 bit Norton Core Security Plus 22.18.0.213 Core Firmware 282 I E 11 Chrome latest version.
Remerciements2 Stats

Re: (9113e4f4-bdo2-11de-8c52-0023542e4eb2). dat Bloodhound.exploit.281)

If you had had a virus on your system, then your other scans would have shown that also.  This is a heurestic scanner removal which means that something in that file looked like it would act the same as a bloodhound type virus.  As this was found in IE8 recovery data, it is most likely a false positive due to the SONAR / BASH scanning chacteristics not being adjusted properly for that data store yet.  If all your regular scans since then have been clean then there is nothing to worry about.  If you would like, you can submit the file to Symantec from the Options menu from the Resolved Security Risks item in the History logs.
Win10 x64; Proud graduate of GeeksToGo
Remerciements0

Re: (9113e4f4-bdo2-11de-8c52-0023542e4eb2). dat Bloodhound.exploit.281)

thanks for the input db. weather it was a threat or not its over and done with
Remerciements0

Re: (9113e4f4-bdo2-11de-8c52-0023542e4eb2). dat Bloodhound.exploit.281)

Hi GreatNate

If you think your thread has been solved, please mark the post that gave you the correct answer by clicking on the green button by that post. This way others will know that the problem has been solved. If you have any other concerns in the future, just come back again and open up a new thread. Thanks

Success always occurs in private and failure in full view. Windows 10 Pro 64 bit Norton Core Security Plus 22.18.0.213 Core Firmware 282 I E 11 Chrome latest version.
Remerciements0

Re: (9113e4f4-bdo2-11de-8c52-0023542e4eb2). dat Bloodhound.exploit.281)


GreatNate1312 wrote:

Under resolved security risks I see (9113e4f4-bdo2-11de-8c52-0023542e4eb2). dat Bloodhound.exploit.281) detected by download insight

Status- quarantined

 RISK- HIGH

here is a photo I took of some actions it did

How come download insight found this if the only things I have downloaded are Microsoft updated , and norton updates????


It looks to me like some while ago you visited or were redirected to a mal-site which crashed IE8.  Since IE8 has a Recovery feature enabling you to restore it to sites it was on when it crashed, the offending file was included in the Recovery data.

Perhaps IE8 tried to present you with this recovery option or it came up when you doodling with the various menus.  When it did so, the file that was infected triggered a Norton interception and removal.

mijN360 2013, v.20.1.0.24; Win7 Pro, SP1 (32 bit), IE 9, Firefox 14, No other active securityware

This thread is closed from further comment. Please visit the forum to start a new thread.