Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

av360, cannot installe mbam or other cleaners


  • Please log in to reply
7 replies to this topic

#1 agilulf

agilulf

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:12:14 PM

Posted 10 February 2009 - 11:30 AM

Hello,

One of the users at work got antivirus 360 on his PC, I was able to remove the av360.exe manually and remove a couple of registry entries, so at least its not nagging him or dishing out fake bsod any more but, I cannot install malwarebytes or spyware doctor and system restore just seems to hang and not run even in safe mode.

Any advice would be appreciated, I cannot even use the infected PC to download or search or post on this forum, as there must be some BHO or proxy redirecting me at every turn.

HELP PLEASE, I have had to travel a 4 hour drive to get to this users location, as I couldn't do anything using terminal service and I will only be in this location today.

BC AdBot (Login to Remove)

 


#2 agilulf

agilulf
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:12:14 PM

Posted 10 February 2009 - 01:53 PM

update

I was able to finally get malwarebytes installed. I also installed syware doctor and spyhunter, but both of them wanted me to purchase it before they would remove anything.

Once my antivirus (ca integrated threat manager, etrust antivirus and pest patrol) started running it found Win32/Alureon.TY, FakeAlert.H2, Win32/TSstealth.G

I had malwarebytes try to fix everything it found 12 objects, but on a reboot, spyware doctor found TDSServ in 53 registry keys, but wouldn't fix it without buying it

Any ideas to help get rid of this thing. I don't want it returning, there may be rootkits on this PC, is there a way to make sure I get it clean, without a format and re-install of the OS. I am not sure that I have that much time since I am out of town.

#3 agilulf

agilulf
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:12:14 PM

Posted 10 February 2009 - 03:04 PM

Update II

SuperAntiSpyware to the rescue. So far it looks like SAS took care of the TDSServ.sys stuff.

I am now running all windoze updates for PC and will check back on it later, At least at this point, I can remote in to keep an eye on it, and if necessary will travel back onsite to format and re-install OS.

Thanks for the place to rant and ruminate, even if I solved my own issues.

#4 snowdrop

snowdrop

  • Members
  • 513 posts
  • OFFLINE
  •  
  • Local time:11:14 AM

Posted 10 February 2009 - 04:50 PM

If you have the reports from the superantispyware and malwarebytes programs you could post them for someone to look over for you?

#5 agilulf

agilulf
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:12:14 PM

Posted 10 February 2009 - 05:15 PM

okay I can post them. this damn TDSServ.sys in the registry keeps reloading after I clean it with SuperAntiSpyware

#6 agilulf

agilulf
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:12:14 PM

Posted 10 February 2009 - 05:33 PM

superantispyware log

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 02/10/2009 at 02:35 PM

Application Version : 4.25.1012

Core Rules Database Version : 3749
Trace Rules Database Version: 1716

Scan type : Quick Scan
Total Scan Time : 00:09:35

Memory items scanned : 748
Memory threats detected : 0
Registry items scanned : 432
Registry threats detected : 23
File items scanned : 9244
File threats detected : 5

Adware.Vundo Variant
HKU\S-1-5-21-1740846622-1781890777-1232828436-1575\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D263FA6D-84CC-48A8-9AF6-C664362B7A5B}

Adware.Tracking Cookie
C:\Documents and Settings\asyvertsen.ESEC\Cookies\asyvertsen@statcounter[1].txt
C:\Documents and Settings\asyvertsen.ESEC\Cookies\asyvertsen@clickbank[1].txt
C:\Documents and Settings\asyvertsen.ESEC\Cookies\asyvertsen@doubleclick[1].txt

Rootkit.TDSServ
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys#start
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys#type
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys#imagepath
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys#group
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\modules
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\modules#TDSSserv
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\modules#TDSSl
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\modules#tdssservers
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\modules#tdssmain
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\modules#tdsslog
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\modules#tdssadw
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\modules#tdssinit
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\modules#tdssurls
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\modules#tdsspanels
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\modules#tdsserrors
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\modules#TDSSproc
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\Enum
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\Enum#0
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\Enum#Count
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\Enum#NextInstance
HKLM\SYSTEM\CurrentControlSet\Services\TDSSserv.sys\Enum#INITSTARTFAILED

Rogue.AntiVirus360
C:\RECYCLER\S-1-5-21-1740846622-1781890777-1232828436-1575\DC2\AV360.EXE

Rootkit.TDSServ-Trace
C:\WINDOWS\SYSTEM32\TDSSLPIT.DAT

#7 agilulf

agilulf
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:12:14 PM

Posted 10 February 2009 - 05:50 PM

Spydoctor detects the following still in registry keys... but I don't want to buy it to clean this unless there is no alternative.


PC Tools Spyware Doctor
Date Status
2/10/2009 1:25:53 PM:759 Service Started
Spyware Doctor Service Application started
2/10/2009 1:25:53 PM:790 Anti-Malware Engine
Anti-Malware engine configuration loaded successfully.
2/10/2009 1:25:56 PM:447 Anti-Malware Engine
Anti-Malware detection engine was disabled
2/10/2009 1:38:50 PM:676 Scan Started
Scan Type - Intelli-Scan

2/10/2009 1:39:07 PM:925 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS, NextInstance

2/10/2009 1:39:07 PM:940 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Service

2/10/2009 1:39:07 PM:940 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Legacy

2/10/2009 1:39:07 PM:940 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ConfigFlags

2/10/2009 1:39:07 PM:940 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Class

2/10/2009 1:39:07 PM:940 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ClassGUID

2/10/2009 1:39:07 PM:940 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, DeviceDesc

2/10/2009 1:39:07 PM:956 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Capabilities

2/10/2009 1:39:07 PM:956 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000\LogConf

2/10/2009 1:39:07 PM:956 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000\Control

2/10/2009 1:39:07 PM:956 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 1:39:07 PM:956 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 1:39:07 PM:956 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS, NextInstance

2/10/2009 1:39:07 PM:972 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Service

2/10/2009 1:39:07 PM:972 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Legacy

2/10/2009 1:39:07 PM:972 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ConfigFlags

2/10/2009 1:39:07 PM:972 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Class

2/10/2009 1:39:07 PM:972 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ClassGUID

2/10/2009 1:39:07 PM:987 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, DeviceDesc

2/10/2009 1:39:07 PM:987 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Capabilities

2/10/2009 1:39:07 PM:987 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000\LogConf

2/10/2009 1:39:08 PM:3 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 1:39:08 PM:3 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 1:39:08 PM:3 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS, NextInstance

2/10/2009 1:39:08 PM:3 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Service

2/10/2009 1:39:08 PM:3 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Legacy

2/10/2009 1:39:08 PM:3 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ConfigFlags

2/10/2009 1:39:08 PM:19 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Class

2/10/2009 1:39:08 PM:19 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ClassGUID

2/10/2009 1:39:08 PM:19 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, DeviceDesc

2/10/2009 1:39:08 PM:19 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Capabilities

2/10/2009 1:39:08 PM:19 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000\LogConf

2/10/2009 1:39:08 PM:19 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000\Control

2/10/2009 1:39:08 PM:34 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 1:39:08 PM:34 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 1:39:08 PM:50 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, CSConfigFlags

2/10/2009 1:39:08 PM:50 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 1:39:08 PM:50 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 1:39:08 PM:50 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, CSConfigFlags

2/10/2009 1:39:08 PM:50 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 1:39:08 PM:65 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 1:39:08 PM:65 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, CSConfigFlags

2/10/2009 1:39:08 PM:65 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 1:39:08 PM:65 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 1:39:08 PM:81 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, CSConfigFlags

2/10/2009 1:39:08 PM:81 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 1:39:08 PM:81 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 1:39:08 PM:97 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, CSConfigFlags

2/10/2009 1:39:08 PM:97 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 1:39:08 PM:97 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 1:39:08 PM:128 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\SERVICES\TDSSSERV.SYS

2/10/2009 1:39:08 PM:128 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\SERVICES\TDSSSERV.SYS

2/10/2009 1:39:08 PM:128 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\SERVICES\TDSSSERV.SYS

2/10/2009 1:41:12 PM:601 Scan Finished
Scan Type - Intelli-Scan
Items Processed - 204141
Threats Detected - 1
Infections Detected - 53
Infections Ignored - 0

2/10/2009 1:57:20 PM:16 Scan Started
Scan Type - Intelli-Scan

2/10/2009 1:57:40 PM:18 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS, NextInstance

2/10/2009 1:57:40 PM:18 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Service

2/10/2009 1:57:40 PM:18 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Legacy

2/10/2009 1:57:40 PM:34 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ConfigFlags

2/10/2009 1:57:40 PM:34 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Class

2/10/2009 1:57:40 PM:34 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ClassGUID

2/10/2009 1:57:40 PM:34 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, DeviceDesc

2/10/2009 1:57:40 PM:34 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Capabilities

2/10/2009 1:57:40 PM:50 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000\LogConf

2/10/2009 1:57:40 PM:50 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000\Control

2/10/2009 1:57:40 PM:50 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 1:57:40 PM:50 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 1:57:40 PM:65 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS, NextInstance

2/10/2009 1:57:40 PM:65 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Service

2/10/2009 1:57:40 PM:65 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Legacy

2/10/2009 1:57:40 PM:65 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ConfigFlags

2/10/2009 1:57:40 PM:65 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Class

2/10/2009 1:57:40 PM:65 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ClassGUID

2/10/2009 1:57:40 PM:81 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, DeviceDesc

2/10/2009 1:57:40 PM:81 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Capabilities

2/10/2009 1:57:40 PM:81 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000\LogConf

2/10/2009 1:57:40 PM:81 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 1:57:40 PM:81 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 1:57:40 PM:81 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS, NextInstance

2/10/2009 1:57:40 PM:97 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Service

2/10/2009 1:57:40 PM:97 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Legacy

2/10/2009 1:57:40 PM:97 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ConfigFlags

2/10/2009 1:57:40 PM:97 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Class

2/10/2009 1:57:40 PM:97 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ClassGUID

2/10/2009 1:57:40 PM:97 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, DeviceDesc

2/10/2009 1:57:40 PM:112 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Capabilities

2/10/2009 1:57:40 PM:143 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000\LogConf

2/10/2009 1:57:40 PM:159 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000\Control

2/10/2009 1:57:40 PM:159 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 1:57:40 PM:159 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 1:57:40 PM:175 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, CSConfigFlags

2/10/2009 1:57:40 PM:175 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 1:57:40 PM:190 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 1:57:40 PM:206 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, CSConfigFlags

2/10/2009 1:57:40 PM:222 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 1:57:40 PM:222 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 1:57:40 PM:222 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, CSConfigFlags

2/10/2009 1:57:40 PM:237 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 1:57:40 PM:237 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 1:57:40 PM:253 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, CSConfigFlags

2/10/2009 1:57:40 PM:253 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 1:57:40 PM:253 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 1:57:40 PM:268 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, CSConfigFlags

2/10/2009 1:57:40 PM:268 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 1:57:40 PM:268 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 1:57:40 PM:300 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\SERVICES\TDSSSERV.SYS

2/10/2009 1:57:40 PM:300 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\SERVICES\TDSSSERV.SYS

2/10/2009 1:57:40 PM:315 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\SERVICES\TDSSSERV.SYS

2/10/2009 1:59:49 PM:340 Scan Finished
Scan Type - Intelli-Scan
Items Processed - 204277
Threats Detected - 1
Infections Detected - 53
Infections Ignored - 0

2/10/2009 2:39:28 PM:250 Service Stopped
Spyware Doctor Service Application Stopped
2/10/2009 4:40:35 PM:866 Service Started
Spyware Doctor Service Application started
2/10/2009 4:40:37 PM:770 Anti-Malware Engine
Anti-Malware engine configuration loaded successfully.
2/10/2009 4:46:51 PM:13 Scan Started
Scan Type - Intelli-Scan

2/10/2009 4:47:14 PM:786 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS, NextInstance

2/10/2009 4:47:14 PM:833 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Service

2/10/2009 4:47:14 PM:833 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Legacy

2/10/2009 4:47:14 PM:833 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ConfigFlags

2/10/2009 4:47:14 PM:849 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Class

2/10/2009 4:47:14 PM:849 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ClassGUID

2/10/2009 4:47:14 PM:849 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, DeviceDesc

2/10/2009 4:47:14 PM:849 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Capabilities

2/10/2009 4:47:14 PM:911 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000\LogConf

2/10/2009 4:47:14 PM:911 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 4:47:14 PM:911 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 4:47:14 PM:911 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\ENUM\ROOT\LEGACY_TDSSSERV.SYS, NextInstance

2/10/2009 4:47:14 PM:927 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Service

2/10/2009 4:47:14 PM:927 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Legacy

2/10/2009 4:47:14 PM:927 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ConfigFlags

2/10/2009 4:47:14 PM:927 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Class

2/10/2009 4:47:14 PM:927 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ClassGUID

2/10/2009 4:47:14 PM:927 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, DeviceDesc

2/10/2009 4:47:14 PM:943 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Capabilities

2/10/2009 4:47:14 PM:943 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000\LogConf

2/10/2009 4:47:14 PM:943 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 4:47:14 PM:943 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 4:47:14 PM:943 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS, NextInstance

2/10/2009 4:47:14 PM:943 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Service

2/10/2009 4:47:14 PM:943 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Legacy

2/10/2009 4:47:14 PM:958 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ConfigFlags

2/10/2009 4:47:14 PM:958 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Class

2/10/2009 4:47:14 PM:958 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, ClassGUID

2/10/2009 4:47:14 PM:958 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, DeviceDesc

2/10/2009 4:47:14 PM:958 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, Capabilities

2/10/2009 4:47:14 PM:958 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000\LogConf

2/10/2009 4:47:14 PM:958 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 4:47:14 PM:958 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 4:47:15 PM:36 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, CSConfigFlags

2/10/2009 4:47:15 PM:36 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 4:47:15 PM:36 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 4:47:15 PM:52 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, CSConfigFlags

2/10/2009 4:47:15 PM:52 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 4:47:15 PM:52 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 4:47:15 PM:83 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, CSConfigFlags

2/10/2009 4:47:15 PM:83 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 4:47:15 PM:83 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 4:47:15 PM:83 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, CSConfigFlags

2/10/2009 4:47:15 PM:83 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 4:47:15 PM:83 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\0001\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 4:47:15 PM:99 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Value
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000, CSConfigFlags

2/10/2009 4:47:15 PM:99 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS\0000

2/10/2009 4:47:15 PM:99 Infection was detected on this computer
Threat Name - Trojan.TDSServ
Type - Registry Key
Risk Level - High
Infection - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\HARDWARE PROFILES\Current\SYSTEM\CurrentControlSet\ENUM\ROOT\LEGACY_TDSSSERV.SYS

2/10/2009 4:49:16 PM:91 Scan Finished
Scan Type - Intelli-Scan
Items Processed - 203645
Threats Detected - 1
Infections Detected - 48
Infections Ignored - 0

2/10/2009 5:24:44 PM:64 Service Stopped
Spyware Doctor Service Application Stopped
2/10/2009 5:28:28 PM:968 Service Started
Spyware Doctor Service Application started
2/10/2009 5:28:29 PM:78 Anti-Malware Engine
Anti-Malware engine configuration loaded successfully.
2/10/2009 5:28:38 PM:234 Service Stopped
Spyware Doctor Service Application Stopped
2/10/2009 5:30:15 PM:937 Service Started
Spyware Doctor Service Application started
2/10/2009 5:30:15 PM:968 Anti-Malware Engine
Anti-Malware engine configuration loaded successfully.
2/10/2009 5:36:05 PM:578 Service Stopped
Spyware Doctor Service Application Stopped
2/10/2009 5:37:05 PM:0 Service Started
Spyware Doctor Service Application started
2/10/2009 5:37:05 PM:0 Anti-Malware Engine
Anti-Malware engine configuration loaded successfully.

#8 agilulf

agilulf
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:12:14 PM

Posted 11 February 2009 - 01:47 PM

I never heard back from anyone last night, while I was still at the remote location. So I ran combofix,

All of the TBSSERV.sys entries in the regsitry are now gone.

For now the PC appears to be stable, but I am still concerned about the possiblity of a rootkit or some other stealth objects.

Any other suggestions would be appreciated.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users