Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Sudden repeated attacks, Tidserv Request 2


  • Please log in to reply
1 reply to this topic

#1 hokies94

hokies94

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:04:19 PM

Posted 02 June 2010 - 10:51 PM

This is my first time posting, so apologies if I proceed incorrectly. I have all of a sudden been receiving pop-ups from Norton that say "A recent attempt to attack your computer was blocked." They are coming minutes apart since this morning; not sure I had ever seen prior to that. I have run Full Scans using both Norton and Malwarebytes. Beyond that, I'm out of my league and would greatly appreciate any help. Thanks so much.

Edited by Pandy, 03 June 2010 - 01:51 AM.
Moved from Malware Removal as no logs were included ~Pandy


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,212 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:19 PM

Posted 03 June 2010 - 02:23 PM

Hello and welcome. Please give this a go.

Is this PC on a network?

Run a full system scan in safe mode with the latest Norton definitions. Then unplug the network connection and reboot the computer. Does the backdoor.tidserv detection come up again? If so, then we need to search for another undetected process on your computer.


Now run TDDS Killer
Please read carefully and follow these steps.
  • Download TDSSKiller and save it to your Desktop.
  • Extract its contents to your desktop and make sure TDSSKiller.exe (the contents of the zipped file) is on the Desktop itself, not within a folder on the desktop.
  • Go to Start > Run (Or you can hold down your Windows key and press R) and copy and paste the following into the text field. (make sure you include the quote marks) Then press OK. (If Vista, click on the Vista Orb and copy and paste the following into the Search field. (make sure you include the quotation marks) Then press Ctrl+Shift+Enter.)


    "%userprofile%\Desktop\TDSSKiller.exe" -l C:\TDSSKiller.txt -v



    Rerun MBAM (MalwareBytes) like this:

    Open MBAM in normal mode and click Update tab, select Check for Updates,when done
    click Scanner tab,select Quick scan and scan (normal mode).
    After scan click Remove Selected, Post new scan log and Reboot into normal mode.

  • If it says "Hidden service detected" DO NOT type anything in. Just press Enter on your keyboard to not do anything to the file.
  • It may ask you to reboot the computer to complete the process. Allow it to do so.
  • When it is done, a log file should be created on your C: drive called "TDSSKiller.txt" please copy and paste the contents of that file here.

Edited by boopme, 03 June 2010 - 02:23 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users