07-19-2012 10:58 PM
Hello, can I get some help with a persistent Boot.Tidserv infection? Currently running Norton 360 on a Windows Vista Home Premium SP 1 64-bit OS.
The warning from Norton pops up quite frequently. Multiple system restores haven't done much :\
07-20-2012 12:20 AM
ANY other user other than the thread starter is not to use any instructions, scripts or proceedures, The work though in cleaning a system is individual and only for that system due to a number of factors.
Please do not run any tools unless instructed to do so.
4. Cleanup (including system as a whole)
Please read every post completely before doing anything.
Do you have a Flash Drive??
07-20-2012 11:31 PM
Please read carefully
1. Please download aswMBR hxxp://public.avast.com/~gmerek/aswMBR.exe to your desktop. (replace the hxxp with http)
Double click the aswMBR.exe icon to run it
it will ask to download extra definitions - ALLOW IT / Yes
Click the Scan button to start the scan
On completion of the scan, click the save log button, save it to your desktop and Please attach the log in the post back, Don't have the program fix anything.
09-07-2012 10:43 PM
There is no point to me doing this thread if there is a large gap between steps, as if we are in the middle of not cleaning enough of the system and there becomes a large gap, the infection could alter or rebuild itself during the process.
One user found this out by getting infected 3 times with zeroaccess.
As it is you have 2 partitions infected.
09-08-2012 10:12 PM
Read Slowly and all of it.
Please download http://www.bleepingcomputer.com/download/farbar-re
Transfer it on to the Flash Drive
Enter System Recovery Options.
To enter System Recovery Options from the Advanced Boot Options:
On the System Recovery Options menu you will get the following options:
Windows Complete PC Restore
Windows Memory Diagnostic Tool
09-09-2012 03:27 PM
Download the script attached, needs to be the same file name as well (fixlist.txt), Copy across to flash drive
NOTE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
Now please enter System Recovery Options again. Like previously