10-18-2010 03:40 PM
My norton 360 keeps blocking attacks every ten minutes. This has occurred since last Thursday. In addition, the blue bar (the one where the start button and all the icons are lined up) keeps turning from blue to grey. Because of this, I called Dell and paid good money for them to clean my computer using malwarebytes. However, the problem still persists.
I have windows XP, Norton 360, and only use firefox. Please help. other information that might be useful is: application path/device/harddiskvolume2/windows/system32/svhos
If there is anything else, I should add to this please inform me. I am a college student. I graduate this year. I cannot afford to have my computer crashing at me, so please help
Solved! Go to Solution.
10-22-2010 08:39 AM
Sorry for not responding earlier. I had a midterm paper. I was forced to use my brother's computer for it.
Eversince the last time, my computer has been directing me to other websides while being here in Norton Community. I contact the [insert company's name] techinitian. They basically had no idea of what I was talking about. They told me to just click on the stop notification button. Then they tried to restore my pogram twice. It was not successful. Finally, they gave up and told me to keep an eye on it.
Now here is the information from that I get from these notifications:
Risk name: HTTPS tidserve Request 2
attacking computer: 188.8.131.52, 443
source address: 184.108.40.206
traffic description: TCP, https
risk name: HTTPS tidserve Request 2
attacking computer: 194. 28. 113.22, 443
source address: 220.127.116.11, 443
traffic description: TCP, https
I have basic computer knowledge. Really, basic, so I cannot very complicated things, but please do help me. I need my computer to graduate. Thank you for your time :)
10-22-2010 11:29 AM
Quads isn't online at the moment. Try his instructions in this post.
If you have difficulties gett ing to the sites or web pages, let us know. Let us know also what is found and the results.
10-22-2010 03:17 PM
I ran the first option given and nothing came up. I have a question on the following directions for the second option that quads provided. The directions from TDSSkiller says:
Ok, so which one should I use? TDSSKiller.zip or TDSSkiller.exe?
Also its says extract it into a folder on the infected pac and use archiver. what does this mean? how can i know where to put it. I am sorry I know I am asking probable obvious questions, but I never had this problem before.
10-22-2010 03:26 PM - edited 10-22-2010 03:29 PM
The .exe is the same as the one in the zip archive, you can download the .exe version which means you don't need to unzip it.
You can run TDSSkiller from you desktop.
An archiver is a program like Winzip etc. that will extract the file from the .zip archive. Though Windows is able to extract from standard .zip archives.
As I said
You will see that an .exe version is available for download."
Click on the TDSSKiller.exe. on the TDSSkiller site
10-22-2010 06:38 PM - edited 10-22-2010 06:43 PM
After the Scan is run, showing the TDL4 Bootkit, select Cure from the list (See a screenshot on the TDSSkiller site), once cure is selected in the options click continue and TDSSkiller will restart the PC to Cure the MBR.
10-22-2010 08:59 PM
It has been three hours since the computer rebooted. The pop ups have stopped, and the task bar has not changed colors. It seems the problem has been solved.
10-23-2010 11:32 AM
If you consider your problem to have been solved, please mark the post which gave you the solution. That way everyone wil know that the thread has been solved and will be able to find the solution quickly. Thanks.
Success always occurs in private and failure in full view.