11-22-2011 11:22 AM
I recently came down with this nasty virus and contacted symantec to assist with the problem. They have spent over 10 hours and escalated it up to the "expert" team to have them work on it. I say expert with tongue in cheek. they have run so many different tools that I can't even come close to listing them all. The bottom line is as follows, after speaking to and having 8 technicians log onto my computer, they have reinstalled Windows 7 twice and still no fix for the Boot.tidserv issue. So today they call me and tell me to contact a local vendor as they have no answers. What a complete waste of my time.
So the question now is, if I replace the hard drive and do a completely new install of windows, could this virus reside in any other part of my computer?
11-22-2011 12:12 PM
Boot.Tidserv is the detection for the Boot Sector (MBR) being infected with TDL4 (TDSS, Tidserv). which tools like TDSSKiller keep getting updated for the fast moving family to detect and cure the latest varinats.
With thinking about it, (just thinking) Boot.Tidserv could also be detected for the TDL modification MaxSS which is different in terms of like the Original MBR does not get altered, but instead has it's own Partition with files inside there.
Reinstalling Windows 7 does not work as a standard Reinstall or Repair does not remove the problem and at times even a standard Reformat does not work either.
Also when using another program to remove a infection Norton with have the detection that keeps notifying the user(s) of the threat. This is because the listing is still in the Unresolved Threats list and needs to be cleared.