09-19-2009 10:32 AM
I thinking this may have something to do with either a virus or malware, but I try to start a Full or Quick Scan and they just hang and scan no files, then I can't even quit the program.
I've a Full Scan in Safe Mode but it doesn't find anything. In normal mode I've had "a.exe" not working properly messages, which I've found out is a trojan and every 4 hours Backdoor.Tidservis blocked.
If somebody could help me clear this up would be much appreciated, hoping I don't have to take to drastic measures and format C:\
Solved! Go to Solution.
09-19-2009 10:46 AM - edited 09-19-2009 10:49 AM
The user will not be able to update, uninstall, or reinstall a new version over top of a rootkit. Malwarebytes will not run, nor will SAS.
We might as well find out exactly which rootkit is being identified as Backdoor.tidsrv
Please run a SysProt log for us so we can check your system for rootkit activity. You will need to disable Norton auto-protect while you run the scan.
Once it is downloaded to your desktop, right click on the SysProt icon, go to properties, and click unblock and apply.
Choose log, check all the boxes except show hidden objects only and scan.
You will be able to post the log here using the "add attachments" link just below the orange post button.
09-19-2009 11:07 AM - edited 09-19-2009 11:18 AM
All Drives or just Root Drive???
Root Scan attached...
09-19-2009 01:18 PM
09-19-2009 01:25 PM
09-19-2009 07:08 PM
I'm just checking in to let you know that you haven't been forgotten. This is a fairly new rootkit infection and is a bit more difficult to resolve. There are two other users with a similar infection, being worked on. As those are resolved, it will also help with yours.