Solved

How do I get rid of the Trojan:”  Https Tidserv Request 2 ” from my computer

Posted on 2010-11-09
6
1,194 Views
Last Modified: 2013-11-22
My operating system is Windows XP Service Pack 3, I am running Norton 360 Antivirus Software and I am using Internet Explorer 8. Every 5 -6 minutes Norton is telling it has intersected an attempt on my computer. Every 10 minutes, an Antivus8 application activates and tells me that I need to download a program from the internet to clear the virus.  I cannot delete the program, nor can I uninstall it. I cannot find in the Programs Folder, where it has loaded itself onto the hard-drive so I assume it is in the Registry Files or Rootkit. I do have the programs SequoiaView and Spacemonger loaded onto the computer, I have also tried deleting the AV8 Folder from Programs, using Chaos Shredder, but this doesn’t work either. I have tried running Registry Crawler and Registry Healer and although it finds 2 incorrect or invalid entries, it does not find the Trojan. Is it possible to REMOVE the Trojan with having to Reformat the disk....?  aussiecuttlefish
0
Comment
Question by:aussiecuttlefish
6 Comments
 
LVL 2

Expert Comment

by:rachel83
ID: 34092569
Have you tried Spybot Search and Destroy?

http://www.safer-networking.org/index2.html
0
 
LVL 47

Accepted Solution

by:
rpggamergirl earned 500 total points
ID: 34092665
Use TDSSKiller or HitmanPro.
Download TDSSKiller and save it to your Desktop.
http://support.kaspersky.com/downloads/utils/tdsskiller.zip


HitmanPro:
http://www.surfright.nl/en/hitmanpro


If the problem persists, run comboFix and attach the log here.
http://www.bleepingcomputer.com/combofix/how-to-use-combofix
0
 
LVL 47

Expert Comment

by:rpggamergirl
ID: 34092683
You could also try MalwareBytes first if you wish, it detects and removes most rogues.
MalwareBytes:
http://www.malwarebytes.org/mbam-download.php
0
How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

 
LVL 29

Expert Comment

by:Sudeep Sharma
ID: 34093278
You could also try fix from Symantec for TDSS rootkit

http://www.symantec.com/content/en/us/global/removal_tool/threat_writeups/FixTDSS.exe

I hope that would help

sudeep
0
 

Author Closing Comment

by:aussiecuttlefish
ID: 34098273
After running TDSSKiller - the program found the following Malicious Object and completely removed it :

Rootkit.Win32.TDSS.td14

The AV8 appears to gone from the system. Currently running a complete Deep System scan. Thank You for your assistance and you have definitely earnt the 500 points and my Congratulations on such speedy and efficient service..
aussiecuttlefish
0
 
LVL 47

Expert Comment

by:rpggamergirl
ID: 34098458
You're welcome, I'm glad to know that the issue is now resolved.

Thanks for the points! :)
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

Some site administrators might be considering how to filter incoming traffic to a site by identifying the domains or networks of the traffic source, in the same way that a spam filter does on an email server, such as blocking all emails sent from th…
PREFACE The purpose of this guide is to explain what the SEPC Status Utility is and how it works. I have written the utility using AutoIt and have included the source code for your review. You are welcome to modify the code to your liking, but I wi…
Illustrator's Shape Builder tool will let you combine shapes visually and interactively. This video shows the Mac version, but the tool works the same way in Windows. To follow along with this video, you can draw your own shapes or download the file…
When you create an app prototype with Adobe XD, you can insert system screens -- sharing or Control Center, for example -- with just a few clicks. This video shows you how. You can take the full course on Experts Exchange at http://bit.ly/XDcourse.

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now