Symanec Protection Suites

Hi,

I've been trying to help a friend with a virus. He has Norton 360. Which is having a pop up warning about being infected with a tidserv activity 2 when he connects to the internet. I have already tried using theFull sacns,  Norton FixTIDD, and Power Eraser. Neither was able to get rid of it. My guess is it's a new variant. Any thoughts or suggestions?

JJ

More Details: Windows XP system.

Norton 360 full scan did not find virus, but has pop up window warning of tidserv when accessing internet.

Downloaded and ran FixTiDDS tool, It did not find virus.

Downoaded and Ran Power Eraser, which found tidserv virus but could not remove virus.

Also tried one from Malware bytes, But when accessing internet pop up notice from Norton still comes up.

Sorry your friend is having a problem.  Can you please post this information in the Norton 360 forum over here?  This will help to have the correct folks looking at this.   Also, please include the version of Norton 360 and the version of Power Eraser (Norton or Symantec) that you ran. 

Thanks,
John

I would give the Norton Bootable Recovery Tool a shot at removing this threat.

http://security.symantec.com/nbrt/nbrt.aspx?lcid=1033&serviceid=na&pname=na&pversion=na&origin=olhelp&env=prod&layout=esd&osver=na&vendorid=na&ispid=na

Best,

Thomas

You might try TDSSkiller from Kaspersky

Other choice would be ComboFix (available from bleepingcomputer dot com).

Once you clear the rootkit, be sure and rescan everything with Norton, and Malwarebytes just to be sure.

Nasty variants out there