Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Trojan Alureon.A Detected After Clean Win7 Install

17 May 2013   #1
sharona

Windows 7 Professional SP1 64 bit
 
 
Trojan Alureon.A Detected After Clean Win7 Install

A brief intro: I'm working on a family friend's laptop. It's a Dell Vostro 3550. After doing a factory reset, I was still getting tons of BSODs. You can find info on all that in this thread. I did a Clean Windows 7 install because all signs pointed to hardware issues, but we wanted to be sure.

The only things I put on the laptop were a WiFi driver, Windows Updates, and MSE. MSE immediately detected Trojan Alureon.A. I had it do what it could, then it suggested using Window Defender to finish up removal. Before I did that, I did some googling. I installed MalwareBytes Anti-Malware, which detected nothing. I then got Kapersky's TDSSKiller.exe, which detected the rootkit and seems to have successfully removed it. I rescanned with all tools after reboot. MSE showed that it had detected, but successfully quarantined tons of variants containing "Trojan Alureon" in their name, but different letters at the end. I had it remove them, which it did. I've rebooted several times, run scans with all programs multiple times, and all seems clear. I wanted to make sure I was out of the woods before I continued gradually installing drivers and programs. Someone in my thread told me to come and post here.


My System SpecsSystem Spec
.
17 May 2013   #2
Borg 386

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1, Win 10
 
 

Did you format the HD before you installed Windows?

Since Alureon writes it's own cloaked boot partition, it's possible it survived the re-install if you didn't wipe the disk.

If you didn't wipe the disk & you haven't put too much into the current installation, it might be worth it to use DBan to make sure everything is erased.

Darik's Boot And Nuke | Hard Drive Disk Wipe and Data Clearing

It's also possible one of your source disks may have the infection. If you backed up your drivers & such while the PC was infected, then it could have transferred to the backup media.
My System SpecsSystem Spec
17 May 2013   #3
sharona

Windows 7 Professional SP1 64 bit
 
 

Thanks so much for replying, Borg!

If the virus did hitch on to something, it was probably the HD. I downloaded the installer for Win7 from my personal laptop, as well as the WiFi driver I mentioned. I have not returned the documents/files to the laptop, yet. When I was reinstalling, I noticed there were 3 partitions: Boot, Recovery, and OS. Will the HD wipe format/clean all three? I know that's probably a stupid question, but I wanted to make sure I completely understood everything.
My System SpecsSystem Spec
.

17 May 2013   #4
VistaKing

Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
 
 

sharona

Yes that will wipe the entire Hard Drive including the 3 partitions. We will have Cottonball take a look at this tread.
My System SpecsSystem Spec
17 May 2013   #5
sharona

Windows 7 Professional SP1 64 bit
 
 

Okay, thanks! I am running the autonuke options per the directions.
My System SpecsSystem Spec
17 May 2013   #6
VistaKing

Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
 
 

AutoNuke will format your hard drive . Is that what you want to do ?
My System SpecsSystem Spec
17 May 2013   #7
sharona

Windows 7 Professional SP1 64 bit
 
 

Yes, from what I understand that's the best way to make sure the virus isn't hiding somewhere on the HD. I will just need to do another clean install afterwards. Is that correct?
My System SpecsSystem Spec
17 May 2013   #8
VistaKing

Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
 
 

Yes but if you're getting the Alueron from a clean installation . I believe that could be coming from your Flash Drive. Try to do a scan on your flash drive.

We could also format the flash drive if you don't have anything important in there.
My System SpecsSystem Spec
17 May 2013   #9
sharona

Windows 7 Professional SP1 64 bit
 
 

Flash drive, like the usb drive? I have a 1 TB external hard drive, which I back stuff up on. I used a DVD to reinstall Windows 7. But, I did download the wifi driver via my own laptop and put it on the usb drive to transfer to the problem laptop. I'll scan it for viruses/malware to double-check.
My System SpecsSystem Spec
17 May 2013   #10
VistaKing

Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
 
 

Can you show a scrnshot of your Disk Management ?

Disk Management - Post a Screen Capture Image
My System SpecsSystem Spec
Reply

 Trojan Alureon.A Detected After Clean Win7 Install




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
SATA internal hard disk not detected after clean installation of Win7
i have a Dell XPS 14, i7 intel core, 8 gb RAM. When i installed windows 7, i deleted the partitions of my internal hard drive 465 gb as it is necessary for a clean install of windows 7. i have installed all the drivers that matches my dell service code and the windows updates. But the internal...
Hardware & Devices
Alureon.E (virus)trojan
Hello everyone, i'm Brato and i need help with this virus - Alureon.E. My laptop (VAIO - W7 Home Premium x64) has been infected with it a couple of months ago, i've searched the internet but didn't find a solution. My MSE antivirus keeps telling me the system is infected with this particullary kind...
System Security
No manufacturer detected after clean install
Hi all, After a clean install of Windows I noticed that when I right click My Computer and select properties, there is no manufacturer information as well as the logo. Under System in this window the first on the list is the system rating. I tried going through the registry and in...
Installation & Setup
boot:\physicaldrive0\partition3 (type 17) Alureon.E (virus)trojan
Good afternoon/evening, Sevenforums professionals:o My name is kyle and I'm looking for help to remove/cure some issues I'm having with my desktop Gateway PC. This is on a Windows 7 home premium 64bit, i3 processor. Here are the problems detected by Microsoft Security Essentials: ...
System Security
Trojan:DOS/Alureon.A
I've had this incredibly annoying infection for the last few weeks. I've done some searching online and don't get many clear answers about this one. It got to the point that i formatted my hdd, which was due anyway, but after a fresh install of Win 7 i still get prompts from MSE. I've gathered...
System Security
Alureon Bootkit Trojan - Crossing the 64 bit Barrier
UAC is there for a reason!
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 17:51.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App