Trojan:DOS/Alureon.A


  1. Posts : 22
    Windows 7 Home Premium 64bit
       #1

    Trojan:DOS/Alureon.A


    I've had this incredibly annoying infection for the last few weeks. I've done some searching online and don't get many clear answers about this one. It got to the point that i formatted my hdd, which was due anyway, but after a fresh install of Win 7 i still get prompts from MSE.

    I've gathered that it's a MBR infection, which would explain it not being removed during formatting but I haven't the slightest clue how to repair one of those.
      My Computer


  2. Posts : 13,354
    Windows 7 Professional x64
       #2

    Since you don't have any data that needs saving, the easiest thing to do would be a complete cleaning of your hard drive. Use the "Clean all" command.

    Disk - Clean and Clean All with Diskpart Command
      My Computer


  3. Posts : 18
    Windows 7 Ultimate x64
       #3

    Hi,

    Did you do a full reformat (deleting partitions as well)?
      My Computer


  4. Posts : 24
    Windows 7 Home Premium 64bit
       #4

    Try running the TDSSKiller.exe from Kaspersky. This tool can spot and remove rootkit such as Alureon but cannot be sure if your computer is clean though. Save it to your desktop. Double-click on TDSSKiller.exe to run the tool for known TDSS variants. Windows 7 users right-click and select Run As Administrator. Make sure you click on the link for TDSSKiller.exe where it says; 'Execute the file TDSSKiller.exe.'

    How to remove malware belonging to the family Rootkit.Win32.TDSS (aka Tidserv, TDSServ, Alureon)?

    And if you have MBAM already run that too. Make sure it has the latest updates and run in regular mode.

    Malwarebytes Anti-Malware - Free software downloads and software reviews - CNET Download.com
      My Computer


  5. Posts : 22
    Windows 7 Home Premium 64bit
    Thread Starter
       #5

    When I first googled the issue i found a thread on Majorgeeks, as i recall. Anyway the thread solved the issue by running TDSKiller and MBAM, both of wich i have and have already run. MBAM found nothing and TDSKiller found the malware and was supposed to "complete cure after reboot" but after more than one try the rootkit still comes up after reboot.

    I've already formatted the hdd, I'm thinking of just doing the "Clean All" procedure to save me the trouble, if you still think that's a good idea
      My Computer


  6. Posts : 8,608
    Windows 7 Ultimate 32bit SP1
       #6

    Yes, that's the best idea!
      My Computer


  7. Posts : 22
    Windows 7 Home Premium 64bit
    Thread Starter
       #7

    Just one last thing.

    The drive in question is the OS partition and boot drive. Neither of the Dos prompt options allows me to "clean all" because I've already booted up Windows 7

    How do i go about "cleaning all" on a Boot drive?
      My Computer


  8. Posts : 13,354
    Windows 7 Professional x64
       #8

    In order to clean the Windows drive, you must boot from the installation DVD or repair disc, and run the command from there. Boot up the Windows DVD, and select "Repair my computer". Open a command prompt from that screen.
      My Computer


  9. Posts : 22
    Windows 7 Home Premium 64bit
    Thread Starter
       #9

    The Clean All function seems to have done the trick. Many thanks!
      My Computer


  10. Posts : 13,354
    Windows 7 Professional x64
       #10

    No problems, glad to hear it!
      My Computer


 

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 07:29.
Find Us