Win64/Alureon.gen!A*Virus preventing computer startup

Good!!

You may want to print these instructions so you can have access to them.
Also, you may want to read them once before you apply them.

Plug in a USB pen drive into the good working computer.

Go to the the Farbar Recovery Scan Tool Download
Select the 64-bit download.
Save the program to the >> USB pen drive.
Remove from the good computer when done.

Now, go to the problem computer.
Plug in the USB pen drive which has FRST.

Using the Windows 7 System Repair Disc just created, boot to the System Recovery Options Instructions: Use Option Two
https://www.sevenforums.com/tutorials/668-system-recovery-options.html

Select: Command Prompt

■In the Command Prompt window, at the blinking cursor, type notepad and press: Enter
■In Notepad, under the File menu select: Open
■Double-click the Computer icon on the left.
■Find the pen drive letter, remember what letter it is, click on it, and press: Open
■Close out of Notepad.

■Click the Command Prompt window
■Type x:\frst64.exe, and press: Enter
Note: Replace the drive letter x with the drive letter of your pen drive!
■FRST starts, and prepares to run. Follow the prompts.
■Click Yes to the Disclaimer.

■Press the Scan button.

The scan runs, and, the program saves the FRST.txt and Addition.txt, on the pen drive.

When done, click the Command Prompt window, type exit, and press: Enter
Back at the System Recovery Options, press: Shutdown
Remove the USB pen drive.

Plug the USB pen drive in the good working computer, and please provide the FRST.txt and Addition.txt in your reply.

kyle7282,

Pressing on with FRST...

Please open Notepad (Start > All Programs > Accessories > Notepad)
Copy the entire contents of the code box below
Save it on the pen drive, and name it: fixlist.txt

Code:

start
HKLM\...\Run: [] - [x]
HKLM-x32\...\Run: [] -  [x]
HKU\Keenan\...\Run: [TempKeyedkfjsAdobe] - C:\Adobe\rjNeY7PVTgjf\Loerijfsdantilib.exe
HKU\Keenan\...\Run: [JgDsClTqzA] - C:\Users\Keenan\AppData\Roaming\iexplorer.exe
HKU\Keenan\...\Run: [AdobeBridge] - [x]
C:\$Recycle.Bin\S-1-5-18\$1124a725e7eb82f4e97828044d39f9dc
C:\$Recycle.Bin\S-1-5-18\$1124a725e7eb82f4e97828044d39f9dc
C:\$Recycle.Bin\S-1-5-21-1546822543-3853009327-1610196860-1000\$1124a725e7eb82f4e97828044d39f9dc
C:\$Recycle.Bin\S-1-5-18\$1124a725e7eb82f4e97828044d39f9dc
C:\Users\Keenan\Info.bat
DeleteJunctionsIndirectory: C:\Program Files\Windows Defender
TDL4: custom:26000022 
end

Note: This script is written specifically for use only on this computer.
Running this on another computer may cause damage to the Operating System!!

Run FRST, and press the Fix button, just once, and wait.

The tool creates a report on the pen drive called: Fixlog.txt
Please post the Fixlog.txt in your reply.

Let's get the results from this program, and take it from there.

Edited: Made a mistake! Underlined above.

Do I run FRST on the infected computer?

Same routine as Post #12, but, instead of running Scan, you run: Fix

The question is...

...my computer has been unable to start up and receives an error...

...is the computer able to start normally?

Need to know before we continue.

Do you still get an error message? If so, please be as specific as you can in describing what it says.

The FRST report shows it was run from C:. How did you get to C:?

Also, the Fixlog shows it was run from the Desktop.
Where these programs run from the problem computer?

Can you boot to Safe Mode?
Restart your computer.
When the computer starts, tap the F8 key on the keyboard repeatedly until presented with the Advanced Boot Options menu
Using the arrow keys, select: Safe Mode
Press the Enter key on your keyboard to boot into the selected mode.

Let us know if you can get to Safe Mode.

Pressing on...

Using the good working computer, download ListParts:
http://www.bleepingcomputer.com/download/listparts/
Select the 64-bit download.
Save it to the same USB pen drive where you have the Farbar Recovery Scan Tool saved.

Next, please remove any fixlist or fixlog from the USB pen drive.

Open Notepad (Start > All Programs > Accessories > Notepad)
Copy the entire contents of the code box below
Save it on the pen drive, and name it: fixlist.txt

Code:

cmd: copy /y C:\$$PendingFiles X:\

(Replace X with the letter of the pen drive.

Now, go to the problem computer.
Plug in the USB pen drive which now has FRST, ListParts, and a new fixlist on it.

Using the Windows 7 System Repair Disc, boot to the System Recovery Options as you did before.
Option Two: System Recovery Options

Select: Command Prompt

In the Command Prompt window, at the blinking cursor, type notepad and press: Enter
In Notepad, under the File menu select: Open
Double-click the Computer icon on the left.
Find the pen drive letter, remember what letter it is, click on it, and press: Open
Close out of Notepad.

Click the Command Prompt window
Type x:\frst64.exe, and press: Enter
Note: Replace the drive letter x with the drive letter of your pen drive!

FRST starts, and prepares to run. Follow the prompts.
Click Yes to the Disclaimer.
Press the Scan button.
The scan runs, and the program saves the FRST.txt report on the pen drive.

Go back to FRST, press the Fix button, just once, and wait until done.
The program saves a Fixlog.txt report on the pen drive.

Now, go back to the Command Prompt, and this time type x:\listparts64.exe and press: Enter
Note: As before, replace the drive letter x with the drive letter of your pen drive!

When ListParts starts to run, check the box next to List BCD and click: Scan
When finished ListParts produces a log on the pen drive titled: Result.txt

Next, click the Command Prompt window, type exit, and press: Enter
Back at the System Recovery Options, press: Shutdown

Remove the USB pen drive.
Plug the USB pen drive in the good working computer.

Please provide the FRST.txt, the Fixlog.txt, and the Result.txt in your reply.