[Q] Alureon.A: Causes and removal

AbhishekS

AbhishekS

Fun lover
Power User
Local time
5:07 PM
Messages
110
Location
India
Recently I exchanged some data with my friend via his pendrive. A day after transferring the data, Microsoft Security Essentials caught a trojan named Alureon.A. Though MSE detected the trojan, neither could it remove it nor quarantine it. Worse was that my laptop was couldn't even stay on for even 2 minutes, it would simply reboot.

Somehow after a lot of research I download TSDD Killer from Kaspersky, the system rebooted, and then I ran it's scan and cured the trojan.

Just wanted to know whether it is completely gone or may come back too. Some forum posts on some other websites say that the problem gets completely cured by TSDD Killer while some say that a format and re-installing of Windows is necessary.

Can someone please give me a clear view about it? And I would also like to know the actual cause(s) for this trojan, Alureon.A.
 
Last edited:

My Computer My Computer

At a glance

32-bit Windows 7 Home Premium & Windows 8 Rel...Intel(R) Core(TM)2 Duo4 GB RAM DDR3NVIDIA GeForce G 105M
Computer Manufacturer/Model Number
Acer Aspire 5738G
OS
32-bit Windows 7 Home Premium & Windows 8 Release Preview
CPU
Intel(R) Core(TM)2 Duo
Motherboard
Acer JV50
Memory
4 GB RAM DDR3
Graphics Card(s)
NVIDIA GeForce G 105M
Sound Card
Realtek High Definition
Monitor(s) Displays
1x Generic PnP Monitor
Screen Resolution
1366 x 768 - 32 bit
Hard Drives
C: (263 GB)
K: (24.3 GB)
Keyboard
Acer Inbuilt
Mouse
5 Button Wheel Laser Mouse
Internet Speed
3 MBPS Download and 2 MBPS Upload
This is a virus that resides in the boot record and can't be fixed while the operating system is running. It has to be fixed by performing a fix of the mbr and boot by dos command prompt bootrec /fixboot and bootrec /fixmbr.

By the way this is very risky and you could lose your data so beware and save your important data and back it up!!!

If you don't no what you doing don't do it and use Microsoft System Sweeper instead that would be my first approach. Just google for it.

Since you seem to have fixed it here's a little of what it is and does:

The system driver detected as Virus:Win32/Alureon.A is infected by the addition of code, whose function is to load a part of the Alureon rootkit. The Alureon rootkit is a component that gives Alureon the ability to avoid detection; it is created by the same Alureon trojan that infects the system driver.

The rootkit loaded by Virus:Win32/Alureon.A has the ability to avoid behavior blockers, which allows it to perform its malicious routines uninterrupted. It can also hide files and disk sectors.
 

My Computer My Computer

At a glance

Windows 7 Ultimate x64I76 x 1.5V DDR3 DIMM sockets supporting up to 2...GeForce GTX 580
Computer Manufacturer/Model Number
Alienware
OS
Windows 7 Ultimate x64
CPU
I7
Motherboard
GA-X58-USB3
Memory
6 x 1.5V DDR3 DIMM sockets supporting up to 24 GB of system
Graphics Card(s)
GeForce GTX 580
Sound Card
Realtek ALC892 codec 2/4/5.1/7.1-channel
Monitor(s) Displays
NEC Display Solutions E321 Black 32"
Screen Resolution
1366 x 768
Hard Drives
OCZ Colossus LT Series OCZSSD2-1CLSLT1T 3.5" 1TB SATA II MLC Internal Solid State Drive
PSU
XFX Black Edition XPS-850W-BES 850W ATX12V
Case
Antec
Cooling
Zalman
Keyboard
Microsoft
Mouse
Microsoft

My Computer My Computer

At a glance

Windows 7 Ultimate 32bit SP1Intel(R) Core(TM)2 Quad CPU @ 2.40GHz, 2400 MHz4 GBATI Radeon HD 2600 Pro
Computer type
PC/Desktop
Computer Manufacturer/Model Number
Bruce ... somewhere in his 40's
OS
Windows 7 Ultimate 32bit SP1
CPU
Intel(R) Core(TM)2 Quad CPU @ 2.40GHz, 2400 MHz
Motherboard
INTEL/D975XBX2
Memory
4 GB
Graphics Card(s)
ATI Radeon HD 2600 Pro
Monitor(s) Displays
Samsung SyncMaster 914v
Screen Resolution
1280 x 1024
Hard Drives
2/500GB each ... ST3500630AS ATA Device.
One is not connected
PSU
Rocketfish 700 W
Case
G.Skill Gigabyte Chassis
Keyboard
Standard PS/2 Keyboard
Mouse
Microsoft PS/2 Mouse
Internet Speed
DSL
Antivirus
Avira Internet Security
Browser
IE 11
Other Info
ATI HDMI Audio
I'll do a scan by MSSS!
 

My Computer My Computer

At a glance

32-bit Windows 7 Home Premium & Windows 8 Rel...Intel(R) Core(TM)2 Duo4 GB RAM DDR3NVIDIA GeForce G 105M
Computer Manufacturer/Model Number
Acer Aspire 5738G
OS
32-bit Windows 7 Home Premium & Windows 8 Release Preview
CPU
Intel(R) Core(TM)2 Duo
Motherboard
Acer JV50
Memory
4 GB RAM DDR3
Graphics Card(s)
NVIDIA GeForce G 105M
Sound Card
Realtek High Definition
Monitor(s) Displays
1x Generic PnP Monitor
Screen Resolution
1366 x 768 - 32 bit
Hard Drives
C: (263 GB)
K: (24.3 GB)
Keyboard
Acer Inbuilt
Mouse
5 Button Wheel Laser Mouse
Internet Speed
3 MBPS Download and 2 MBPS Upload
You must log in or register to reply here.

Similar threads

Old Sony Vaio with Windows 7 64 bit and Recovery Partition
Replies
9
Views
3K
SIW2
SIW2
Dell e6430 problem loading antivirus and some software
Replies
6
Views
8K
2009joseph
2
Trojan aftermath: Windows 7 Acer Aspire 5560G unable to run programs
Replies
2
Views
3K
XweAponX
XweAponX
Is my Hard Drive Dead? Virus or Hardware Failure? Data Recoverable?
Replies
5
Views
4K
GoWest
G
Laptop spilt coffee and accidental repair Q
Replies
7
Views
2K
OverEight
O
Back
Top