Solved This virus doesn't want to be deleted...

[ProbleMatic]

I get this popup in this program called Avira anti-vir personal about this virus named TR/Alureon.TK.3 and it was found in file [filepath] then it tells me that access to this file was denied, for further action it asks if i want to remove it, and when I do the message just keeps coming back. I tried to get rid of it in safe mode but it doesn't quarantine. I think I received the virus after getting rid of the Win 7 Security 2012 fake popup virus.

 

[BrightBlessings]

Is this of any use to you?
Manually get rid of Trojan:win32/alureon.tk virus - Trojan:win32/alureon.tk removal | removemalwarespyware

 

[ProbleMatic]

at work right now, but I'll have a crack at it when I get home then let you know what's going on.

 

[whs]

In that case I would recommend to set back to a restore point from before the virus appeared. Because even if you remove the virus, it will not correct the damage the virus has done.

 

[ProbleMatic]

So the best thing for me at this point would be to restore back to a date before the virus ever occured? The whole Win 7 2012 security virus event? What happened was the virus started making all these multiple tasks of the same task in my taskman, then it spiked my cpu to 100 for a long time, then it eventually went bsod on me and it restarted, from there i just cleared it out with adaware se personal and malware bytes. I was ok after that.

 

[ProbleMatic]

I remember getting all the viruses Tuesday. I have a restore point for Monday, and Monday is when I installed Ad-Aware SE Personal, so should I revert back to that restore point?

I scanned for affected programs and the only thing to come up was Google Chrome.

 

[GianniDPC]

No don't do system restore there is a chance that that doesn't delete the virus so,

Run hitman pro: Home - SurfRight
And mbam: Malwarebytes : Free anti-malware, anti-virus and spyware removal download

Ok so scan with these ones if it doesn't work in normal mode try safe mode then and report back,

Gianni

 

[Hopalong X]

At this point I would try GianniDPC's advice.

Removal is best.

Malwarebytes will give you a log when finished which you could post a Snip of when done.

 

[ProbleMatic]

I'm trying your link above, and I'm searching for the registry entry of the virus, but it's not finding anything... doesn't take me to any result...I've toyed with the registry before for viruses so I know what I'm doing.

 

[ProbleMatic]

Ah ok, i'll try that and we'll see how this goes.

 

[GianniDPC]

I'm trying your link above, and I'm searching for the registry entry of the virus, but it's not finding anything... doesn't take me to any result...I've toyed with the registry before for viruses so I know what I'm doing.

No just scan if you remove it manually there is a chance you mess up your windows

 

[ProbleMatic]

I have scanned with MBAM in safe mode, but it wouldn't work for me...I might have a log file somewhere..I will post if I see it.

 

[GianniDPC]

I have scanned with MBAM in safe mode, but it wouldn't work for me...I might have a log file somewhere..I will post if I see it.

What didn't work ?? and remember also try Hitman pro

 

[gpost3]

Or next time you could try Ubuntu

 

[GianniDPC]

Or next time you could try Ubuntu

Why ?? I never had a virus anymore with a good anti-virus protection

 

[ProbleMatic]

Ok, I have logs, but none that would be condusive to the situation, should I do a fresh re-scan then post the results?

 

[GianniDPC]

Ok, I have logs, but none that would be condusive to the situation, should I do a fresh re-scan then post the results?

Yes do a fresh-rescan

 

[ProbleMatic]

I will do a Hitman.

 

[Hopalong X]

Mbam works best in regular mode if you can run it that way. Sometimes the virus/bugs won't let you though.

Let us know how Hitman goes.

 

[ProbleMatic]

Would a quick scan be ok?