Solved Trojan:DOS/Alureon.A

QCumber20 · Feb 23, 2011

I've had this incredibly annoying infection for the last few weeks. I've done some searching online and don't get many clear answers about this one. It got to the point that i formatted my hdd, which was due anyway, but after a fresh install of Win 7 i still get prompts from MSE.

I've gathered that it's a MBR infection, which would explain it not being removed during formatting but I haven't the slightest clue how to repair one of those.

Jonathan_King · Feb 23, 2011

Since you don't have any data that needs saving, the easiest thing to do would be a complete cleaning of your hard drive. Use the "Clean all" command.

http://www.sevenforums.com/tutorials/52129-disk-clean-clean-all-diskpart-command.html

Crush · Feb 23, 2011

Hi,

Did you do a full reformat (deleting partitions as well)?

Bobby72 · Feb 23, 2011

Try running the TDSSKiller.exe from Kaspersky. This tool can spot and remove rootkit such as Alureon but cannot be sure if your computer is clean though. Save it to your desktop. Double-click on TDSSKiller.exe to run the tool for known TDSS variants. Windows 7 users right-click and select Run As Administrator. Make sure you click on the link for TDSSKiller.exe where it says; 'Execute the file TDSSKiller.exe.'

How to remove malware belonging to the family Rootkit.Win32.TDSS (aka Tidserv, TDSServ, Alureon)?

And if you have MBAM already run that too. Make sure it has the latest updates and run in regular mode.

Malwarebytes Anti-Malware - Free software downloads and software reviews - CNET Download.com

QCumber20 · Feb 24, 2011

When I first googled the issue i found a thread on Majorgeeks, as i recall. Anyway the thread solved the issue by running TDSKiller and MBAM, both of wich i have and have already run. MBAM found nothing and TDSKiller found the malware and was supposed to "complete cure after reboot" but after more than one try the rootkit still comes up after reboot.

I've already formatted the hdd, I'm thinking of just doing the "Clean All" procedure to save me the trouble, if you still think that's a good idea

Jacee · Feb 24, 2011

Yes, that's the best idea!

QCumber20 · Feb 24, 2011

Just one last thing.

The drive in question is the OS partition and boot drive. Neither of the Dos prompt options allows me to "clean all" because I've already booted up Windows 7

How do i go about "cleaning all" on a Boot drive?

Jonathan_King · Feb 24, 2011

In order to clean the Windows drive, you must boot from the installation DVD or repair disc, and run the command from there. Boot up the Windows DVD, and select "Repair my computer". Open a command prompt from that screen.

QCumber20 · Feb 24, 2011

The Clean All function seems to have done the trick. Many thanks!

Jonathan_King · Feb 24, 2011

No problems, glad to hear it!

Solved Trojan:DOS/Alureon.A

QCumber20

New member

My Computer

Jonathan_King

New member

My Computer

Crush

New member

My Computer

Bobby72

Banned

My Computer

QCumber20

New member

My Computer

Jacee

Consumer Security

My Computer

QCumber20

New member

My Computer

Jonathan_King

New member

My Computer

QCumber20

New member

My Computer

Jonathan_King

New member

My Computer