Dos/Aleron.E problem

jeromejewels · Apr 15, 2013

Long time lurker, first time poster. Microsoft Security Essentials is picking up Dos/Alureon.E. I have tried as much as I know how to do. I went through your guide. MBR check log is attached. The TDDS Killer program ran fine, but it did not create a log zip file and would not create a MGTools folder. I manually created one, then ran the program again. It created logs in the tools folder but I'm really not sure which ones to attach. Are they all the .txt files?

TimW · Apr 16, 2013

If you went through the guide, please attach these logs:
RogueKiller
Hitman
MBAM
C:\MGLogs.zip.

jeromejewels · Apr 16, 2013

Thanks! Still having problems with mglogs.zip. I wasn't putting logs in there so I manually put them in. Hopefully I put the correct ones in there. Thanks for the help!

TimW · Apr 16, 2013

I am not finding any malware in your logs. What issues are you having, if any?

jeromejewels · Apr 16, 2013

The main issue is when I start my pc, and Microsoft Security Essentials starts, it automatically hits with dos/Alureon.E. My network is totally inaccessible by internet or through other pc's. The only way I get around it is Microsoft Security Essentials has a pop up that says "clean pc", then click to restart pc, if I do this 4-5 times, I can restart without having Security Essentials finding it. then I can access my network.

I have noticed since I followed your guide, Security Essentials still detects Alureon, but doesn't shut me out of network access. The only other strange thing is a random pop up from my Audio saying I just plugged something in, when I haven't touched a thing.

Suggestions?

TimW · Apr 17, 2013

Attach the log from running MSE.

jeromejewels · Apr 17, 2013

Excellent! Thanks for the help. I think this is the correct one.

TimW · Apr 18, 2013

It is referring to volume 4. What do you have on that partition?

jeromejewels · Apr 19, 2013

Ok that is really above my pay grade. I am lost on that topic. Not sure were to go and look for that info. Let me do some research to find that out. Thanks for you help so far!

jeromejewels · Apr 20, 2013

Guess I found where to see the partitions (yay!), but have no idea how to see what is on them. Here is the screen attached. I gather what your asking/telling me is...."listen here, you got something on that partition 4 that Security Essentials doesn't like" What could be my next step?

TimW · Apr 23, 2013

Try rerunning Hitman to see if it resolves it. Attach the new log.

jeromejewels · Apr 23, 2013

Ok great. Here is new log.

TimW · Apr 24, 2013

Hitman recognized the infection, so now see if it will fix it.

jeromejewels · Apr 24, 2013

Ok! Looks like Hitman removed it successfully! Yay! and after reboot, Microsoft Security Essentials icon is green and doesn't detect Alueron any further. My pc even rebooted faster.

TimW · Apr 25, 2013

Good deal.

If you are not having any other malware problems, it is time to do our final steps:

We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware. You can uninstall RogueKiller and HitManPro.

Go back to step 4 of the READ ME and renable your Disk Emulation software with Defogger if you had disabled it.

Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.

If running Vista or Win 7, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.

Go to add/remove programs and uninstall HijackThis.

Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders
related to MGtools and some other items from our cleaning procedures.

After doing the above, you should work thru the below link

How to Protect yourself from malware!

Malware removal from a National Chain = $149
Malware removal from MajorGeeks = $0

jeromejewels · Apr 25, 2013

:cool
Thanks so much for your help. I purchased Malwarebytes to also help me. I will follow the other guides on this site.

TimW · Apr 26, 2013

You are most welcome. Safe surfing.

Log in or Sign up

Dos/Aleron.E problem

jeromejewels Private E-2

Attached Files:

MBRCheck_04.12.13_14.19.43.txt

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

jeromejewels Private E-2

Attached Files:

HitmanPro_20130412_1035.log

mbam-log-2013-04-12 (08-18-25).txt

RKreport[1]_S_04122013_02d0956.txt

MGlogs.zip

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

jeromejewels Private E-2

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

jeromejewels Private E-2

Attached Files:

MSE log.zip

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

jeromejewels Private E-2

jeromejewels Private E-2

Attached Files:

drive screen.zip

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

jeromejewels Private E-2

Attached Files:

HitmanPro_20130423_1817.log

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

jeromejewels Private E-2

Attached Files:

HitmanPro_2Before removal.log

HitmanPro_2after removal.log

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

jeromejewels Private E-2

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member