DOS Alureon.A & can't run programs in Win7

Hello. I am running 64-bit Windows 7. I saw someone else here on the forum had the same problems I have:

- Google redirects in IE
- Can't run any programs except 64-bit version of IE and the MS basic apps like calculator, notepad, etc.
- Starting in safe mode doesn't help
- MSE finds DOS Alureon.A, but can't remove it completely. It wants me to DL Standalone System Sweeper, but it can't open a browser to get it since it's trying to open 32-bit IE. Even if I google SSS and manually DL it, it won't run
- It doesn't matter if I change names or extensions; programs still won't run
- Can't run TDSSKiller or any other programs like that

I saw that the other person with the identical problem was helped here by user thisisu after he provided a custom fixlist file for FRST64, so I was hoping someone might be able to rescue me! Thanks in advance.

 

Hi and welcome to Major Geeks, clsman!

http://img827.imageshack.us/img827/1263/frst.gif For 64-bit (x64) systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:

• Restart the computer.
• As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
• Use the arrow keys to select the Repair your computer menu item.
• Choose your language settings, and then click Next.
• Select the operating system you want to repair, and then click Next.
• Select your user account and click Next.

To enter System Recovery Options by using Windows installation disc:

• Insert the installation disc.
• Restart your computer.
• If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
• Click Repair your computer.
• Choose your language settings, and then click Next.
• Select the operating system you want to repair, and then click Next.
• Select your user account an click Next.

On the System Recovery Options menu you will get the following options:

• Select Command Prompt
• In the command window type in notepad and press Enter.
• The notepad opens. Under File menu select Open.
• Select "Computer" and find your flash drive letter and close the notepad.
• In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
• Note: Replace letter e with the drive letter of your flash drive.
• The tool will start to run.
• When the tool opens click Yes to disclaimer.
• Press Scan button.
• It will make a log (FRST.txt) on the flash drive. Please attach this log to your next reply. (How to attach)

 

Hello and thanks for looking into my issue!

Log is attached.

 

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Attached is fixlist.txt

• Save fixlist.txt to your flash drive.
• You should now have both fixlist.txt and FRST64.exe on your flash drive.

Now re-enter System Recovery Options.
Run FRST64 and press the Fix button just once and wait.
The tool will make a log on the flashdrive (Fixlog.txt).
Please attach this to your next message. (How to attach)

Now attempt to boot normally.

You should be able to open applications again.

If you were able to boot successfully and need additional assistance, please read the instructions in this thread: How to Remove TrojanOS/Alureon.A

 

I ran that fixlist and when I rebooted, before I even had a chance to try running a program, a popup came on saying that openoffice would attempt to recover the 3 files I had open when the system powered down. That was a good sign since I hadn't seen that since the malware first shut down my system. Anyway, I recovered my files and I am able to launch software. I haven't noticed any google redirects, but I haven't tried it much yet.

So, at this point given the type of problem I had, what program(s) should I install to monitor my computer? I have MSE and AdAware, and maybe a few more. Should I get rid of those and get something else?

And also THANK YOU. I was going to go out and buy another computer today since my productivity went to zero over the last few days without the ability to run software!

 

I noticed you had McAfee installed too.

You should only keep one Antivirus and Firewall, then uninstall the rest. More can be read here: Step #2: Uninstalling Multiple Protection Applications

You're welcome.