DOS\Alureon.a removal shows Windows 2008 MBR code

Recently found out I had DOS/alureon.a trojan while running MSE scan. MGscan says: Windows 2008 MBR code detected. In early November, I got wireless internet for the 1st time ever and downloaded Freecorder. This time, lots of malware came with it – Babylon Toolbar, Claro Search, Sweet IM search and related things, Strongvault, and RealPlayer. I got rid of all that stuff the best I could, running MBAR and MBAM, chameleon, Advanced Uninstaller, and MSE. Maybe I messed up my computer more by using Advance Uninstaller?

The reason I ask is because in between the early November Freecorder disaster and the recent Alureon Trojan, I began experiencing very slow cable download speeds of less than 1mgps in Normal mode, but cable technician tested it at 10mg in Safe mode. My computer was barely usable. I had very slow boot and application loads when in normal mode, webstream music youtubes etc. would barely play, if at all. But, I had quick everything while in safe mode and high download speed nearing 10 mb. So, I was told by the cable technician that this was a computer issue not a wireless issue. (By the end of the story this has changed). Also, I left my computer plugged in and charging, while using it for days on end, listening to music all day and all night, so there’s a small area of plastic on the deck of my laptop that melted, and black plastic melts repeatedly onto the silver insertable end of the charging cable sometimes. Needless to say I watch it pretty carefully. So, I don’t know if wireless and computer boot up speed issues are the result of hardware issues or malware issues. Currently, after getting rid of the Trojan several days ago (I think), the cable guy tested the laptop again and discovered that it gets the normal 10 mg download speed when he put it on wired internet, but less than 1 mg. on wireless connection, for BOTH Normal and Safe mode. So, number one, I don’t know if computer is clean, and secondly, if malware or hardware is causing the wireless connectivity problems? You people are AWESOME, if only I could KNOW more! (and if only I had any money I could just buy a new laptop!) Also, I guess I need to add something that works in real time to tell you if you’ve been infected, like the Computer Associates Security package I used to use. What would you recommend? I would have thought MSE would have done this, but I guess not. Also, I wonder how dangerous the overheating batter / charging cable / melting problem is?
Lastly, because I was never sure if I did the scan right, or if I did it in administrator mode, I have lots of logs for each application except TDSS which only produced 1 very early one. SORRYYYY!! I had planned on posting them earliest to latest, but since I had to choose I chose the first log for every application. I figure this is the worst case scenario, and maybe its fixed now, but since I can't post all the logs, I had to choose. Thanks in advance for any help!

 

Thought there was an hour to edit, not 10 minutes! Had to change logs to earliest administrator log run. Instead of last log run for every application. Sorry, I have 5 or 7 for some of them. Also edited the text to explain certain things better, but that is lost.

 

geez, now it took OFF the ORIGINAL 5 attachments I was attempting to replace by my edit (that the system didn't take), so I responded to my 1st thread. Then, one of the original 5 attachments that was actually correct was now missing. So, now I'm attempting to attach all 5 again, but it won't let me, saying that Hitmanpro was already attached. I don't know what else to do. Sorry!

 

Thanks Kestral13!! So far so good. Got success message with registry fix. Bad at following directions tho. Ran MGlogs bat file and saw that it said Marsha and not Administrator, so ran it again, this time as administrator. It still said Marsha, so put UAC back to off and ran a 3rd time.

Questions - I saw the diagnostics running. Appeared to be testing communications. So, any chance my horrible wireless problems were the malware?
And, since my computer has sensitive personal information of clients, should I assume the worst and warn them all that I could have had malware that resulted in their identity theft? Is there any way to tell what information was off loaded during the time the computer was compromised?

I'll repost later once out of safe mode as to how its running now.

 

Well, it runs WAY better than the time period of a few days (I think) during which I had the trojan. During that time, I sometimes couldn't go on line or open applications. Things ran in slo mo if at all. I can now open applications and go online. Because of my issues of not knowing what problems are hardware and what problems are malware, I would have to say its pretty much the same as pre-trojan, because all I use it for is streaming live web music. The computer is pretty much useless as a laptop now because of the wireless <1mb connection speed and melting charger cable plugin sleeve issues. I'm so very grateful! Now if I could only find a solution to the other 2 issues, I'll have my laptop back! Another great thing because of your help, I can safely get the data off of it without worrying about infecting my other computer! I downloaded a bunch of files onto a USB drive during the infection tho. Should I run all the malware programs on the drive?