Please help me with Aurora.exe!

Hi,
I was wondering if someone could help me get rid of Aurora.exe. Either me o the computer are going to go out the window if this doesn't stop. I have run a virus scan, Spybt S&D and Hijack This and still it pops up. Any pointers would be greatly appreciated.

 

Fisrt, download Nail/Bolder/Aurora Remover 0.3.1 Beta and save it to its own folder like c:\ABIremover

- Now extract the abiremover.exe file from the ZIP file into the folder you created but do not run the EXE yet.

- Reboot into Safe Mode with no network suppost and do not run anything else but what I tell you to run!

- Run the ABIRemover.exe, press install, wait (explorer window will disapear)

- When it finishes just reboot and continue with the below steps.


Next, please follow ALL the steps in this Sticky thread READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus Removal

After doing ALL of the above if you still have a problem:


http://www.majorgeeks.com/images/grenade.gif Download HijackThis 1.99.1

http://www.majorgeeks.com/images/grenade.gif Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

http://www.majorgeeks.com/images/grenade.gif Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the ZIP file as your backups will not be safely stored.

http://www.majorgeeks.com/images/grenade.gifBefore running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

http://www.majorgeeks.com/images/grenade.gifRun HijackThis and save your log file.

http://www.majorgeeks.com/images/grenade.gif Post your log as an ATTACHMENT to your next post. (Do NOT copy/paste the log into your post as it will be removed).

http://www.majorgeeks.com/images/grenade.gifNeed help with HJT? See this thread: NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting

 

Thank you! I have been aurora.exe-free for days, and very happy.

 

Usually this comes with other infections, I would recommend following the READ ME and post a HJT log to confirm your clean.

Its up to you though!

 

Hi, I have run all of the scans and here is my Hijack this log. Thanks again for all of your help.

 

First, look in Add/Remove Programs and uninstall the following program:

Viewpoint

Afterwards attach a new log from Normal Mode as the previous one appears to be from Safe Mode.

 

OK, I deleted viewpoint. Here is a new scan from normal mode.

 

Scan with HijackThis and Check the Boxes for the following:

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://hsremove.com/done.htm

Make sure All Browser Windows are Closed when you Click FIX.

Your log will be clean after you remove the above, are you having any further problems?

 

Hi, thank you. I haven't had any more problems recently. I deleted the hijack this entry you mentioned. I think I'm clean! Thank you again. You;ve been wonderful.

 

Your Welcome!

You should see this article on How to Protect yourself from malware!