Windows 7 DOS:Alureon.a trojan removal

Try these commands again:

• bootrec /fixmbr
• bootrec /fixboot

 

I tried in with the bootable repair cd and without but it still doesn't reboot properly.

 

Ok what exactly happens when it tries to boot now?

Select F8 boot options -> Disable automatic restart on startup failure

 

The blue screen of death reads as follows:
_______________________________________
A problem has been detected and Windows has been shut down to prevent damage to your computer.
If this is the first time you've seen this stop error screen, restart your computer. If this screen appears again, follow these steps:

Check for viruses on your computer. Remove any newly installed hard drives or hard drive controllers. Check your hard drive to make sure it is properly configured and terminated. Run CHKDSK /F to check for hard drive corruption, and then restart your computer.

Technical information:
*** STOP: 0x0000007B (0XFFFFF880009A9928, 0XFFFFFFFFC000000D, 0X0000000000000000,0X0000000000000000)

 

Just to be sure, you haven't gone into the system BIOS have you? Haven't changed the hard drive controller type or anything like that, right?

If not, try this command while while in the Windows 7 Recovery disc -> Command Prompt

• bootrec /rebuildbcd

Let me know what output you receive.

Also, double-check afterwards that the SYSTEM RESERVED partition is set to Active/boot.

 

Nope I did not go into the BIOS menu at all. Scan results:

Total identified Windows installations:0
This operation completed successfully.

system reserved was set to Active

 

Ok we are going to take a different route.

Please download the following: MBRFix 1.3.0.0
Unzip it and save MbrFix64.exe to your flash drive.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Next, download RMBR.zip
Unzip it and save RMBR.bin to your flash drive.

Finally, download fixlist.txt and save it to your flash drive.

Boot from your Windows 7 Recovery CD.
Run FRST64, press Fix and wait.
Then post Fixlog.txt and the zipped MBRBak.bin (on the flash drive) to the reply.
Also boot normally and tell us how it went.

 

My previous post has been updated.
Refresh your browser and proceed with the above instructions.

 

The reboot sequence is unchanged.

 

Thank you for letting me know.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Attached is fixlist.txt

• Save fixlist.txt to your flash drive.
• You should now have both fixlist.txt and FRST64.exe on your flash drive.

Now re-enter System Recovery Options.
Run FRST64 and press the Fix button just once and wait.
The tool will make a log on the flashdrive (Fixlog.txt).
Please attach this to your next message. (How to attach)

Now attempt to boot normally and also try to run programs normally.

 

Everything seems back to normal. Reboot was fault free and all of my programs are running properly, including internet access. I scanned with MSE and TDSSKiller; 0 threats were found.

 

Excellent!
You can delete the C:\FRST folder at this time.
If there are no other problems, we can stop here. If you notice additional problems, you should go through this thread: READ & RUN ME FIRST Malware Removal Guide

 

Excellent. I cannot thank you enough for your help. It was sincerely appreciated.

 

You're welcome
Be safe.