My computer got infected with 9 different viruses/malware and 2 of them were the Alureon-GEN x 2 (it showed I had it 2 times) and the FraudPack.gen trojan. I was using the free Avast anti-virus software and at least one or more of these trojans infected it too.
After going through a whole bunch of failed attempts to fix my computer, I came to this forum and followed some of the solutions offered here. I figured I’d share the exact steps I took so that it might help someone else with the same issue:
1 - I disabled my wireless internet on the infected computer.
2 - completely unistalled Avast Anit-virus
3 - deleted the installation file for Avast I had saved on my computer (I did this because it had evidenlty gotten infected too as did some other files in My Docs folder - these were some nasty infections)
4 - control panel ->internet options-> delete all browsing history and offline content
5 - reboot computer
6 - ran a FULL scan with Malwarebytes Anti Malware (I already had it installed and updated)
7 - clicked “fix”
8- installed tdsskiller and ran it
9 - installed OTS and ran it checking Registry “All” and selected some options in the additional scans:
Reg - Disabled MS Config Items
Reg - Drivers32
Reg - NetSvcs
Reg - SafeBoot Minimal
Reg - Shell Spawning
After that finished:
10 - selected “cleanup” on OTS
11- selected “runFix” the trick is it seems like eveything is frozen up but it isnt. Wait a long time then cntrl/alt/del see that it is running then close that window and the OTS will ask to reboot to finish fix
11 - purchased Avast internet security and installed it
Everything seemed fine until I went on google and did a search - then had redirects Soooo
1- Avast full scan checking all the options boxes. It showed Alureon-GEN twice and someother error files. Selected “chest” option- Avast rebooted and ran scan in safemode:
Showed Opera browser was corrupted in the applications data file(I never use that browser) so I unistalled and deleted the Opera file from the applications data folder.
2 -Repeated MBAM scan - showed clean
3 -Repeated tdsskiller - showed clean
4- Repeated OTS scan
5- installed Combofix.exe and ran it: ( had to disable both MBAM and Avast internet Security BUT had to reconnect to internet for combofix to run (scary but it turned out ok))Not sure what those results were but it did something
6 - Enable just Avast Security and ran one more full system scan
Everything seems fine now. No more redirects from Google searches, and all other issues seem to be gone.
This is what is showing in the Avast virus chest:
C:\Documents and Settings\All Users\Application Data\Alwil Software\Avast5\arpot Virus: Win32:Rootkit-gen
C:\Documents and Settings\All Users\Application Data\Alwil Software\Avast5\arpot Virus: MBR:Alureon-G
C:\Documents and Settings\All Users\Application Data\Alwil Software\Avast5\arpot Virus: MBR:Alureon-G
Is there anything else I should do or be aware of? This all took 2 days to complete, and as of this moment, everything seems to be in proper working order.
I dont know if I should have done anything different to avoid have to repeat scans, but the above is what I did.