Hi,
Avast has detected Alureon-K and I can’t seem to get rid of it. Help please?
I’ve looked through the forums but everyone seems to be asking for different logs. What should I be looking for here?
Thanks
Hi,
Avast has detected Alureon-K and I can’t seem to get rid of it. Help please?
I’ve looked through the forums but everyone seems to be asking for different logs. What should I be looking for here?
Thanks
My Malwarebytes Log. Nothing seems to be detected.
Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org
Database version: v2012.05.20.03
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
Ken :: KENNETH [administrator]
5/26/2012 12:00:35 AM
mbam-log-2012-05-26 (00-00-35).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 192079
Time elapsed: 22 minute(s), 45 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
Follow the information given here - This needs further analysis by a malware removal specialist:
Go to this topic http://forum.avast.com/index.php?topic=53253.0 for information on Logs to assist in cleaning malware. Use the information about getting and using the tools and attach the logs here, not in the LOGS topic.
OTL Log.
I haven’t got the option to use ANSI encoding
Hi,
Were you able to get aswMBR.exe to run yet? If so please attach that log as well.
HI Jeffce,
No I can’t seem to run aswMBR. I’ve downloaded it a couple of times and restarted my computer as well.
Also, in my Task Manager, i have a process called services.exe clogging up a lot of memory and CPU usage.
It had only started a few days ago when Windows pushed out an update.
Everything in the update installed fine except for the security update. I chose to ignore that security update and that got rid of services.exe.
It seems to be back again and is really slowing down my computer. Are these related?
What else do you need from me?
Thanks
Hi,
Did you try to run aswMBR in Safe Mode? If not please do so.
If that does not work do the following…
Please download TDSSKiller.zip
[*]Extract it to your desktop
[*]Double click TDSSKiller.exe
[*]when the window opens, click on Change Parameters
[*]under ”Additional options”, put a check mark in the box next to “Detect TDLFS File System”
[*]click OK
[*]Press Start Scan
[*]Only if Malicious objects are found then ensure Cure is selected
[*]Then click Continue > Reboot now
[*]Attach the log in your next reply
[*]A copy of the log will be saved automatically to the root of the drive (typically C:)
Just attempted to do both in Normal and Safe mode but they won’t launch?
Any ideas?
Hi,
Ok let’s do this…
In the run box type the following
diskmgmt.msc
When disc management opens expand it so that all drives are visible
Take a screenshot and post it here
Hi,
I’ve done that. Screenshot attached.
I also noticed that my menu bar items are blanked out. Not sure if this is important. Refer to red box in screenshot. They are also happening in the Menu Bar.
And yes I can burn a CD on a different computer. Might take me a couple of days as I’m away for work.
Thanks.
Hi,
Run the last set of instructions again. From your picture it looks as if the page was not done loading yet.
Do I have to do anything else because I had that running for 5 hours and nothing seems to have happened.
Hi,
Go ahead and stop that.
Do the following:
Step 1. Place aswMBR.exe in Malwarebytes Chameleon folder.
C:\Program Files\Malwarebytes’ Anti-Malware\Chameleon
Step 2. Install the Chameleon driver by doing the following:
Press the Windows key + R and in the Run box, copy and paste the following command (including the quotation marks) then press Enter.
“C:\Program Files\Malwarebytes’ Anti-Malware\Chameleon\mbam-chameleon.exe” /o
A black DOS prompt will appear with a prompt to press any key to continue, please do.
Step 3. Execute aswMBR.exe by doubleclicking on it
Press Start Scan
Once complete, a log will be produced
Please attach that log in reply.
Log attached.
Thanks
Hi,
Good job getting that ran. We have a nasty one so let’s get going…
Follow the same steps I gave you for running aswMBR from the Malwarebytes Chameleon folder. Once the scan has completed I want you to the select the Fix button and let it run through. In your next reply attach the newly created log.
Hi,
I have that running again now. Just to be clear, you want me to hit Fix and not FixMBR??
Thanks
Correct…press Fix
What if I only get the option to FixMBR? Fix is greyed out.
Hi,
That seems odd.
Please refer to Post 6 where I gave you the instructions for TDSSKiller. Please then place TDSSKiller into the Malwarebytes Chameleon Folder and give it a run from there like you did with aswMBR. Attach that log if it is created.
Log attached.
Thanks