alureon-k!!!...new guy

[essexboy]

As a last resort the recovery cd will work but mayhap we can do it in without resorting to that and losing all your data

[themadness]

What do i do if combofix freezes?since i dont have a recovery cd what

Options will i have?nnn

[themadness]

 Combofix locked up. Clock wouldnt even keep time

[essexboy]

Could you reboot
Then look in C:\ and see if there is an i386 folder

[themadness]

there is an i386 folder

[essexboy]

Could you locate the cmdcons file and double click it please - that should install the recovery console

Let me know if it does

[themadness]

no file by that name in i386 folder

[essexboy]

Could you show hidden files  - do you know how to do that ?

Control Panel
Folder options

We need show hidden files and remove the tick from hide system files
Then relook

[themadness]

still no file by that name in the folder.

sorry for late response

[essexboy]

OK lets get CF to install the recovery console

 
Go to Microsoft's website => http://support.microsoft.com/kb/310994
 
Scroll down to Step 1, and select the download that's appropriate for your Operating System. Download the file & save it as it's originally named.
 
Note: If you have SP3, use the SP2 package.
 
 
---------------------------------------------------------------------
 
 
Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools
 

 
 

• Drag the setup package onto ComboFix.exe and drop it.
• Follow the prompts to start ComboFix and when prompted, agree to the End-User License Agreement to install the Microsoft Recovery Console.

 
 
 

• At the next prompt, click 'Yes' to run the full ComboFix scan.
• When the tool is finished, it will produce a report for you.

Please post the C:\ComboFix.txt in your next reply.

[themadness]

update:

i ran SAS and MBAM lastnight and both pulled up a lot more stuff. MBAM found a trojan that wasnt there before. i ran avast again and it too found a new trojan as well as the alureon. the alureon would not delete. i ran it again in safe mode and avast didnt not find anything.

i ran combofix again in normal mode and again it froze the system. i let it run over night and the clock on the pc stopped at 1145pm, which was about an hour after i started it.

i have downloaded the boot disks you referred and will wait for further instructions.

[essexboy]

As aswMBR will not run then we cannot cure it through that

Install the recovery console via combofix

Then reboot pressing F8 to get to the boot menu
Select the recovery console option

At the C prompt type the following hitting enter after the commands :

Fixmbr
bootcfg /rebuild

Reboot to normal windows and try to run aswMBR

[themadness]

combofix froze at start and aswMBR wouldnt open either

[essexboy]

Did it get to install the recovery console ?

As if we cannot access that or run from CD/USB then we are fried

[themadness]

after a restart about 10 mins ago i saw a recovery console option on boot up that wasnt there earlier. will that get rid of the virus or will i just have factory settings again.

i'm nervous as hooker in church about using this thing.

i read an article saying this particular virus is the most sophisticated in recent history and law enforcement agencies are having a hard time cracking it.