Win32/Alureon.H Help

• 28 mai 2010 18:13

   

   
  

  0

  We've seen this 6 times over the course or the past week and been unable to remove it; the only solution was to reimage the computer each time.   Can you help with this nasty virus?   It is killing us an we fear we will be seeing it more and more often.  

  FCS sees it but can't remove it nor clean it.  Booting into safe mode doesn't help.  Deleting the infected file kills the machine entirely. It stops any sort of network access so downloading additional software is a 'no go'.  Here is what FCS caught on the most recent computer:

   

  Error encountered:

  Code 0x80508026. This program can't remove a potentially harmful item from the contents of an archived file. To remove the item, you need to delete the archive. For more information, search for removing spyware in Help and Support.

  Category:

  Virus

  Description:

  This program is dangerous and replicates by infecting other files.

  Advice:

  Remove this software immediately.

  Programs that may compromise your privacy or damage your computer were detected. You can still access the file without removing the threat, although this is not recommended. To do so, select "Always Allow" as the action and click the "Apply Actions" button. If this option is not available, log on as an administrator or ask an administrator for help.

  Detected by:

  Definition file

  Resources:

   

  rootkit:

  Alureon->CompBatt  (I found this file in windows\system32\drivers and deleted but it killed the computer)

  I have performed a search and found the archive file, and tried to delete it, but it did not work.  This virus is nasty and I've tried a lot of different avenues to try to clean it up, but it just keeps rearing its ugly head.  I need help bad.