anti spyware,remove Spyware,spyware remove, free spyware removal,free spyware software

How to Remove Trojan:Win32/Alureon.CO

Posted by egomoo on February 16, 2010
Rogue Anti Spyware


What's about Trojan:Win32/Alureon.CO

Trojan:Win32/Alureon.CO is a trojan that downloads and executes arbitrary files. Some malware detected with this name may also be able to spread to removable drives.

Trojan:Win32/Alureon.CO is a trojan that downloads and executes arbitrary files. Some malware detected with this name may also be able to spread to removable drives.

Trojan:Win32/Alureon.CO may be installed by other members of the Win32/Alureon family.
Installation
When executed, Trojan:Win32/Alureon.CO creates the event ‘\\TDKP’ to ensure that only one instance of the trojan runs at any time.

Trojan:Win32/Alureon.CO makes the following modifications to the registry:
To subkey: HKLM\SOFTWARE\Classes\msqpdxvx
Adds value: “msqpdxrun”
With data: “g”

To subkey: HKLM\SOFTWARE\Classes\extravideo\CLSID
Sets value: “(default)”
With data: “{6bf52a52-394a-11d3-b153-00c04f79faa6}”

To subkey: HKLM\SOFTWARE\Classes\msqpdxvx
Sets value: “msqpdxpff”
With data: e.g. “k”

Trojan:Win32/Alureon.CO also creates the following 2 files for its own use:

%temp%\tmp”random number or letter”.tmp
%temp%\tmp”random number or letter”.tmp



How to Get rid of Trojan:Win32/Alureon.CO


Step1: Please download Safe Returner from Here to your Desktop.


  1. If you are using Firefox, make sure that your download settings are as follows:
    • Tools->Options->Main tab
    • Set to "Always ask me where to Save the files".

    2. Step 2:Close any open browsers. Close/disable all antivirus,HIPS and anti-malware programs so they do not interfere with the running of Safe Returner,visit here for how to temporarily disable your anti-virus and/or anti-malware programs.

    Step 3:Run Safe Returner with a simple click "Start Scan".

    main3.gif



    Step 4:Waiting less than 5 minutes after scan finished.

    main3.gif

    Step 5:Click "Remove" to remove spyware or malware threats.



    >Step6:

    Why should you need Regtweaker?

    As we know, virus and Trojans make the computer malfunction by destroying and modifying the registry so that the computer will not run normally. After the virus and Trojans are removed, the registry is still destroyed or modified, so the computer still has problems. That's why you need to repair the registry. Also, some virus and Trojans leave some DLL files in the registry and this will cause strange DLL errors and affect the computer performance.

    Installing or uninstalling software still can leave your Windows registry fragmented,with obsolete,corrupted and harmful files.Check your registry with RegTweaker tody.Download RegTweaker Now

    To make your computer run as fast as before or much faster than before,
    1. Download and install Regtweaker.
    2.Run a full scan of your computer.
    3. Click Repair Now and repair all errors detected.

    After these 3 easy steps, your computer will run much faster than before!


    Share/Save/Bookmark


Tags: , , , , ,

2 Comments to How to Remove Trojan:Win32/Alureon.CO

pamela18 BANGLADESH Opera Windows
February 17, 2010 IP:117.18.231.1

How to remove trojan.win32

http://www.tips29.com/2009/01/how-to-remove-trojanwin32.html

Reply

m. POLAND Mozilla Firefox Windows
March 22, 2010 IP:94.42.63.176

this didn’t work for me.
To all not so experienced users affected by Alureon.
After a painful search and testing several apps: AVG, Malwarebytes’ Anti-Malware, Comodo Antivir, Malicious Software Removal Tool didn’t find this Trojan;
Pareto would find a worm Parite.A instead, didn’t try to remove it with Pareto because there was no trial version and I have already tried other aps that would find sth but not be able to remove it, so I din’t want to risk spending money for nothing. I downloaded this Parite removal soft: http://www.softpedia.com/progDownload/Remove-for-Win32-Parite-ABC-Download-105613.html this remover would not work either;
Microsoft Security Essentials and Microsoft Live Scan were able to find Alureon, but they failed and couldn’t remove it.
Comodo Firewall prompted me about the trojan actions, this is how I learned about it in the first place.
Finally I found this site: http://remove-malware.com/malware/malware-news/atapi-sys-rootkit-is-everywhere/ and learned about Hitman Pro 3.5 and that is the solution! Hitman Pro finally got rid of this trojan and removed it. I believe more complicated solutiins also work, but since I know not too much about registry and complicated computer stuff, this is ideal for me. I just thought I would share to save others, bit unexperienced users.
Thanks for sharing your knowledge, everyone.

Reply

Leave a comment

WP_Big_City


 Powered by Max Banner Ads