Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.

Windows 7: [Q] Alureon.A: Causes and removal

15 Aug 2011   #1

32-bit Windows 7 Home Premium & Windows 8 Release Preview
[Q] Alureon.A: Causes and removal

Recently I exchanged some data with my friend via his pendrive. A day after transferring the data, Microsoft Security Essentials caught a trojan named Alureon.A. Though MSE detected the trojan, neither could it remove it nor quarantine it. Worse was that my laptop was couldn't even stay on for even 2 minutes, it would simply reboot.

Somehow after a lot of research I download TSDD Killer from Kaspersky, the system rebooted, and then I ran it's scan and cured the trojan.

Just wanted to know whether it is completely gone or may come back too. Some forum posts on some other websites say that the problem gets completely cured by TSDD Killer while some say that a format and re-installing of Windows is necessary.

Can someone please give me a clear view about it? And I would also like to know the actual cause(s) for this trojan, Alureon.A.

My System SpecsSystem Spec
15 Aug 2011   #2

Windows 7 Ultimate x64

This is a virus that resides in the boot record and can't be fixed while the operating system is running. It has to be fixed by performing a fix of the mbr and boot by dos command prompt bootrec /fixboot and bootrec /fixmbr.

By the way this is very risky and you could lose your data so beware and save your important data and back it up!!!

If you don't no what you doing don't do it and use Microsoft System Sweeper instead that would be my first approach. Just google for it.

Since you seem to have fixed it here's a little of what it is and does:

The system driver detected as Virus:Win32/Alureon.A is infected by the addition of code, whose function is to load a part of the Alureon rootkit. The Alureon rootkit is a component that gives Alureon the ability to avoid detection; it is created by the same Alureon trojan that infects the system driver.

The rootkit loaded by Virus:Win32/Alureon.A has the ability to avoid behavior blockers, which allows it to perform its malicious routines uninterrupted. It can also hide files and disk sectors.
My System SpecsSystem Spec
15 Aug 2011   #3
Microsoft MVP

Windows 7 Ultimate 32bit SP1

More here Encyclopedia entry: Trojan:Win32/Alureon.A - Learn more about malware - Microsoft Malware Protection Center

"Use caution when opening attachments and accepting file transfers"
My System SpecsSystem Spec

16 Aug 2011   #4

32-bit Windows 7 Home Premium & Windows 8 Release Preview

I'll do a scan by MSSS!
My System SpecsSystem Spec

 [Q] Alureon.A: Causes and removal

Thread Tools

Similar help and support threads
Thread Forum
Windows 7 won't boot after removal of Alureon
I removed the Alureon Virus following some steps that were given to me via MS Security Essentials. Now I am getting a BSOD and cant get into anything except repair your system. I have ran frst64.exe because of some other threads that I read. I am not sure what to do now. I am attaching the log...
System Security
Alureon and my broken laptop
Copying from my BSOD thread (what would I give to have 'only' that issue now). In trying to fix that probem, laptop is now utterly rooted, no boot, no Windows repair. I do not have another machine available to me (and am not a tech, very clearly). I tried to follow BSOD advice given, removed AVG...
System Security
I've had this incredibly annoying infection for the last few weeks. I've done some searching online and don't get many clear answers about this one. It got to the point that i formatted my hdd, which was due anyway, but after a fresh install of Win 7 i still get prompts from MSE. I've gathered...
System Security
I cant get rid of this Trojan. I use MSE and even tried Mcafee 8.7i( which didnt pick it up). Help someone please...
System Security

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 09:56.
Twitter Facebook Google+ Seven Forums iOS App Seven Forums Android App