Are you having trouble removing win32/alureon or win32.trojan.alureon?  This article will provide with some basic yet essential troubleshooting steps that will help in permanently removing win32/alureon or win32.trojan.alureon from your computer.

Let’s get to know your enemy, the win32.trojan.alureon virus has different aliases. The following names are based on Microsoft’s encyclopedia of viruses. (Source: Microsoft Malware Protection Center)

• TR/Dldr.DNSChanger (Avira)
• Win32/Alureon (CA)
• Trojan.DnsChange (Dr.Web)
• Trojan.Zlob (Ikarus)
• Trojan-Downloader.Win32.Zlob (Kaspersky)
• DNSChanger (McAfee)
• Troj/Zlob (Sophos)
• Trojan-Downloader.Win32.Femad (Sunbelt Software)
• Trojan.Zlob (Symantec)
• TROJ_DNSCHAN (Trend Micro)

 

Some symptoms of Win32.trojan.Alureon or Win32/Alureon:

1. Steals personal information such as bank and credit card information, social security, etc.
2. Spams your computer with useless advertisements.
3. Causes blue screen of death or BSoD.
4. Creates processes under System directory, DLL files, and registry entries.
5. Alters your DNS settings.
6. Creates custom startup pages that redirect any unknowing user to other fake websites.

If you have already determined that your computer is infected with the Win32/Alureon virus, try performing the following troubleshooting steps:

1. Scan your computer using your anti-virus software. Make sure your anti-virus software is up-to-date or try downloading the latest updates. If you have not downloaded the latest updates then your software may not be able to detect or remove the virus.

If you currently don’t have an anti-virus installed on your computer, you can download free virus removal tools online such as Microsoft Security Essentials, Malwarebytes, Kaspersky Virus Removal Tool, Norman Malware Cleaner, etc.

If you are unable to remove win32/Alureon using your anti-virus software or if you do not have total control over your computer because of the virus proceed to the next step.

2. If the virus is causing your computer to keep restarting or shutting down, follow the instructions outlined in our previous article entitled “Why did my computer show a blue screen?” on how to disable Automatic Restart whenever you encounter a system failure. This allows your computer to stop restarting or rebooting and allows you the ability to continue troubleshooting.

3. Try to manually remove win32/Alureon files and processes by following the steps below.

a. Task Manager – press CTRL + Alt+ Delete then click select Task Manager. Make sure to highlight all processes that are linked to the win32/alureon virus then select End Process/End Task.

For example: (Source: http://webtoolsandtips.com/)

randomized char. string].exe
8 char. – 4 char. – 4 char. – 12 char.exe
52adccfc-600d-49c7-b03e-f65dc35d45f2.exe

b. You also need to unregister unwanted DLL files. The challenge here to know first what DLL files are related to win32.trojan.Alureon before you can unregister. Click Start >>type cmd on the Search box to open command prompt >> type regsvr32 /u [dll_name] then enter.

c. For illegal registries, you also need to know which files are associated with win32.trojan.alureon or win32/alureon before you delete them. Keep in mind that you need to practice caution in editing your registry to avoid deleting the wrong entries. Click Start >> type regedit on the Search box then click Ok >> highlight the entry you wish to delete >> right click then delete the entry.

4. If you have successfully removed the virus from your computer, run your anti-virus scanner again to make sure that no remaining traces of it are still present.

5. Don’t be surprised if the virus keeps showing up, even after you’ve ended the process since there may be instances when you won’t be able to see the infected files at all. Some variants of win32/alureon remain in your restore points, that’s why it keeps coming back even after you’ve removed the virus.

After you have exhausted all the troubleshooting steps and you still have difficulty removing the win32/Alureon from your PC, give us a call. We have the expertise and know-how to remove all variants of this type Trojan from your computer as soon as possible. Click on Live Chat now and chat with one of our specialists or send a request for assistance through e-mail or phone by filling out your name, e-mail address/phone number, and a brief description of your issue. The steps outlined in this article are just some of the many useful troubleshooting steps for removing win32/Alureon or Win32.trojan.Alureon from any computer system.