Microsoft Security Essentials Anti-virus picked up a virus called Trojan:dos/alureon.ab on my business computer in Windows 7, i am so scared all my information was exposed. Tried to find a way to get rid of it but without success, it keeps coming back after a reboot. Any suggestions?

Can’t get rid of Trojan:dos/alureon.ab – How to Remove?

The Trojan:dos/alureon.ab virus is a very dangerous threat to computer systems and it should be taken extremely serious, and if detected it needs to be removed immediately before serious damage occurs. This is a variant of Trojan:DOS/Alureon.A that once installed on the computer will begin to alter the system settings and registry, allowing computer access to the hackers, and having the ability to install additional malware onto the computer without being detected. This is a very harmful virus and it is designed to help the hackers steal data form the computer and then crash the system, leaving the user with a destroyed computer system.

This is a Trojan virus that is spread through a variety of ways, with the two most popular being email attachments and as add ons, packed together with free downloads. The Trojan:dos/alureon.ab virus is included within email attachments that are blasted to millions of email addresses daily, all containing messages that encourage the reader to open the accompanying attachment. Once opened, the virus is installed on the computer and immediately begins to makes changes and disables virus scanning tools, allowing the virus to work without being detected. Also, this enables additional threats to be installed without detection as well.

While this requires a lot of work by the hackers, the other method is fairly simple as they install the virus along with popular free downloads and each time the user installs them with the recommended option (that automatically installs the Trojan:dos/alureon.ab as well) they successfully infect another computer. The fact that most users will select the recommended installation gives the criminals good odds of gaining access to many computers.

Note: Cannot delete this infection by virus removal tools? Contact YooSecurity Online PC Experts now for removal assistance if you are not familiar with any virus removing process.

What Will The Virus Do On Your Computer?

While they have access to the computer and search for valuable information that they can use themselves, or sell off to other criminal organizations, the virus performs serious damage to the computer. One of the first things that users will notice is that the operational speed of their computer will decrease significantly when it is infected with this attack. Simple tasks such as shutting down and starting up will become increasingly slower as time passes, and this is due to the available memory being sucked up by the additional malicious files that the Trojan:dos/alureon.ab virus installs and unpacks onto the computer.

With remote access granted, the hackers can install key loggers and match that data alongside the browser history to uncover user names and passwords to not only email accounts and social media sites, but also more sensitive information like online banking details. If this information is uncovered the bank accounts can literally be emptied within minutes. Since no anti-virus can get it off, manual removal is the best way.

Manual Removal Step by Step Guide

Step A: Open Windows Task Manager to end process related to the domain. To do that, press Ctrl+Alt+Del keys at the same time to pull up Window Task Manager.

Step B: Open Control Panel from Start menu and search for Folder Options. Go to Folder Options window, under View tab, tick Show hidden files and folders and non-tick Hide protected operating system files (Recommended) and then click OK.

Step C: Press Windows+R keys to pull up Run box and type in regedit to open Registry Editor.

Step D: Delete all these associating files and registry entries of Trojan:dos/alureon.ab in Registry Editor as below:

c:\Windows\System32\random letter
%AllUsersProfile%\Programs\{random letters}\
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System “DisableRegedit” = “”.exe.dll

Video On How to Remove The Trojan Virus:


This is the kind of jack pot they are after, and if they are able to gain access to online banking they will quickly change the password to create buffer of time, allowing them to transfer they money to an account they control. Once they take the money they disappear and the user is left with a mess to deal with, which can be very stressful. This is an example of how important it is to practice safe browsing and always be aware of what is being installed on the computer. Virus scanning software will not always detect the newest threats, so it is important to be fully aware of what is being installed at all times. The only way to clean up the system from this attack is to manually remove all of the infected files by following the instructions below. This will help to delete the Trojan:dos/alureon.ab virus and all of the additional threats that it installed.

Note: Still stuck with this Virus? To avoid making things worse, Please contact YooSecurity 24/7 Online Experts now to fix the issue permanently.

Published by Tony Shepherd & last updated on January 22, 2014 7:02 am

Leave a Reply