Virus.Alureon.H

Virus.Alureon.H Description

Virus.Alureon.H is a computer Trojan horse that detects system drivers and may disable security applications in order to perform malicious activities under the radar. Virus.Alureon.H may also be used by remote attackers to infiltrate an infected system through a remote connection. Virus.Alureon.H is a serious threat to the stability and security of a computer. Removal of Virus.Alureon.H may be successfully performed with the use of an antispyware program.

Aliases: BackDoor.Generic13.WQM [AVG], W32/Kolab.OPS!worm.im [Fortinet], Net-Worm.Win32.Kolab [Ikarus], Trojan.Win32.Generic.125FFFF1, a variant of Win32/Kryptik.IVX, HeurEngine.MaliciousPacker, Worm:Win32/Slenfbot.gen!G [Microsoft], Worm.Kolab.(kcloud), Worm/Kolab.caw, Mal/Crobot-A [Sophos], Heuristic.LooksLike.Win32.SuspiciousPE.C [McAfee-GW-Edition], TR/Crypt.XPACK.Gen2 [AntiVir], Backdoor.Win32.IRCBot, Trojan.Siggen.64951 [DrWeb] and MemScan:Worm.Generic.334975 (B).

Technical Information

File System Details

Virus.Alureon.H creates the following file(s):
# File Name Size MD5 Detection Count
1 C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-12399\newcont9rnd9.exe 24,064 737219a2803fc807a3cd4354430e9cc2 24
2 %WINDIR%ppdrive32.exe 97,280 1026e1bac76d61fa26702570d338843d 10
3 %WINDIR%csdrive32.exe 62,976 a638fa38cd784f76c59a0d5f8300a3fc 8
4 %APPDATA%A3.exe 38,400 0b98a2f415bc95bb133c26d8cd94573c 7
5 %WINDIR%yodrive32.exe 38,912 bd2186ca9b65247a2a958c89aaab4d6a 6
6 %APPDATA%25.exe 77,672 6e0c9a35b8b06390396903233e5aacf7 4
7 %WINDIR%\System32\drivers\ohci1394.sys 61,696 5680d8c4046c70a3dc111145e51d3f7a 2
8 %WINDIR%yadrive32.exe 49,152 e520ff009e9bc542c7a162cc3014c697 2
9 %WINDIR%pmdrive32.exe 194,899 29f32a629499c2252f606a4c13d579a7 2
10 %APPDATA%D9.exe 55,808 5d954865dba791bda2ee4cc36ee84b04 1
11 %APPDATA%60.exe 86,016 13fc8c1ce61e823d277e12ef92fbb205 1
12 %APPDATA%3.exe 85,504 c0b5035afd1103e511fc8979a5b6eb9b 1
13 %APPDATA%5.exe 85,504 69117bbc4b424551dee4b869411ad7b6 1
14 ohci1394.sys N/A
More files

Site Disclaimer

Enigmasoftware.com is not associated, affiliated, sponsored or owned by the malware creators or distributors mentioned on this article. This article should NOT be mistaken or confused in being associated in any way with the promotion or endorsement of malware. Our intent is to provide information that will educate computer users on how to detect, and ultimately remove, malware from their computer with the help of SpyHunter and/or manual removal instructions provided on this article.

This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your computer. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.

One Comment

  • Faith:

    Your way of describing everything in this piece of writing is really pleasant, every one can easily understand it, Thanks a lot.

Leave a Reply

Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.