Home / malware Trojan:DOS/Alureon.K
First posted on 30 October 2012.
Source: MicrosoftAliases :
Trojan:DOS/Alureon.K is also known as Alureon.A (Command), BOO/TDss.O (Avira), Rootkit.MBR.Sst (Ikarus), Rootkit.MBR.Sst.C (BitDefender).
Explanation :
Trojan:DOS/Alureon.K is a trojan that infects your computer's VBR (volume boot record) to load and run other Alureon rootkit components.
This trojan is created by certain variants of the Win32/Alureon family of data-stealing trojans, such as Trojan:Win32/Alureon.FE.
Win32/Alureon is a multi-component family of trojans involved in a broad range of subversive activities online in order to generate revenue from various sources for its controllers. Mostly, Win32/Alureon is associated with moderating your activities online to the attacker's benefit. As such, the various components of this family have been used for:
- modifying affected user's search results (search hijacking)
- redirecting affected user's browsing to sites of the attacker's choice (browser hijacking)
- changing DNS settings in order to redirect users to sites of the attacker's choice without the affected user's knowledge
- downloading and executing arbitrary files, including additional components and other malware
- serving illegitimate advertising
- installing Rogue security software
- banner clicking
Win32/Alureon also utilizes advanced stealth techniques in order to hinder the detection and removal oif its various components.
Due to the complex nature of this threat, you may need to perform additional manual recovery actions to clean your computer of this infection.
Please see the Recovery section of this entry for more information.
Related encyclopedia entries
Win32/Alureon
Trojan:Win32/Alureon.FE
Analysis by Wei Li
Last update 30 October 2012
