Skip to content
  • Active
  • Severity: High
  • Trojans
  • Windows, Mac
  • Verified · Oct 2021

How to remove Trojan.WIN32.PDF.Alien.gen

A step-by-step removal guide for affected devices. Follow the verified procedure below — most readers complete it in under 10 minutes.

Gabriel E. Hall · Passionate web researcher

Trojan.WIN32.PDF.Alien.gen is a malicious program for Windows that might sneak into your PC without warning

Trojan.WIN32.PDF.Alien.gen

PDF.Alien.gen is a Trojan that users might see flagged by their security applications. As evident by the name itself, it spreads via booby-trapped PDF files, typically downloaded as spam email attachments. Likewise, Trojans are also commonly spread via other methods, including illegal software distribution sites.

Trojans are versatile computer infections – it's more of an umbrella term, as the functionality of malware itself can vary greatly. For example, it may steal personal information by recording keystrokes, proliferate other malware, corrupt system files, or simply destroy everything located on a PC. In some cases, malware authors can also use Trojans to completely take over users' machines. While there are Trojans designed for Mac operating systems, most of them are still directed towards Windows and Trojan.WIN32.PDF.Alien.gen is not an exception in this regard.

If you have downloaded a file that was flagged as malicious, you should not ignore the warning and investigate immediately. Never open files that are detected by security software before being completely sure that it is a false-positive.[1] Keep in mind that “gen” within the name represents “generic.” These detections are susceptible to false-positive detections, although this does not happen too often.

Name Trojan.WIN32.PDF.Alien.gen
Type Trojan, malware
Distribution Spam emails, malicious websites, torrents, cracks
Dangers Installation of other malware, sensitive information disclosure to cybercriminals, financial losses, identity theft, etc.
Removal Perform a full system scan with powerful security software, such as SpyHunterCombo Cleaner
 System fix Malware can seriously tamper with Windows systems, causing errors, crashes, lag, and other stability issues after it is terminated. To remediate the OS and avoid its reinstallation, we recommend scanning it with the FortectIntego repair tool

How do Trojans spread?

A Trojan Horse was named after a technique used by Greeks in the battle of Troy, where soldiers hid within the horse's belly, attacking the enemies unexpectedly. This is exactly the same principle how malware under the same name works – it strikes users unexpectedly, without warning.

In fact, the distribution method is what defines a Trojan. It is presented as a useful or harmless file, which users execute without suspecting anything out of the ordinary. Below are a few scenarios when this happens, and hopefully their overview can help you to avoid malware infections in the future:

  • Malicious spam email attachments. Spam emails remain the most popular for malware distribution. Cybercriminals employ bots to send out thousands of obfuscated documents to users every day and present the emails as something legitimate. To avoid being tricked by a fake email, always scan the attachments with anti-malware (or upload files to Virus Total) and never allow macros to be run on your device.
  • Software cracks or pirated applications. Another popular method for malware delivery. Cybercriminals are aware that many people are keen on downloading pirated software due to one reason or another. Due to the lack of moderation on torrent and similar sites, it makes it a perfect place for hackers to upload malicious files disguised as something useful. Keep in mind that ransomware such as Nqsq is also spread via illegitimate installers, so you should stay away from these dangerous places in the first place.
  • Phishing websites. There are plenty of websites that are created for malicious purposes – be it information theft or malware downloads. Under certain circumstances, a malicious payload can be downloaded and installed automatically without user interaction. This is why it is important to ensure that all the software installed on the machine is up to date. Malware is commonly spread via phishing messages which claim that a virus has been found on the device, and removal software needs to be downloaded. In other cases, users are shown fake update prompts from well-known applications, such as Google Chrome or Flash Player. Never download updates from random websites and instead update the apps in question automatically.

Trojan.WIN32.PDF.Alien.gen virus

In order to enhance your security, you should always have reputable anti-malware software running in the background. This way, you can be always be warned about the Trojan.WIN32.PDF.Alien.gen virus detection and the infection of the computer can be prevented altogether.

Trojan.WIN32.PDF.Alien.gen removal

Trojans such Emotet, Zbot, or Trickbot have been around for many years and are considered among the most dangerous threats. Thousands of users and corporations fall victims to Trojan attacks every day, and there's little that can be done without adequate security measures and education in the field.

Quite often Trojans and other malware communicate with the remote Command and Control[2] servers via the internet. Crooks can are using them to send various commands, update malware with new modules, proliferate other threats, and much more. Thus, the first step for Trojan.WIN32.PDF.Alien.gen removal should be disconnection of the internet.

You can do that easily by simply pulling out the ethernet cable or right-clicking on the WiFi icon at the bottom-right corner of the taskbar and selecting Disconnect. Once this is done, you can finally proceed with the malware elimination process.

Now you should perform a full system scan with SpyHunterCombo Cleaner or another powerful anti-malware software to remove everything malicious from your system automatically. While manual Trojan elimination is possible, it is not recommended for regular computer users, as it requires extensive IT knowledge.

In some cases, malware can interfere with the correct operation of security tools. You can bypass this by accessing the Safe Mode:

Windows 7 / Vista / XP

  1. Click Start > Shutdown > Restart > OK.
  2. When your computer becomes active, start pressing the F8 button (if that does not work, try F2, F12, Del, etc. – it all depends on your motherboard model) multiple times until you see the Advanced Boot Options window.
  3. Select Safe Mode with Networking from the list.Windows XP/7

Windows 10 / Windows 8

  1. Right-click on the Start button and select Settings.
  2. Scroll down to pick Update & Security.Update & Security
  3. On the left side of the window, pick Recovery.
  4. Now scroll down to find the Advanced Startup section.
  5. Click Restart now.Recovery
  6. Select Troubleshoot.Choose an option
  7. Go to Advanced options.Advanced options
  8. Select Startup Settings.Startup settings
  9. Click Restart.
  10. Press 5 or click 5) Enable Safe Mode with Networking.Press F5 to enable Safe Mode with Networking

Additional security measures

If your device has been infected with a Trojan, there are certain steps you should undertake in order to ensure that all of the malicious components are eliminated fully. If you have used SpyHunterCombo Cleaner, MalwarebytesMalwarebytes, or another security software to eliminate the infection, you are halfway there.

Depending on the malware payload and what happened to your machine during the infection, the remediation process might differ. However, we strongly recommend you proceed with the following precautionary measures:

  • Reset or clean your browsers. You can find more details on how to do that at the bottom of this post;
  • Reset all your passwords and use two-factor authentication where available;
  • Repair damaged system components with FortectIntego, or you might start facing crashes, errors, BSODs,[3] and other issues after malware is removed.

Keep in mind that malware is luring on the internet, so you should always be careful when using it. Use antivirus software at all times, employ ad-blockers to block malicious ads, and be more careful overall.

Remove from Microsoft Edge

Delete unwanted extensions from MS Edge:

  1. Select Menu (three horizontal dots at the top-right of the browser window) and pick Extensions.
  2. From the list, pick the extension and click on the Gear icon.
  3. Click Remove.Remove extensions from Edge

Clear cookies and other browser data:

  1. Click on the Menu (three horizontal dots at the top-right of the browser window) and select Settings > Privacy, search, and services..
  2. Under Clear browsing data, pick Choose what to clear.
  3. Select Cookies and other site data and Cached images and files. (apart from passwords, although you might want to include Media licenses as well, if applicable) and click on Clear.Clear Edge browsing data

Restore new tab and homepage settings:

  1. Click the menu icon and choose Settings.
  2. Then find On startup section.
  3. Click Remove next to any suspicious startup page.

Reset MS Edge if the above steps did not work:

  1. Press on Ctrl + Shift + Esc to open Task Manager.
  2. Click on More details arrow at the bottom of the window.
  3. Select Details tab.
  4. Now scroll down and locate every entry with Microsoft Edge name in it. Right-click on each of them and select End Task to stop MS Edge from running.Reset MS Edge

Instructions for Chromium-based Edge

Delete extensions from MS Edge (Chromium):

  1. Open Edge and click select Settings > Extensions.
  2. Delete unwanted extensions by clicking Remove.Remove extensions from Chromium Edge

Clear cache and site data:

  1. Click on Menu and go to Settings.
  2. Select Privacy, search and services.
  3. Under Clear browsing data, pick Choose what to clear.
  4. Under Time range, pick All time.
  5. Select Clear now.Clear browser data from Chroum Edge

Reset Chromium-based MS Edge:

  1. Click on Menu and select Settings.
  2. On the left side, pick Reset settings.
  3. Select Restore settings to their default values.
  4. Confirm with Reset.
  5. This will disable extensions and reset startup pages but will not delete bookmarks, saved passwords, or browsing history.Reset Chromium Edge

Remove from Mozilla Firefox (FF)

Remove dangerous extensions:

  1. Open Mozilla Firefox browser and click on the Menu (three horizontal lines at the top-right of the window).
  2. Select Add-ons.
  3. In here, select the unwanted extension and click Remove.Remove extensions from Firefox

Reset the homepage:

  1. Click three horizontal lines at the top right corner to open the menu.
  2. Choose Settings.
  3. Under Home, set your preferred homepage and new tab settings.

Clear cookies and site data:

  1. Click Menu and pick Settings.
  2. Go to Privacy & Security section.
  3. Scroll down to locate Cookies and Site Data.
  4. Click on Clear Data...
  5. Select Cookies and Site Data and Temporary cached files and pages, then click Clear.Clear cookies and site data from Firefox

Reset Mozilla Firefox

If clearing the browser as explained above did not help, reset Mozilla Firefox:

  1. Open Mozilla Firefox browser and click the Menu.
  2. Go to Help and then choose Troubleshooting Information.Reset Firefox 1
  3. Under Give Firefox a tune up section, click on Refresh Firefox...
  4. Once the pop-up shows up, confirm the action by pressing on Refresh Firefox.Reset Firefox 2

Remove from Google Chrome

Delete malicious extensions from Google Chrome:

  1. Open Google Chrome, click on the Menu (three vertical dots at the top-right corner) and select More tools > Extensions.
  2. In the newly opened window, you will see all the installed extensions. Uninstall all suspicious extensions related to the unwanted program by clicking Remove.Remove extensions from Chrome

Clear cache and web data from Chrome:

  1. Click on Menu and pick Settings.
  2. Under Privacy and security, select Clear browsing data.
  3. Select Browsing history, Cookies and other site data, as well as Cached images and files.
  4. Click Clear data.Clear cache and web data from Chrome

Change your homepage:

  1. Click menu and choose Settings.
  2. Look for a suspicious site in the On startup section.
  3. Click on Open a specific or set of pages and click on three dots to find the Remove option.

Reset Google Chrome:

If the previous methods did not help you, reset Google Chrome to eliminate all the unwanted components:

  1. Click on Menu and select Settings.
  2. In the Settings, scroll down and click Advanced.
  3. Scroll down and locate Reset and clean up section.
  4. Now click Restore settings to their original defaults.
  5. Confirm with Reset settings.Reset Chrome 2

Delete from Safari

Remove dangerous extensions:

  1. Open Safari, click Safari in the menu at the top-left of the screen, and select Preferences.
  2. Go to the Extensions tab, look for any suspicious entries, and click Uninstall to remove them.Remove extensions from Safari

Clear history and website data:

  1. Click Safari in the menu and pick Clear History.
  2. Set Clear to all history and confirm with Clear History.Clear history from Safari

Reset Safari:

  1. Click Safari in the menu and select Preferences > Advanced.
  2. Enable Show Develop menu in menu bar.
  3. From the menu bar, click Develop and select Empty Caches.Reset Safari

Be the first to comment

Spyware news
Privacy preferences

We use cookies to improve your experience and analyze traffic. Some cookies enable embedded content like videos and social posts. Choose what you allow — you can change this anytime.