TrojanDownloader:Win32/Kuluoz.A is a trojan that attempts to connect your computer to a remote server so it receives and performs instructions, such as to download and execute files. This trojan has been observed to download variants of Trojan:Win32/FakeSysdef, a rogue security scanner.

Trojan:JS/Psyme.AD exploits publicly published vulnerabilities via the Web browser Internet Explorer to execute malicious JavaScript. This malicious JavaScript is commonly used to download and execute other malware onto the system. 

Trojan:Win32/VB.KB drops files to the Windows folder, modifies the registry to load these files when Windows is started, and sends an HTTP GET request to a remote Web site.

Trojan:Win32/Cinmeng displays pop-up advertisements and attempts to download files from a remote Web site. The Trojan is typically included as a component in other third-party programs.

Trojan:Java/Classloader.G is a malicious Java applet that can infect Microsoft Windows computers that are not patched with Microsoft Security Update MS03-011. An attacker can insert the Java applet into HTML code and host the code on a Web server or send the code in e-mail. When a user opens the Web page or e-mail, the vulnerability allows the applet to bypass a security check on the computer. The applet can then run malicious code on the computer and open a backdoor to receive commands from attackers.

Trojan:Win32/Apropos.B.dr is a Trojan dropper. It installs Trojan:Win32/Apropos.B and rootkit VirTool:WinNT/Zufyx.A to computers running Microsoft Windows. The Trojan dropper then runs Trojan:Win32/Apropos.B. The rootkit hides Trojan:Win32/Apropos.B from the user. 

Adbehavior software displays advertisements in pop-up windows on the desktop. In order to target advertisements to the current user, the software may install a browser helper object (BHO) to monitor search terms that the user enters in certain Web search engines. The software may terminate the anti-spyware process gcasserv.exe, and may download and install software without notifying the user.

Trojan:Win32/Alemod.C.dll is a data-stealing Trojan that is installed by Trojan dropper Trojan:Win32/Alemod.C.dr. For more information, please refer to the entry for Trojan:Win32/Alemod.C.dr at http://www.microsoft.com/security/encyclopedia/details.aspx?Name=Trojan:Win32/Alemod.C.dr

 

Trojan:Win32/StartPage.BB is a browser-modifying Trojan that targets certain versions of Microsoft Windows and Internet Explorer. The Trojan redirects Web page searches to a specific URL.

Trojan:Win32/Pakes.C is a Trojan that is dropped by Win32/Bropia.G.worm. The Trojan collects system information from a target computer and sends it to a remote server. For more information, see Win32/Bropia.G.worm.

Trojan:Win32/Agent!9E63 downloads a password stealing Trojan from a remote Web site and installs it to impacted systems. The downloaded Trojan is detected by the Microsoft antivirus engine as PWS:Win32/Sinowal.AGZ.

Trojan:Win32/Adclicker.K is a Trojan that displays advertisements on the computer and has the effect of clicking the advertisements automatically, without user interaction. It can also connect to a remote server to download other adware or malicious software.

Trojan:Win32/Alemod.E is a data-stealing Trojan that is installed by Trojan dropper Trojan:Win32/Alemod.E.dr. For more information, see the encyclopedia entry for Win32/Alemod at http://www.microsoft.com/security/encyclopedia/details.aspx?Name=Win32/Alemod

Trojan:Win32/Alemod.E.dll is a data-stealing Trojan that is installed by Trojan dropper Trojan:Win32/Alemod.E.dr. For more information, see the encyclopedia entry for Win32/Alemod at
http://www.microsoft.com/security/encyclopedia/details.aspx?Name=Win32/Alemod

Trojan:Win32/Nuwar.gen is generic detection for a family of Trojan droppers that install a distributed peer-to-peer (P2P) downloader Trojan which typically downloads a copy of a mass-mailing worm component.

The Win32/Gaobot.gen worm family spreads using different methods, depending on the variant. Some variants spread to computers with weak passwords. Others exploit vulnerabilities to infect computers. Once a computer is infected, the worm connects to an IRC server to receive commands.

Trojan:Java/Classloader.C is a malicious Java applet that can infect Microsoft Windows computers that are not patched with Microsoft Security Update MS03-011. An attacker can insert the Java applet into HTML code and host the code on a Web server or send the code in e-mail. When a user opens the Web page or e-mail, the vulnerability allows the applet to bypass a security check on the computer. The applet can then run malicious code on the computer and open a backdoor to receive commands from attackers.

Trojan:Win32/Stresid downloads files from remote websites, may install as a browser helper object (BHO), and displays pop-up advertising on affected users’ systems. Some variants of Trojan:Win32/Stresid have been bundled with rootkits that hide its presence on the system. Trojan:Win32/Stresid drops a randomly named executable to the temp directory and a randomly named dll to the Windows directory.