Attention: We will be transitioning to a new AAD or Microsoft Entra ID from the week of May 20, 2024. In case your tenant requires admin consent, please refer to this document located at Overview of user and admin consent - Microsoft Entra ID | Microsoft Learn and grant access to App ID: 6ba09155-cb24-475b-b24f-b4e28fc74365 with graph permissions for Directory.Read.All and User.Read for continued access.
500 entries found.
Displaying page 1
of 25.
Win32/Renos
The Win32/Renos family automatically downloads unwanted software such as SpySheriff, SpyAxe, SpyFalcon, SpyDawn, SpywareStrike, and other similarly named programs. These programs typically present erroneous warnings claiming the system is infected with spyware and offer to remove the alleged spyware for a fee. In some cases, the programs may also cause system instability.
Alert level:
high
TrojanDownloader:Win32/Renos.KB
TrojanDownloader:Win32/Renos.KB is a generic detection for a family of trojans that connect to certain websites in order to download arbitrary files. This may include other TrojanDownloader:Win32/Renos components, and rogue antivirus software such as Trojan:Win32/FakeSecSen or Trojan:Win32/FakeXPA.
Alert level:
severe
TrojanDownloader:Win32/Renos.LE
TrojanDownloader:Win32/Renos.LE is a generic detection for a family of trojans that connect to certain websites in order to download arbitrary files. This may include other TrojanDownloader:Win32/Renos components, and rogue antivirus software such as Trojan:Win32/FakeSecSen or Trojan:Win32/FakeXPA.
Alert level:
severe
TrojanDownloader:Win32/Renos.LJ
TrojanDownloader:Win32/Renos.LJ is a generic detection for a family of trojans that connect to certain websites in order to download arbitrary files. This may include other TrojanDownloader:Win32/Renos components, and rogue antivirus software such as Trojan:Win32/FakeSecSen or Trojan:Win32/FakeXPA.
Alert level:
severe
TrojanDownloader:Win32/Renos.OF
TrojanDownloader:Win32/Renos.OF is a generic detection for a family of trojans that connect to certain websites in order to download arbitrary files. This may include other TrojanDownloader:Win32/Renos components, and rogue antivirus software such as Trojan:Win32/FakeSecSen or Trojan:Win32/FakeXPA.
Alert level:
severe
TrojanDownloader:Win32/Renos.PA
TrojanDownloader:Win32/Renos.PA is a generic detection for a family of trojans that connect to certain websites in order to download arbitrary files. This may include other TrojanDownloader:Win32/Renos components, and rogue antivirus software such as Trojan:Win32/FakeSecSen or Trojan:Win32/FakeXPA.
Alert level:
severe
TrojanDownloader:Win32/Renos.PP
TrojanDownloader:Win32/Renos.PP is a generic detection for a group of trojans that attempt to download other malware that can include variants of Win32/Renos and rogue security software such as Rogue:Win32/FakeSecSen or Rogue:Win32/FakeXPA.
Alert level:
severe
TrojanDownloader:Win32/Renos.AS
TrojanDownloader:Win32/Renos.AS is a trojan downloader that automatically download unwanted software such as AntivirusXP, and other similarly named programs.
Alert level:
severe
TrojanDownloader:Win32/Renos.GP
TrojanDownloader:Win32/Renos.GP is a trojan that downloads files, which may presumably be other malware, in the system.
Alert level:
severe
TrojanDownloader:Win32/Renos.GW
TrojanDownloader:Win32/Renos.GW is a detection for a trojan that connects to certain websites in order to download arbitrary files. This may include other TrojanDownloader:Win32/Renos components, and rogue antivirus software such as Trojan:Win32/FakeSecSen or Trojan:Win32/FakeXPA.
Alert level:
severe
TrojanDownloader:HTML/Renos.gen!A
TrojanDownloader:HTML/Renos.gen!A is Microsoft's generic detection for a trojan HTML script that attempts to download executable rogue security software when a user visits a malicious Web site and moves the mouse cursor over certain graphics or images.
Note: Reports of Rogue Antivirus programs have been more prevalent as of late. These are programs that generate misleading alerts and false detections in order to convince users to purchase illegitimate security software. Some of these programs, such as Trojan:Win32/Antivirusxp and Program:Win32/FakeRednefed may display product names or logos in an apparently unlawful attempt to impersonate Microsoft products.
Use Microsoft Windows Defender, the Microsoft Safety Scanner (http://go.microsoft.com/fwlink/?LinkId=212742), or another up-to-date scanning and removal tool to detect and remove these threats and other unwanted software from your computer. For more information on Microsoft security products, see http://www.microsoft.com/protect/products/computer/default.mspx.
Alert level:
severe
TrojanDownloader:Win32/Renos.IF
TrojanDownloader:Win32/Renos.IF is a trojan that displays pop-ups, dialogs and balloons in an attempt to persuade the user to download and install a fake antimalware scanner. At the time of publication, this fake scanner was detected as Trojan:Win32/FakeRemoc.
Special Note:
Reports of Rogue Antivirus programs have been more prevalent as of late. These are programs that generate misleading alerts and false detections in order to convince users to purchase illegitimate security software. Some of these programs may display product names or logos in an apparently unlawful attempt to impersonate Microsoft products.
Reports of Rogue Antivirus programs have been more prevalent as of late. These are programs that generate misleading alerts and false detections in order to convince users to purchase illegitimate security software. Some of these programs may display product names or logos in an apparently unlawful attempt to impersonate Microsoft products.
Use Microsoft Windows Defender, the Microsoft Safety Scanner (http://go.microsoft.com/fwlink/?LinkId=212742), or another up-to-date scanning and removal tool to detect and remove these threats and other unwanted software from your computer. For more information on Microsoft security products, see http://www.microsoft.com/protect/products/computer/default.mspx.
Alert level:
severe
TrojanDownloader:Win32/Renos.IM
TrojanDownloader:Win32/Renos.IM is a trojan that connects to a remote server to download other malware. It may also act as a trojan clicker.
Alert level:
severe
TrojanDownloader:Win32/Renos.IO
TrojanDownloader:Win32/Renos.IO is a generic detection for a family of trojans that connect to certain websites in order to download other malware. This may include other TrojanDownloader:Win32/Renos components, and rogue antivirus software such as Trojan:Win32/FakeSecSen or Trojan:Win32/FakeXPA.
Note: Reports of Rogue Antivirus programs have been more prevalent as of late. These are programs that generate misleading alerts and false detections in order to convince users to purchase illegitimate security software. Some of these programs may display product names or logos in an apparently unlawful attempt to impersonate Microsoft products.
Alert level:
severe
TrojanDownloader:Win32/Renos.JG
TrojanDownloader:Win32/Renos.JG is a detection for a trojan that connects to certain websites in order to download arbitrary files. This may include other TrojanDownloader:Win32/Renos components, and rogue antivirus software such as Trojan:Win32/FakeSecSen or Trojan:Win32/FakeXPA.
Alert level:
severe
TrojanDownloader:Win32/Renos.gen!AS
Win32/Renos.gen!AS is a family of Trojan downloaders that display fake warning messages indicating that spyware or malware has been detected on the machine before downloading rogue security products, most notably Program:Win32/Antivirusxp. Win32/Renos.gen!AS has been distributed via spam messages.
Alert level:
severe
TrojanDownloader:Win32/Renos.DL
Program:Win32/FakeAlert.A is a family of programs that display false messages reporting that the user's system is infected and that new security software should be downloaded. The message is false and misleading, and it is intended to encourage users to download and/or purchase third-party software.
Alert level:
severe
TrojanDownloader:Win32/Renos.LF
TrojanDownloader:Win32/Renos.LF is a generic detection for a family of trojans that connect to certain websites in order to download arbitrary files. This may include other TrojanDownloader:Win32/Renos components, and rogue antivirus software such as Trojan:Win32/FakeSecSen or Trojan:Win32/FakeXPA.
Alert level:
severe
TrojanDownloader:Win32/Renos.KX
TrojanDownloader:Win32/Renos.KX is a generic detection for a family of trojans that connect to certain websites in order to download arbitrary files. This may include other TrojanDownloader:Win32/Renos components, and rogue antivirus software such as Trojan:Win32/FakeSecSen or Trojan:Win32/FakeXPA.
Alert level:
severe
TrojanDownloader:Win32/Renos.gen!AX
Win32/Renos.gen!AX is a family of Trojan downloaders that display fake warning messages indicating that spyware or malware has been detected on the machine before downloading rogue security products, most notably Program:Win32/Antivirusxp. Win32/Renos.gen!AX has been distributed via spam messages.
Alert level:
severe