TrojanDropper:Win32/Insebro.A

Detected by Microsoft Defender Antivirus

Aliases: WinPC Defender (other) Win-Trojan/Fraudload.70656.AM (AhnLab) Trojan.Agent.AMJV (BitDefender) Win32/FakeAVDI.GD (CA) Trojan.Downloader.FraudLoad-5 (Clam AV) Win32/Adware.WinPCDefender (ESET) Trojan-Downloader.Win32.FraudLoad.dxa (Kaspersky) Downloader-BON (McAfee) Win32/Antivirus2008.CZC (Norman) Mal/EncPk-HP (Sophos) Trojan.Fakeavalert (Symantec) XP Police 2009 (other) PC Defender (other) Win32/Adware.XPPoliceAntivirus (ESET)

Summary

TrojanDropper:Win32/Insebro.A is a trojan that downloads and executes arbitrary files. In the wild it has been observed downloading and installing rogue security software, such as Win32/FakeRean, onto affected machines.

Special Note:
Reports of Rogue Antivirus programs have been more prevalent as of late. These are programs that generate misleading alerts and false detections in order to convince users to purchase illegitimate security software. Some of these programs may display product names or logos in an apparently unlawful attempt to impersonate Microsoft products.

Use Microsoft Windows Defender, the Microsoft Safety Scanner (http://go.microsoft.com/fwlink/?LinkId=212742), or another up-to-date scanning and removal tool to detect and remove these threats and other unwanted software from your computer. For more information on Microsoft security products, see http://www.microsoft.com/protect/products/computer/default.mspx.

TrojanDropper:Win32/Insebro.A

Summary

What to do now

Technical information

Threat behavior

Installation

Payload

Prevention

Symptoms

System Changes