Published Apr 29, 2013 | Updated Sep 15, 2017


Severe |Detected with Windows Defender Antivirus

Aliases: W32/Trojan2.NVGN (Command) Trojan-Dropper.Win32.Dorifel.ynb (Kaspersky) Trojan.Dropper.UYL (BitDefender) Trojan.DownLoader5.50084 (Dr.Web) Win32/DataStealer.B (ESET) Troj/Enosch-A (Sophos) W32.SillyFDC (Symantec)


Windows Defender detects and removes this threat.

This worm steals any Microsoft Word documents (which may include sensitive information) from your computer and emails them to a remote attacker.

Your computer can be infected when you use a compromised removable drive (such as a USB key). It can also be installed from an infected network file or folder, or when you download a malicious file from the Internet.

To detect and remove this threat and other malicious software that may be installed on your computer, run a full-system scan with an appropriate, up-to-date, security solution. The following Microsoft products detect and remove this threat:

Follow us