VirTool:Win32/Injector.AB
Worm:Win32/Randex.AB
TrojanDownloader:MSIL/Gendwnurl.AB!bit
Microsoft Defender Antivirus detects and removes this threat.
This threat downloads and installs other programs, including other malware, onto your PC without your consent.
Worm:Win32/Pushbot.AB
VirTool:Win32/Obfuscator.AB
TrojanDownloader:ASX/Wimad.AB
Spammer:Win32/Tedroo.AB
Worm:Win32/Slenfbot.AB
Virus:Win32/Virut.AB
VirTool:Win32/Injector.gen!AB
VirTool:Win32/CeeInject.AB
Trojan:Win32/Alureon.gen!AB
Trojan:Win32/Alureon.gen!AB is the generic detection for a member of the Win32/Alureon family. It drops another malware, tries to delete the Hosts file, and tries to create a virtual file system (VFS). It may also connect to certain servers.
Backdoor:Win32/Rbot.AB
Virus:Win32/Expiro.AB
Virus:Win32/Expiro.AB is the detection for a virus that infects EXE files in all drives and collects user credentials from an infected computer. It also allows backdoor access and control to the infected computer, and lowers Internet Explorer settings.
TrojanDownloader:Win32/Dofoil.AB
Microsoft Defender Antivirus detects and removes this threat.
This sophisticated downloader has been observed to download Trojan:Win32/Dofoil.AB and Trojan:Win32/CoinMiner.D in the wild. It injects its code and runs hidden in system programs to avoid detection.
On March 6, 2018, behavior monitoring and machine learning technologies in Microsoft Defender Antivirus stopped a Dofoil variant (also known as Smoke Loader) that tried to infect more than 400,000 computers. The massive campaign aimed to install a cryptocurrency miner that uses victim computers' resources for coin mining purposes. Learn how artificial intelligence stopped the attack within minutes:
Behavior monitoring combined with machine learning spoils a massive Dofoil coin mining campaign
VirTool:Win32/DelfInject.gen!AB
Virus:Win32/Ramnit.AB
Virus:Win32/Ramnit.AB is the detection for files infected by variants of the Win32/Ramnit malware family. This malware drops and loads other malware, which may be detected as Trojan:Win32/Ramnit.gen!A.