Published May 07, 2013|Updated Sep 15, 2017


Alert level: Severe Detected with Windows Defender Antivirus

Also detected as: Gen:Variant.Graftor.Elzob.644 (BitDefender) Mal/Banc-B (Sophos) TR/Spy.Gen2 (Avira)

Windows Defender Antivirus detects and removes this threat. 

Win32/Reveton is a family of ransomware that targets users from certain countries. It locks your PC and displays a localized webpage that covers your desktop and demands the payment of a fine for the supposed possession of illicit material.

PWS:Win32/Reveton.B extends the Reveton family’s functionality by stealing sensitive information and sending it to a remote attacker. It targets passwords for a number of file downloaders, remote control applications, FTP, poker, chat and e-mail clients. It can also steal passwords stored by browsers and in protected storage. It is used by Ransom:Win32/Reveton.

Our ransomware FAQ page has more information on this type of threat.

Read our latest comprehensive ransomware report:

Ransomware 1H 2017 review: Global outbreaks reinforce the value of security hygiene


Latest news
Show/Hide feedback form