TrojanDownloader:HTML/Renos.J

Detected by Microsoft Defender Antivirus

Aliases: FakeAlert (AVG) HTML/Revir.Gen (Avira) Trojan-Downloader.HTML.Renos (Ikarus) Downloader.MisleadApp (Symantec) Mal_FakeAVB (Trend Micro)

Summary

TrojanDownloader:HTML/Renos.J is a detection for a trojan HTML script that attempts to download executable rogue security software when a user visits a malicious Web site and moves the mouse cursor over certain graphics or images.

Note: Reports of Rogue Antivirus programs have been more prevalent as of late. These are programs that generate misleading alerts and false detections in order to convince users to purchase illegitimate security software. Some of these programs, such as Trojan:Win32/Antivirusxp and Program:Win32/FakeRednefed may display product names or logos in an apparently unlawful attempt to impersonate Microsoft products.

To detect and remove this threat and other malicious software that may be installed in your computer, run a full-system scan with an up-to-date antivirus product such as the following:

Microsoft Security Essentials

For more information on antivirus software, see http://www.microsoft.com/windows/antivirus-partners/.

TrojanDownloader:HTML/Renos.J

Summary

What to do now

Technical information

Threat behavior

Installation

Payload

Prevention

Symptoms

System changes