Published Oct 14, 2013 | Updated Sep 15, 2017


Severe |Detected with Windows Defender Antivirus

Aliases: W32/Trojan.NFSH-6582 (Command) Email-Worm.VBS.Agent.aa (Kaspersky) legacyascii/AutoRun.CCSS (Norman) Worm/Jenxcus.A.25 (Avira) Gen:Heur.MSIL.Krypt.85 (BitDefender) VBS.DownLoader.78 (Dr.Web) VBS/Agent.NDJ (ESET) VBS/Agent.NGB!tr (Fortinet) VBS/Autorun-CAI (Sophos)


Windows Defender detects and removes this threat.

This threat is a member of the family of worms that can give a malicious hacker access and control of your PC. It can also collect your personal information and send it to a malicious hacker.Jenxcus

Typically, this threat gets onto your from a attack. It can also be installed when you visit a compromised webpage or use an infected removable drive.PCdrive-by download

See description for more information.VBS/Jenxcus

Find out ways that malware can get on your PC.

Use the following free  software to detect and remove this threat:Microsoft

You should also run a full scan. A full scan might find hidden malware.

This threat tries to steal your sensitive and confidential information. If you think your information has been stolen, see:

You should change your passwords after you've removed this threat:

This threat tries to use the function to spread via removable drives, like flash drives. You can disable to prevent worms from spreading:Windows AutorunUSBAutorun

Remember to scan any removable or portable drives. If you have security software, see this topic on our software help page:Microsoft

You can also visit our  or search the for more help.advanced troubleshooting pageMicrosoft virus and malware community

If you’re using , see our .Windows XPWindows XP end of support page

Protect your sensitive information
Disable Autorun
Scan removable drives
Get more help
Follow us