Skip to main content
Skip to main content
Microsoft Security Intelligence
Cart 0 items in shopping cart
Sign in
818 entries found. Displaying page 11 of 41.
Updated on Jun 09, 2005
VirTool:WinNT/Syspro.A is a component of BrowserModifier:Win32/CommonName, unwanted software that mainly tracks Internet usage for marketing purposes, while providing advertising and search assistance with typed keywords. VirTool:WinNT/Syspro.A is installed via a Nullsoft installation program (NSIS archive).
 
VirTool:WinNT/Syspro.A is a kernel mode rootkit that may exist as a file WINIK.SYS and hide processes, files and registry keys. WinNT/Syspro.A intercepts registry system calls and attaches to file system driver to filter the file IO requests.
Alert level: severe
Updated on Sep 12, 2006

SpySheriff may be installed without user consent, and may then display a dialog box suggesting malware has been found, and prompting the user to buy software to remove the malware that doesn't exist. SpySheriff may download and install program updates without notifying the user.

Alert level: severe
Updated on Dec 07, 2006

Windows Defender detects and removes this threat.

This family of trojan downloaders download malware from the Trojan:Win32/Wintrim family. These trojans redirect search engine results and display pop-ups based on keywords you enter into certain search engines. They might also send information about your computer to a remote server.

Alert level: severe
Updated on May 11, 2007
Trojan:Win32/Vundo.K is a DLL component that installs itself as a Browser Helper Object and generates popup ads on the user's desktop. The component is injected into explorer.exe by its dropper. The ads may pop up as a visible or hidden window. Trojan:Win32/Vundo.K is packed with a modified version of UPX
Alert level: severe
Updated on May 30, 2007
TrojanDownloader:Win32/Conhook.A attempts to download content from a remote Web site. TrojanDownloader:Win32/Conhook.A injects its code into running processes which could, depending on configuration, allow the Trojan to bypass permission-based firewalls in order to gain Internet access.
Alert level: severe
Updated on Sep 05, 2007
TrojanDownloader:Win32/Conhook.A attempts to download content from a remote Web site. TrojanDownloader:Win32/Conhook.A injects its code into running processes which could, depending on configuration, allow the Trojan to bypass permission-based firewalls in order to gain Internet access.
Alert level: severe
Updated on Oct 01, 2007
Trojan:Win32/Virtumonde.M is a Trojan that installs itself as a Browser Helper Object (BHO) and generates popup advertisements on a user's desktop. This trojan, which takes the form of a DLL, is injected into EXPLORER.EXE by other, additional malware. Advertisements may appear as visible windows or may be hidden from view.
Alert level: severe
Updated on Dec 11, 2007

This program was detected by definitions prior to 1.175.1915.0 as it violated the guidelines by which Microsoft identified unwanted software. Based on analysis using current guidelines, the program does not have unwanted behaviors.

Alert level: moderate
Updated on Feb 28, 2008

This program was detected by definitions prior to 1.159.567.0 as it violated the guidelines by which Microsoft identified unwanted software. Based on analysis using current guidelines, the program does not have unwanted behaviors.

Alert level: moderate
Updated on Mar 10, 2008

This program was detected by definitions prior to 1.175.1834.0 as it violated the guidelines by which Microsoft identified unwanted software. Based on analysis using current guidelines, the program does not have unwanted behaviors.

Alert level: moderate
Updated on May 07, 2008
Adware:Win32/SideSearch is a Web Browser Helper Object (BHO) that inserts "sponsored links" to the left of retrieved search engine results in a search results page.
Alert level: moderate
Updated on May 21, 2008

This program was detected by definitions prior to 1.175.2037.0 as it violated the guidelines by which Microsoft identified unwanted software. Based on analysis using current guidelines, the program does not have unwanted behaviors.

Alert level: moderate
Updated on Jun 11, 2008

This program was detected by definitions prior to 1.175.1915.0 as it violated the guidelines by which Microsoft identified unwanted software. Based on analysis using current guidelines, the program does not have unwanted behaviors.

Alert level: moderate
Updated on Aug 13, 2008

This program was detected by definitions prior to 1.159.567.0 as it violated the guidelines by which Microsoft identified unwanted software. Based on analysis using current guidelines, the program does not have unwanted behaviors.

Alert level: moderate
Updated on Sep 23, 2008
Win32/Renos.gen!AZ is a family of Trojan downloaders that display fake warning messages indicating that spyware or malware has been detected on the machine before downloading rogue security products, most notably Trojan:Win32/Antivirusxp. Win32/Renos.gen!AZ has been distributed via spam messages.
Alert level: severe
Updated on Feb 02, 2009
TrojanDownloader:Win32/Phagent.A is a DLL file that contains code to download a file from the Internet whenever the user attempts to make a dial-up connection.
Alert level: severe
Updated on Sep 08, 2009
PWS:Win32/Zbot.HO is a password stealing trojan. Win32/Zbot also contains backdoor functionality that allows unauthorized access and control of an affected machine.
Alert level: severe
Updated on Sep 10, 2009

This program was detected by definitions prior to 1.159.567.0 as it violated the guidelines by which Microsoft identified unwanted software. Based on analysis using current guidelines, the program does not have unwanted behaviors. Microsoft has released definition 1.159.567.0 which no longer detects this program.

Alert level: moderate
Updated on Mar 09, 2010
Backdoor:Win32/Otlard.A is a trojan that allows limited remote access and control of the computer by a remote attacker. The trojan could be instructed to download and execute arbitrary files.
Alert level: severe
Updated on May 17, 2010
Adware:Win32/BHO.G is detection for an adware application installed as a Web browser helper object (BHO) as a component of Adware:Win32/SmartAdsSolutions. The adware displays advertisements based on Web surfing habits.
Alert level: moderate