Worm:Win32/Gamarue.G is a worm - a self-propagating program that can spread itself from one computer to another. Worms may spread themselves via a variety of different channels in order to compromise new computers. Commonly, worms may spread directly by copying themselves to removable or network drives, or by attempting to exploit particular vulnerabilities on targeted computers. Worms also often attempt to spread via platforms that require user interaction in order to run. They may send themselves as an attachment to an email or an instant message, or send a link to a copy of themselves in the body of a message. In these cases the message needs to be convincing enough to encourage the victim to click on the link or attachment and run or download a copy of the worm.

Windows Defender detects and removes this threat.

Ransom:Win64/Weelsof.A is a ransomware that might lock your screen and ask you for financial information or a "fine" so that your PC can be restored to normal.

Find out ways that malware can get on your PC.

Windows Defender detects and removes this threat.

This ransomware can stop you from using your PC or accessing your data. It might ask you to pay money to a malicious hacker. It can also be downloaded by other malware like JS/Nemucod as its payload.

Windows 10 protects you from ransomware. Read more:

Windows 10 Creators Update provides next-gen ransomware protection

Our ransomware page has more information on this type of threat.

Windows Defender detects and removes this threat.

The threat renames and encrypts some files on your PC. It might ask you to pay money to a malicious hacker.

Our ransomware FAQ page has more information on this type of threat.

Read our latest report: Ransomware 1H 2017 review: Global outbreaks reinforce the value of security hygiene.

Windows Defender Antivirus detects and removes this threat. 

 

This family of ransomware trojans targets people from certain countries. It locks your PC and displays a localized webpage that covers your desktop. This webpage demands the payment of a fine for the supposed possession of illicit material.

Windows Defender detects and removes this threat.

This threat can collect your sensitive information and send it to a malicious hacker.

Find out ways that malware can get on your PC.

Windows Defender detects and removes this threat.

This threat downloads and installs other programs, including other malware, onto your PC without your consent.

Find out ways that malware can get on your PC.

Microsoft security software detects and removes this threat.

This ransomware can stop you from using your PC or accessing your data. It might ask you to pay money to a malicious hacker.

Windows Defender detects and removes this threat.

This ransomware can be downloaded by other malware such as TrojanDownloader:Win32/Brucryp, or can be installed by a remote user after a successful brute force attack with an RDP Brute tool.

It can stop you from using your PC or accessing your data. It might ask you to pay money to a malicious hacker.

Our ransomware page has more information on this type of threat.

Windows Defender detects and removes this threat.

This ransomware can stop you from using your PC or accessing your data. It might ask you to pay money to a malicious hacker.

Our ransomware page has more information on this type of threat.

Microsoft Defender Antivirus detects and removes this worm.

Worms automatically spread to other PCs. They can do this in a number of ways, including by copying themselves to removable drives, network folders, or spreading through email.

Find out ways that malware can get on your PC.

Microsoft Defender Antivirus detects and removes this worm.

Worms automatically spread to other PCs. This worm is a remote-administration tool that spreads using administration shares to infect PCs in your network.

Find out ways that malware can get on your PC.

Trojan:Win32/Acbot.A is a trojan that posts messages to certain social media websites that you might access using a web browser. The messages posted by Trojan:Win32/Acbot.A contain a link to a copy of the trojan.

Windows Defender detects and removes this threat.

This threat uses Skype to send messages and files that might include copies of Backdoor:Win32/Caphaw. These trojans can give a malicious hacker access and control of your PC.

It does not operate in isolation: if your PC is detected with Backdoor:Win32/Caphaw.N, then it is likely that your PC is infected with other malware.

Windows Defender detects and removes this threat.

This trojan can install other malware or unwanted software onto your PC.

Find out ways that malware can get on your PC.

Trojan:Win32/LockScreen.gen!A is a detection for a trojan that displays a graphic image with adult content and prevents closing or dismissing the image.

Microsoft Defender Antivirus detects and removes this threat. 

The threat locks your screen and prevents you from using your desktop. It shows you a message saying that if you want to regain access to your desktop, you have to pay a fine in the form of an SMS sent to a premium number.

This type of threat is known as ransomware.

Our ransomware FAQ page has more information on this type of threat.

The trend towards increasingly sophisticated malware behavior, highlighted by the use of exploits and other attack vectors, makes older platforms so much more susceptible to ransomware attacks. From June to November 2017, Windows 7 devices were 3.4 times more likely to encounter ransomware compared to Windows 10 devices.

Read our latest report: A worthy upgrade: Next-gen security on Windows 10 proves resilient against ransomware outbreaks in 2017.