Skip to main content
Skip to main content
Microsoft Security Intelligence
Cart 0 items in shopping cart
Sign in
60 entries found. Displaying page 2 of 3.
Updated on Jul 18, 2012
Alert level: severe
Updated on Dec 07, 2019
Alert level: severe
Updated on Feb 08, 2012
Alert level: severe
Updated on Feb 07, 2012
Alert level: severe
Updated on Jun 22, 2011

"Security Solution 2011" is a variant of Win32/FakeRean, a family of rogue malware that claim to scan for malware and display fake warnings of malicious files. They then inform the user that they need to pay money to register the software in order to remove these non-existent threats.

Special Note:
Reports of Rogue Antivirus programs have been more prevalent as of late. These are programs that generate misleading alerts and false detections in order to convince users to purchase illegitimate security software. Some of these programs may display product names or logos in an apparently unlawful attempt to impersonate Microsoft products.

To detect and remove this threat and other malicious software that may be installed on your computer, run a full-system scan with an appropriate, up-to-date, security solution. The following Microsoft products will detect and remove this threat:

For more information on antivirus software, see http://www.microsoft.com/windows/antivirus-partners/

Also detected as: Rogue:Win32/FakeRean(Microsoft)
Alert level: severe
Updated on Apr 11, 2011
TrojanDownloader:Win32/Rugzip.A is a trojan that downloads other malware from predefined Web sites. Examples of malware downloaded by this trojan can include Trojan:Win32/Alureon.gen!J, TrojanDownloader:Win32/FakeRean, and Trojan:Win32/Meredrop.
Alert level: severe
Updated on Apr 11, 2011
Trojan:Win32/Insebro.C is a DLL component of the Trojan:Win32/FakeRean malware family. It checks for the presence of certain registry subkeys.
Alert level: severe
Updated on Dec 08, 2014

Windows Defender detects and removes this threat.

The threat is used by other malware to download more malware onto your PC. This means that if you have this malware, it's highly likely you also have Win32/FakeRean or others.

This threat can get on your PC when you open attachments or visit links to hacked or malicious websites from spam emails.

Find out ways that malware can get on your PC.  

Alert level: severe
Updated on Apr 11, 2011
TrojanDropper:Win32/Insebro.A is a trojan that downloads and executes arbitrary files. In the wild it has been observed downloading and installing rogue security software, such as Win32/FakeRean, onto affected machines. 
 
Special Note:
Reports of Rogue Antivirus programs have been more prevalent as of late.  These are programs that generate misleading alerts and false detections in order to convince users to purchase illegitimate security software.  Some of these programs may display product names or logos in an apparently unlawful attempt to impersonate Microsoft products. 
Alert level: severe
Updated on Apr 20, 2011

TrojanDropper:Win32/Hiloti.gen!A drops and installs several malware into the affected computer.

Alert level: severe
Updated on Feb 07, 2013

Smart Security is a variant of Win32/FakeRean - a fake antivirus scanner displaying misleading alerts claiming that the computer is infected, and requiring money to be paid to remove these non-existent threats. It may also terminate other processes running on the affected computer.

Alert level: severe
Updated on Apr 16, 2010
Trojan:Win32/Alureon.BF is the detection for a DLL file usually dropped along with an installation of a known fake anti-virus malware family called Trojan:Win32/FakeRean. Trojan:Win32/Alureon.BF may be used to redirect the affected machine to various preconfigured Web sites.
Alert level: severe
Updated on Apr 11, 2011
TrojanDownloader:Win32/Cbeplay.I is a trojan that downloads additional malware. It is often distributed via spam e-mail, either in an attachment or via a link to the trojan.
Alert level: severe
Updated on Apr 11, 2011
TrojanDownloader:Win32/Bredolab is a detection for malware that connects to a remote server to download and execute other files.
Alert level: severe
Updated on Apr 11, 2011
Virus:Win32/Cutwail.J is a member of Win32/Cutwail - a multi-component family of malware that downloads and executes arbitrary files. This functionality is mostly used to install additional Cutwail components, and other malware on an affected machine. In general, the Cutwail family is used to compromise machines and direct them in various ways at the attacker's will, usually for monetary gain. This could include using the affected machine to distribute additional malware, send spam, generate 'pay per click' advertising revenue, harvest e-mail addresses, and break CAPTCHAs. Its components are varied, but include trojan downloaders and droppers, spammers, rootkits and viruses. Cutwail also employs a rootkit and other defensive techniques to avoid detection and removal.
Alert level: severe
Updated on May 19, 2011
Win32/Rorpian are a family of worms capable of spreading through network shares and by exploiting vulnerabilities such as the Domain Name System (DNS) Server Service vulnerability. The worm usually downloads additional malware on the affected computer.
Alert level: severe
Updated on Apr 11, 2011
VirTool:Win32/Obfuscator are detections for programs that have had their purpose obfuscated to hinder analysis or detection by anti-virus scanners. They commonly employ a combination of methods including encryption, compression, anti-debugging and anti-emulation techniques.
Alert level: severe
Updated on May 19, 2011
Worm:Win32/Rorpian are a family of worms capable of spreading through network shares and by exploiting vulnerabilities such as the Domain Name System (DNS) Server Service vulnerability. The worm usually downloads additional malware on the affected computer.
Alert level: severe
Updated on Aug 01, 2011
TrojanDownloader:Win32/Stegvob is a trojan that silently downloads and installs other programs without consent. This could include the installation of additional malware or malware components to an affected computer.
Alert level: severe
Updated on Mar 16, 2012

TrojanDownloader:Win32/Karagany.I is a malware installer ("loader"). It works as a part of a multi-component malware, and may arrive as a result of drive-by download attacks.

Alert level: severe