Backdoor:Win32/Agent.RL.dll is a backdoor Trojan that runs as a process at Windows startup, and may contact a remote Web server to notify attackers of the Trojan installation. Agent.RL may download additional programs or malware.

Trojan:Win32/Chepdu.B is a trojan that is dropped and installed by TrojanDropper:Win32/Chepdu.A as a BHO (Browser Helper Object). It prevents access to certain websites, generates unwanted popups and may redirect searches and report statistics back to a remote server.

Worm:Win32/PrettyPark.B@mm is a worm that spreads via e-mail attachments. It allows backdoor access and control of an infected computer.

Worm:Win32/Slenfbot.YM is a worm that can spread via MSN Messenger, and may spread via removable drives. The worm also contains backdoor functionality that allows unauthorized access to an affected machine. This worm does not spread automatically upon installation, but must be ordered to spread by a remote attacker.

TrojanDownloader:Win32/Delf.IR is a trojan that silently downloads and installs other programs without consent. This could include the installation of additional malware or malware components to an affected computer.

Worm:Win32/Autorun.RG is a worm - a self-propagating program that can spread itself from one computer to another. Worms may spread themselves via a variety of different channels in order to compromise new computers. Variants of Worm:Win32/Autorun usually spread using methods that include, but may not be limited to, copying themselves to removable or network drives, and placing an autorun.inf file in the root directory of each affected drive in an attempt to ensure that the worm is run when the removable drive is attached, or the network drive is visited from a remote system supporting the Autorun feature.

TrojanDownloader:Win32/Leckbrio.B is a trojan that silently downloads and installs other programs without consent. This could include the installation of additional malware or malware components to an affected computer.

Virus:Win32/Patchload.P is the detection for files that are modified by other malware.

TrojanSpy:Win32/Banker.YL is a trojan that steals user credentials when the user visits certain websites. It then sends the stolen credentials to a remote attacker via an online form.

Joke:Win32/Crazywindow.A is a joke program that, when run, opens a Christmas-themed window and plays a Christmas tune, then takes control of the active window and shakes it for nearly a minute at a time.

Worm:Win32/Ganelp.C is a worm - a self-propagating program that can spread itself from one computer to another. Worms may spread themselves via a variety of different channels in order to compromise new computers. Commonly, worms may spread directly by copying themselves to removable or network drives, or by attempting to exploit particular vulnerabilities on targeted computers. Worms also often attempt to spread via platforms that require user interaction in order to run. They may send themselves as an attachment to an email or an instant message, or send a link to a copy of themselves in the body of a message. In these cases the message needs to be convincing enough to encourage the victim to click on the link or attachment and run or download a copy of the worm.

Trojan:Win32/Conedex.C is a malicious JavaScript. The script sends a POST request to a certain server, and clicks on links in the reply.

Trojan:Win64/Sirefef.Q is 64-bit user mode component of Win32/Sirefef - a multi-component family of malware that moderates your Internet experience by changing search results and generating pay-per-click advertising revenue for its controllers. The family consists of multiple parts that perform different functions, such as downloading updates and additional components, hiding existing components, or performing a payload.

Exploit:Java/Blacole.ES is malicious Java code that exploits a vulnerability that allows the execution of arbitrary code. The vulnerability is further described in CVE-2011-3544; successful exploitation may lead to remote code execution.

Microsoft security software detects and removes this threat.

This family of malware steals your usernames and passwords for online games and applications. It can also download other malware.

The trojan is usually installed on your computer when you download other applications, images or software. It is also installed by other malware such as Trojan:Win32/LockScreen.

Microsoft security software detects and removes this family of threats. 

 

This trojan family can perform DDoS from your PC. They can also give a malicious hacker access and control of your PC, download and run files, and perform a number of other malicious activities.

 

Find out ways that malware can get on your PC.  

DDoS:Win32/Nitol are a family of trojans that perform DDoS (distributed denial of service) attacks, allow backdoor access and control, download and run files and perform a number of other malicious activities on your computer.

Trojan:Win32/Qhosts.BH is a trojan that redirects your web browser away from certain sites and may download additional malware onto your computer.

Additional remediation instructions for Trojan:Win32/Qhosts.BH

This threat may make lasting changes to a computer's configuration that are not restored by detecting and removing this threat. For more information on returning an infected computer to its pre-infected state, please see the following articles: