TrojanDownloader:Win32/Cutwail.gen!C
TrojanDownloader:Win32/Zlob.gen!BL
Trojan:Win32/Zlob.J
Win32/Zlob refers to a large multi-component family of malware that modifies Internet Explorer's settings, alters and redirects the user's default Internet search page and home page, and attempts to download and execute arbitrary files (including additional malicious software).
Rogue:Win32/FakePowav
Windows Defender Antivirus detects and removes this threat. See the Win32/FakePowav description for more information.
Worm:Win32/Delf.CV
Rogue:Win32/FakeScanti
Windows Defender Antivirus detects and removes this threat. See the Win32/FakeScanti description for more information.
Win32/FakeScanti
Win32/FakeScanti is a rogue that claims to scan for malware and displays fake warnings of "malicious programs and viruses". It tells you that you need to pay to register this fake program and remove the non-existent threats. Win32/FakeScanti variants have been observed to use names like:
- AKM Antivirus Pro
- AV Guard Online
- BlueFlare Antivirus
- Guard Online
- Milestone Antivirus
- Open Cloud AV
- OpenCloud Antivirus
- Security Guard 2012
- Sysinternals Antivirus
- Windows Antivirus Pro
- Windows Police Pro
- XJR Antivirus
- Your PC Protector
Win32/FakePowav
Win32/FakePowav is a rogue that pretends to scan for malware. It then shows you fake warnings of "malicious programs and viruses". It then inform the user that they need to pay money in order to remove these non-existent threats.
More information about these types of threats is available in our Rogue page.