Microsoft security software detects and removes this family of threats.

Threats in this family can download other malware onto your PC, including PWS:Win32/Zbot. They can also use your PC for Bitcoin mining.

They can be installed on your PC when you open a spam email attachment or visit a malicious or hacked website. We have also seen these threats downloaded from file sharing services, such as Usenet, and installed by other malware.

Microsoft security software detects and removes this family of threats.

 

These worms can stop some programs on your PC from running correctly. They can also download files, including other malware.

 

They spread through malicious links sent using instant messaging applications.

 

Find out ways that malware can get on your PC.  

 

Windows Defender detects and removes this threat.

This browser modifier changes your Internet browser settings. It can also prevent you from changing your browser home page, search provider, and installed extensions. It also makes modifications to your PC that might prevent you from running security software.

It can be installed when you download applications from untrusted sources, such as video players, video codecs, and free games.

Find out more about how and why we identify unwanted software.

Microsoft security software detects and removes this unwanted software.

Some unwanted programs try to look innocent to convince you to install them on your PC.

They can make changes to your PC without your consent, or compromise the performance of your PC.

We have blocked this program from running on your network because the publisher of the program is considered to have a poor reputation.

Microsoft Defender Antivirus detects and removes this threat. 

This ransomware encrypts the files on your PC and shows you a webpage with instructions on how to decrypt them.

This threat might have been downloaded onto your PC by other malware.

The trend towards increasingly sophisticated malware behavior, highlighted by the use of exploits and other attack vectors, makes older platforms so much more susceptible to ransomware attacks. From June to November 2017, Windows 7 devices were 3.4 times more likely to encounter ransomware compared to Windows 10 devices.

Read our latest report: A worthy upgrade: Next-gen security on Windows 10 proves resilient against ransomware outbreaks in 2017.

Windows Defender detects and removes this threat.

This ransomware encrypts the files on your PC and shows you a webpage with instructions on how to decrypt them.

This threat might have been downloaded onto your PC by other malware.

Find out ways that malware can get on your PC.

You can read more on our ransomware page.

Windows Defender detects and removes this threat. 

This threat has been detected as one of the executable malware that are distributed through URLs.

Find out ways that malware can get on your PC.

Backdoor:Win32/Berbew.F is a Trojan that installs silently on your computer. It can capture and send personal information to a Web site. It can also download files from Web sites and run them on your computer. There are no readily apparent symptoms that indicate that your computer is infected with this Trojan.

Win32/Mydoom.A@mm is a mass-mailing worm that sends itself to e-mail addresses it finds on the infected computer. The worm also installs a .dll file that acts as a backdoor. After February 1, 2004, the worm attempts a denial-of-service (DoS) attack against www.sco.com.

Win32/Sasser.D.worm is a network worm that exploits the Local Security Authority Subsystem Service (LSASS) vulnerability fixed in Microsoft Security Update MS04-011. The worm targets Windows XP computers that do not have MS04-011 installed. Unlike previous variants, Sasser.D does not work on Windows 2000. Infected computers attempt to spread the worm to other unprotected computers by randomly scanning IP addresses and infecting vulnerable computers. 

Win32/Sasser.A is a network worm that exploits the Local Security Authority Subsystem Service (LSASS) vulnerability fixed in Microsoft Security Update MS04-011. The worm targets Windows 2000 and Windows XP computers that have not installed the MS04-011 security update. Infected computers attempt to spread the worm to other unprotected computers by randomly scanning IP addresses and infecting vulnerable computers.

Win32/Sasser.B is a network worm that exploits the Local Security Authority Subsystem Service (LSASS) vulnerability fixed in Microsoft Security Update MS04-011. The worm targets Windows 2000 and Windows XP computers that do not have the MS04-011 security update installed. Infected computers attempt to spread the worm to other unprotected computers by randomly scanning IP addresses and infecting vulnerable computers.

Win32/Mydoom.A2@mm is a mass-mailing worm that sends itself to e-mail addresses it finds on the infected computer. The worm also installs a .dll that acts as a backdoor. After February 1, 2004, the worm attempts to perform a denial-of-service (DoS) attack against www.sco.com.

Win32/Mydoom.B@mm is a mass-mailing worm that sends itself to e-mail addresses it finds on the infected computer. The worm also installs a .dll file that acts as a backdoor. After February 1, 2004, the worm attempts a denial-of-service (DoS) attack against www.sco.com.