PWS:Win32/OnLineGames.BY is a detection for samples for trojans that steal confidential information, such as account information and passwords, for the online game "The World of Legend".

PWS:Win32/Zbot.M is a password-stealing trojan that contains limited backdoor functionality. It is capable of stealing login credentials for particular sites, cached passwords, and information contained in certificates and cookies. It is often distributed as an attachment to spam e-mail messages.

TrojanDownloader:Win32/Banload.HT is the detection for malware that downloads and executes other malware from a remote server.

PWS:Win32/Gamania.gen!A is a generic detection for a trojan component that steals online game passwords and sends the captured data to remote websites.

PWS:Win32/Ldpinch.EZ is a member of Win32/Ldpinch - a family of trojans that steals sensitive information from affected machines and sends it to a remote attacker. In particular, Ldpinch variants target passwords for a comprehensive selection of FTP, chat and e-mail clients, as well as those stored by browsers and in protected storage.

PWS:Win32/Ldpinch.TP is a member of Win32/Ldpinch - a family of trojans that steals sensitive information from affected machines and sends it to a remote attacker. In particular, Ldpinch variants target passwords for a comprehensive selection of FTP, chat and e-mail clients, as well as those stored by browsers and in protected storage.

PWS:Win32/Frethog.MQ is a member of PWS:Win32/Frethog - a large family of password-stealing trojans that target confidential data, such as account information, from Massive Multiplayer Online Role-playing Games (MMORPG).

Trojan:Win32/Calelk.C is a trojan that prevents the affected user from using their computer, and displays a pornographic image. The affected user is then instructed to send an SMS to a specified number in order to unlock their computer.

Trojan:Win32/Ramnit.gen!A is a generic detection for a trojan component of the Win32/Ramnit family. The malware uses the infection function of certain variants of Virus:Win32/Ramnit famiy, for example, Virus:Win32/Ramnit.AB.
The trojan spreads by infecting files with certain file extensions. It also injects code into certain processes, and communicates with a remote server to receive certain instructions.

Trojan:Win32/Nedsym.G is a trojan that distributes spam email messages. It also collects information about the affected computer, and sends it back to its command and control (C&C) server.

Trojan:Win32/Oficla.AH is a trojan that searches for certain strings that suggests a user accesses certain online financial institutions and attempts to communicates this with a remote server. The trojan may also attempts to download arbitrary files.

TrojanSpy:Win32/Shiotob.A is a trojan that monitors and steals your login credentials for online banking. The trojan also forces the use of Internet Explorer if you use another browser.

Trojan:Win32/EyeStye.B!cfg is the detection for the configuration file used by the Trojan:Win32/EyeStye malware family.

Worm:Win32/Yimfoca.gen!C is a worm that spreads to other computers by using certain Instant Messaging (IM) programs. It sends a copy of itself disguised as a link to a codec required to watch a video. When run, it then attempts to stop and disable services including "wuauserv" (Windows Automatic Update) and "MsMpSvc" (Microsoft Malware Protection Service). It also attempts to delete "msseces.exe", a core component of Microsoft Security Essentials and Forefront Endpoint Protection.

Backdoor:Win32/Kelihos.B is a trojan that distributes spam email messages that may contain web links to installers of the trojan. It may also communicate with remote computers to exchange information that it uses to execute various tasks such as sending spam emails, stealing sensitive information, or downloading and executing arbitrary files.

This program was detected by definitions prior to 1.159.567.0 as it violated the guidelines by which Microsoft identified unwanted software. Based on analysis using current guidelines, the program does not have unwanted behaviors.