Trojan:Win32/Opachki.C
Trojan:Win32/Opachki.F
Win32/Bredolab
Rogue:JS/FakeAV
Windows Defender detects and removes this threat.
This threat tries to download rogue security software onto your PC, including Win32/FakeRean.
It runs when you visit a malicious web page and move your mouse cursor over certain graphics or images.
TrojanDownloader:Win32/Stegvob.gen!A
TrojanDownloader:Win32/Stegvob.A
Exploit:Java/CVE-2011-3544.L
Exploit:Java/CVE-2011-3544.L is the detection for a malicious Java applet stored within a Java Archive (.JAR) that attempt to exploit a vulnerability in Java Runtime Environment (JRE) component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier. The vulnerability is referred to as CVE-2011-3544 allows an unsigned Java applet to gain elevated privileges and potentially have unrestricted access to run arbitrary Java code outside of the "sandbox" environment.
Exploit:JS/Blacole.A
Exploit:JS/Blacole.A is the detection for malicious Javascript that loads a series of other exploits. If the computer runs a vulnerable version of certain software and exploitation is successful, various malware may be downloaded.
Win32/Oficla
Exploit:Java/CVE-2010-0840.NS
Exploit:Java/CVE-2010-0840.NS is a variant of the Exploit:Java/CVE-2010-0840 family - a detection for a malicious Java applet stored within a Java Archive (.JAR) that attempts to exploit a vulnerability in the Java Runtime Environment (JRE) up to and including version 6 update 18. The vulnerability allows an unsigned Java applet to gain elevated privileges and potentially have unrestricted access to a host system outside its "sandbox" environment. It is discussed in CVE-2010-0840.
Virus:Win32/Cutwail.I
Worm:Win32/Rorpian.E
Worm:Win32/Rorpian.E is a worm that spreads via network shares and by exploiting the Domain Name System (DNS) Server Service vulnerability. It also downloads additional malware on the computer.
Privacy Protection
Privacy Protection is a variant of Win32/FakeRean - a fake antivirus scanner displaying misleading alerts claiming that the computer is infected, and requiring money to be paid to remove these non-existent threats. It may also terminate other processes running on the affected computer.
TrojanDownloader:Win32/Kuluoz
Windows Defender detects and removes this threat.
This threat can download other malware onto your PC, including PWS:Win32/Kuluoz.gen!A, Win32/Crowti, and Win32/Zbot.
It can be installed when you open a spam email attachment.
Blacole
Windows Defender detects and removes this family of threats.
You should also update your software to be fully protected.
The Blacole exploit pack tries to infect your PC with other malware, such as trojans and viruses. It also known as "Blackhole".
See our page about exploits and learn how to update common software.
When you visit a malicious or compromised website, Blacole scans your PC for vulnerabilities or weaknesses in your software.
You might visit the website from a link or attachment in an email, or from a previously safe website that has been hacked.
The threat uses those vulnerabilities it has found on your PC to download malware onto your PC:
Typically, the Blacole exploit kit attempts to exploit vulnerabilities in applications such as Oracle Java, Sun Java, Adobe Acrobat and Adobe Reader.
Security Protection
XPHomeSecurity2012
Internet Security
Windows Defender detects and removes this threat.
Internet Security is one brand of the rogue security software that we detect as Win32/FakeRean.
It gives you fake alerts for non-existent threats on your PC. It also stops you from running some programs, such as your security software.
This threat is usually downloaded onto your PC by other malware.
Antivirus Protection 2012
Antivirus Protection 2012 is a variant of Win32/FakeRean, a family of rogue malware - fake scanners - that claim to scan your computer for malware, and display fake warnings of malicious files. They then inform you that you need to pay money to register the software in order to remove these non-existent threats. It may also disable the services on your computer and modify your security settings.
Different FakeRean variants may modify various settings on your computer (including security settings), terminate programs or system services, or block access to websites.
XP Home Security 2012
Windows Defender detects and removes this threat.
XP Home Security 2012 is a variant of Win32/FakeRean, a family of rogue malware - fake scanners - that claim to scan your PC for malware. They display fake security warnings that aim to make you alarmed. When you try and remove the fake threats from your PC, you're told that you need to pay to register the software.
Fakerean changes your security settings, making your PC less secure.
It might look like this: