Trojan:WinNT/Necurs.gen!A
Windows Defender detects and removes this threat.
This trojan can stop a number of security programs from working on your PC. It can also monitor what you do online.
It can be installed by other members of the Trojan:Win32/Necurs family or by rogue security software, such as Rogue:Win32/Winwebsec.
Virus:WinNT/Necurs.gen!A
Windows Defender detects and removes this threat.
This virus can stop a number of security programs from working on your PC. It can also monitor what you do online.
It can be installed by other members of the Win32/Necurs family or by rogue security software, such as Rogue:Win32/Winwebsec.
Trojan:WinNT/Necurs.A
Windows Defender detects and removes this threat.
This trojan can stop a number of security programs from working on your PC. It can also monitor what you do online.
It can be installed by other members of the Trojan:Win32/Necurs family or by rogue security software, like Rogue:Win32/Winwebsec.
Trojan:Win64/Necurs.A
Windows Defender detects and removes this threat.
This trojan can stop a number of security programs from working on your PC. It can also monitor what you do online.
It can be installed by other members of the Trojan:Win32/Necurs family or by rogue security software, such as Rogue:Win32/Winwebsec.
Exploit:HTML/Fiexp.F
Windows Defender detects and removes this threat.
HTML/Fiexp is a family of HTML pages containing JavaScript components belonging to an exploit kit called Fiesta. Similar to other exploit kits like Blacole, it first checks your browser, version, and installed plugins. It does this to determine what exploit to use on your PC. It can exploit vulnerabilities in Java, Adobe Flash Player, Adobe Acrobat Reader, Microsoft Silverlight, and Internet Explorer.
This threat might get into your PC if you visit a hacked or malicious website.
TrojanDownloader:Win32/Renos.NL
Win32/Kuluoz
Windows Defender detects and removes this threat.
This trojan tries to steal your passwords and sensitive information. It can also download other malware onto your PC, including other variants of Win32/Kuluoz and Win32/Sirefef, and variants of rogue security software such as Win32/FakeSysdef and Win32/Winwebsec.
HTML/Fiexp
Windows Defender detects and removes this threat.
The threat is a webpage that tries to exploit vulnerabilities in software on your PC. It can then try to download other malware.
It tries to exploit vulnerabilities in the following software:
- Java
- Adobe Flash Player
- Adobe Acrobat Reader
- Microsoft Silverlight
- Internet Explorer.
Members of the Fiexp family belong to the exploit kit called Fiesta.
See the family description for HTML/Fiexp and our page on exploits for more information.
This threat might get into your PC if you visit a hacked or malicious website.
TrojanDownloader:Win32/Onkods
Windows Defender detects and removes this threat.
This threat can download other malware onto your PC.
JS/Fiexp
Microsoft security software detects and removes this family of threats.
This is a family of JavaScript components belonging to an exploit kit called Fiesta. Similar to other exploit kits, such as Blacole, it first checks your browser, version, and installed plugins. It does this to determine which exploit to use on your PC.
Malware in this family can exploit vulnerabilities in Java, Adobe Flash Player, Adobe Acrobat Reader, Microsoft Silverlight, and Internet Explorer.
They can run on your PC when you visit a hacked or malicious website.
Virus:Win32/Cutwail.I
Live Security Platinum
Live Security Platinum is a variant of Win32/Winwebsec - a family of programs that claims to scan for malware and displays fake warnings of "malicious programs and viruses". They then inform you that you need to pay money to register the software to remove these non-existent threats. It may also terminate processes and services, modify security settings, and block access to websites.
System Progressive Protection
System Progressive Protection is a variant of Win32/Winwebsec - a family of programs that claims to scan for malware and displays fake warnings of "malicious programs and viruses". They then inform you that you need to pay money to register the software to remove these non-existent threats. It may also terminate processes and services, modify security settings, and block access to websites.
Antiviral Factory 2013
Windows Defender detects and removes this threat.
This rogue pretends to scan for malware and shows you fake warnings about malicious programs and viruses. It is designed to scare you into paying money to remove the fake threats by registering the software.
It can also close or stop programs, processes and services, modify security settings, and block access to websites.
It's a member of the Win32/Winwebsec family.
There is more information about this type of malware on our Rogue security software page.
System Care Antivirus
Windows Defender detects and removes this threat.
This rogue pretends to scan for malware and shows you fake warnings about malicious programs and viruses. It is designed to scare you into paying money to remove the fake threats by registering the software.
It can also close or end programs, processes and services, modify security settings, and block access to websites.
It is a member of the Win32/Winwebsec family.
There is more information about this type of malware on our Rogue security software page.
Rogue:JS/FakeAV
Windows Defender detects and removes this threat.
This threat tries to download rogue security software onto your PC, including Win32/FakeRean.
It runs when you visit a malicious web page and move your mouse cursor over certain graphics or images.
System Doctor 2014
Windows Defender detects and removes this threat.
System Doctor 2014 is a variant of Win32/Winwebsec - a family of programs that claims to scan for malware and displays fake warnings of "malicious programs and viruses". They then inform you that you need to pay money to register the software to remove these non-existent threats. It may also terminate processes and services, modify security settings, and block access to websites.
JS/Aimesu
Windows Defender Antivirus detects and removes this threat.
This threat runs on your PC when you visit a hacked or malicious webpage and you are using a vulnerable or out-of-date version of Java, Adobe PDF Reader, or Flash Player.
It then installs other malware on your PC, including components of the "Blackhole" and "Cool" exploit kits. These exploits can download other malware on your PC.
See our exploits page for more information about this type of threat.
Trojan:Win32/Oficla.AI
Win32/Beebone
Windows Defender detects and removes this threat.
The threat is a family of Visual Basic-compiled trojan downloaders that download and run other malware, such as: