We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
VirTool:Win32/Afrootix.gen!B
Detected by Microsoft Defender Antivirus
Aliases: Win32/Banbot!generic (CA) FakeAlert-CP.dll (McAfee) :Adware/AntivirusXPPro (Panda) Trojan.Fakeavalert (Symantec)
Summary
VirTool:Win32/Afrootix.gen!B is the generic detection for a user-mode rootkit that allows system APIs or functions to change their default behavior and output.
VirTool:Win32/Afrootix.gen!B is a DLL usually injected to remote processes to redirect and hook the target APIs and change its returned values or functionality to hide registry keys, windows, and network traffic associated with the malicious software using it.
Manual removal is not recommended for this threat. Use Microsoft Security Essentials or another up-to-date scanning and removal tool to detect and remove this threat and other unwanted software from your computer. For more information on Microsoft security products, see http://www.microsoft.com/protect/products/computer/default.mspx.
Follow us
