PLATFORM:

Windows 98, ME, NT, 2000, XP, Server 2003

 OVERALL RISK RATING:
 DAMAGE POTENTIAL:
 DISTRIBUTION POTENTIAL:
 REPORTED INFECTION:

  • Threat Type:

  • Destructiveness: No

  • Encrypted:

  • In the wild: Yes

  OVERVIEW

This unknown may be downloaded from remote sites by other malware.

It accesses websites to download files. This action allows this malware to possibly add other malware on the affected computer.

This is the Trend Micro detection for Web pages that were compromised through the insertion of a certain malicious script.

  TECHNICAL DETAILS

File Size: Varies
Memory Resident: Yes

Arrival Details

This unknown may be downloaded from remote site(s) by the following malware:

  • JS_IFRAME.AUW

It may be downloaded from the following remote sites:

  • http://{BLOCKED}n/ie.html
  • http://{BLOCKED}n/log.txt

Download Routine

This unknown accesses websites to download the following files:

  • TROJ_SMALL.NSZ

Other Details

This is the Trend Micro detection for Web pages that were compromised through the insertion of a certain malicious script.

  SOLUTION

Minimum Scan Engine: 8.900

Step 1

Close all opened browser windows

Step 2

Scan your computer with your Trend Micro product to delete files detected as HTML_SHELLLOAD.B. If the detected files have already been cleaned, deleted, or quarantined by your Trend Micro product, no further step is required. You may opt to simply delete the quarantined files. Please check this Knowledge Base page for more information.


Did this description help? Tell us how we did.