English

Log in

Search

The Internet threat alert status is currently normal. At present, no major epidemics or other serious incidents have been recorded by Kaspersky Lab’s monitoring service.

Internet threat level: 1

Read us on

Home→Descriptions→Trojan_Clicker.JS.Iframe.fq

Trojan_Clicker.JS.Iframe.fq

Published

Oct 26 2010 09:28 GMT

Technical Details
Payload
Removal instructions

Technical Details

This Trojan opens different web sites in the browser without the knowledge or consent of the user. It is an HTML page containing Java Script. It is 1358 bytes in size.

Payload

When the infected HTML page is opened in the browser, the Trojan downloads a web resource in a hidden frame. This resource is located at the following link:

http://www.ie***ta51.com/tds/in.cgi?default

At the time of writing, this link was inactive.

Removal instructions

If your computer does not have antivirus protection and has been infected by this malicious program, follow the instructions below to delete it:

Delete the original Trojan file (its location will depend on how the program originally penetrated the infected computer).
Empty the Temporary Internet Files directory, which contains infected files (see How to delete infected files from Temporary Internet Files folder?):
```
%Temporary Internet Files%
```
Perform a full scan of the computer using Kaspersky Anti-Virus with up-to-date antivirus databases (download a trial version).

[MD5: 1553522c8755b1d19c94bb793ee27c09]
[SHA1: dd5fa97e35f7915b2a805a022f946436662832a8]

Print

Share

Malicious programs

Trojans

Trojan-Clicker

Programs classified as Trojan-Clicker are designed to access Internet resources (usually web pages). This is done either by sending appropriate commands to the browser or by replacing system files that provide “standard” addresses for Internet resources (such as the Windows hosts file).

A malicious user may use Trojan-Clicker programs to:

increase the number of visits to certain sites in order to boost the number of hits for online ads
conduct a DoS (Denial of Service) attack on a particular server
lead potential victims to viruses or Trojans.

© 1997-2013 Kaspersky Lab ZAO. All Rights Reserved.
Industry-leading Antivirus Software.
Registered trademarks and service marks are the property of their respective owners.
The authors' opinions do not necessarily reflect the official positions of Kaspersky Lab.

kaspersky.com

securelist.com