Follow:

 

Trojan:JS/Agent.FA


Trojan:JS/Agent.FA is malicious Javascript embedded in a Web page. The Javascript is designed to circumvent popup blocking by security applications.


What to do now

Manual removal is not recommended for this threat. To detect and remove this threat and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as Microsoft Security Essentials, or the Microsoft Safety Scanner. For more information about using antivirus software, see http://www.microsoft.com/security/antivirus/av.aspx.

Threat behavior

Trojan:JS/Agent.FA is malicious Javascript embedded in a Web page. The Javascript is designed to circumvent pop-up blocking by security applications, including pop-up blockers from Google Toolbar, Internet Explorer, and Norton Internet Security. The malicious pop-up could allow site redirection, which could lead to possible downloading and executing of other malicious files.

Symptoms

The presence of one or more popup windows that bypass installed popup blockers may be indicative of a Web page hosting Trojan:JS/Agent.FA.

Prevention


Alert level: High
First detected by definition: 1.45.287.0
Latest detected by definition: 1.45.287.0 and higher
First detected on: Oct 07, 2008
This entry was first published on: Aug 08, 2007
This entry was updated on: Apr 17, 2011

This threat is also detected as:
  • VBS/IstBar (AhnLab)
  • JS/ForcePopup (Command)
  • Trojan.Clicker.CM (BitDefender)
  • Trojan-Downloader.JS.IstBar.ax (Kaspersky)