Skip to main content
Microsoft Security Intelligence
Published Jul 02, 2008 | Updated Sep 15, 2017


Detected by Microsoft Defender Antivirus

Aliases: Exploit.JS.RealPlr.lf (Kaspersky) Mal/ObfJS-X (Sophos)


Trojan:JS/Flagrab.A is a Javascript trojan, which uses the SWFObject script to embed a malicious SWF file into a webpage. It usually arrives in a system when a user browses a compromised website that contains this trojan.
Once loaded by the browser, Flagrab.A attempts to launch the malicious SWF file, which is detected as Exploit:Win32/APSB08-11.gen!A, in the system. The file that is run depends on what version of Flash the user currently has.
Manual removal is not recommended for this threat. To detect and remove this threat and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as the Microsoft Safety Scanner ( For more information, see
Follow us