We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
Trojan:JS/IframeRef.I
Aliases: HTML/Redirect.FQ (Avira) JS.Redirector.145 (Dr.Web) JS/Exploit-Blacole.gg (McAfee) JS/Redir.JP.gen (Command) Troj/Exploit-J (Sophos) Trojan.Script (Ikarus) Trojan.Script.478237 (BitDefender)
Summary
Use the following free Microsoft software to detect and remove this threat:
- Microsoft Defender Antivirus for Windows 10 and Windows 8.1, or Microsoft Security Essentials for Windows 7 and Windows Vista
- Microsoft Safety Scanner
You should also run a full scan. A full scan might find other hidden malware.
Delete your Temporary Internet Files
This threat may be present in your Temporary Internet Files folder. We recommend that you delete your temporary Internet files to prevent the persistent detection of this threat from within the Temporary Internet Files folder.
To delete the temporary Internet files from Internet Explorer, refer to KB Article 260897.
Update vulnerable applications
This threat may exploit software vulnerabilities. After removing this threat, make sure that you install the updates available from the vendor. For more information on updating software that is commonly targeted by malware, please see the following links:
- Microsoft Malware Protection Center - Updating Software
- Java updates
- Adobe updates (Acrobat, Reader, Flash, Shockwave)
- Microsoft updates via the Microsoft Update tool (including Windows, Office, and Internet Explorer)
Get more help
You can also visit our advanced troubleshooting page or search the Microsoft virus and malware community for more help.
If you’re using Windows XP, see our Windows XP end of support page.