Troj/JSRedir-IA
Posted: August 17, 2012
Threat Metric
The following fields listed on the Threat Meter containing a specific value, are explained in detail below:
Threat Level: The threat level scale goes from 1 to 10 where 10 is the highest level of severity and 1 is the lowest level of severity. Each specific level is relative to the threat's consistent assessed behaviors collected from SpyHunter's risk assessment model.
Detection Count: The collective number of confirmed and suspected cases of a particular malware threat. The detection count is calculated from infected PCs retrieved from diagnostic and scan log reports generated by SpyHunter.
Volume Count: Similar to the detection count, the Volume Count is specifically based on the number of confirmed and suspected threats infecting systems on a daily basis. High volume counts usually represent a popular threat but may or may not have infected a large number of systems. High detection count threats could lay dormant and have a low volume count. Criteria for Volume Count is relative to a daily detection count.
Trend Path: The Trend Path, utilizing an up arrow, down arrow or equal symbol, represents the level of recent movement of a particular threat. Up arrows represent an increase, down arrows represent a decline and the equal symbol represent no change to a threat's recent movement.
% Impact (Last 7 Days): This demonstrates a 7-day period change in the frequency of a malware threat infecting PCs. The percentage impact correlates directly to the current Trend Path to determine a rise or decline in the percentage.
| Threat Level: | 9/10 |
|---|---|
| Infected PCs: | 5 |
| First Seen: | August 17, 2012 |
|---|---|
| Last Seen: | April 15, 2022 |
| OS(es) Affected: | Windows |
Troj/JSRedir-IA is a browser-redirecting JavaScript Trojan that's used to download and install other PC threats onto your computer, with recent Troj/JSRedir-IA attacks centering around fake Olympics news e-mails and websites. Trojans associated with Troj/JSRedir-IA include Troj/Agent-XIK, which also has downloading capabilities and may include backdoor functions that would allow criminals to compromise your PC through a C&C server. JavaScript-based browser security measures, along with adequate anti-malware protection, should be sufficient to guard against Troj/JSRedir-IA attacks, although SpywareRemove.com malware researchers particularly recommend that you make a habit of identifying and deleting Troj/JSRedir-IA-related e-mails (as elaborated on further below) without exposing yourself to their malicious web content.
Alarming Olympics Footage Transmuted Into Malware with Troj/JSRedir-IA
While Gabrielle Douglas has been catapulted into global fame by her earning of a gymnastics medal in the latest Olympics, this fame also comes with drawbacks – such as being used to lure people into infecting their own PCs via Troj/JSRedir-IA. Spam e-mail messages that include links to Troj/JSRedir-IA-hosting sites claim that Ms. Douglas is facing a lifetime ban due to her abuse of illegal substances, with a link that apparently offers a relevant YouTube video for elaboration. However, this 'Youtube' link actually leads to a fraudulent YouTube website without any legitimate media content. Instead, this site is used in the form of a delivery platform for Troj/JSRedir-IA, which assists with the installation of the Trojan Troj/Agent-XIK.
The fake YouTube website's attacks are, themselves, disguised as fake Flash Player updates, and can be avoided simply by making certain that you only procure software from trustworthy sources (in this case, straight from Adobe). SpywareRemove.com malware experts also note that uninstalling JavaScript or disabling JavaScript from your browser can block Troj/JSRedir-IA. Finally, keeping all relevant software updated will lower the quantity of security vulnerabilities that Troj/JSRedir-IA and similar PC threats can exploit to their own advantage.
The Consequences When You Embraced Troj/JSRedir-IA's Faux Update with Open Arms
Troj/JSRedir-IA's payload, Troj/Agent-XIK, is a Windows Trojan that contact other websites to download and install a variety of PC threats. Common attacks related to Troj/Agent-XIK and similar Trojans include theft of bank information, browser redirects to malicious sites and disabled security programs. SpywareRemove.com malware analysts, naturally, recommend that you scan your PC with anti-malware software after any contact with a site that hosts Troj/JSRedir-IA.
Currently-known aliases of Troj/JSRedir-IA include Trojan-Downloader.JS.Iframe.bzn, Trojan.JS.Iframe.ALP and Trojan.JS.Downloader.BNL. If they include live web-browsing security features, anti-malware applications should be capable of detecting and blocking Troj/JSRedir-IA before Troj/JSRedir-IA can install Troj/Agent-XIK, although SpywareRemove.com malware research team still recommends scanning your PC afterward.
At this time, non-Windows PCs and PCs that don't have JavaScript aren't vulnerable to Troj/JSRedir-IA, although the same may not apply to other PC threats hosted on websites associated with Troj/JSRedir-IA.
Leave a Reply
Please note that we are not able to assist with billing and support issues regarding SpyHunter or other products. If you're having issues with SpyHunter, please get in touch with SpyHunter customer support through your SpyHunter . If you have SpyHunter billing questions, we recommend you check the Billing FAQ. For general suggestions or feedback, contact us.