This application requires Javascript for optimal performance.

HTML/Virut.CE - Released Feb 22, 2009 - Last Updated Jun 16, 2009

Alias/es

Troj/Fujif-Gen (Sophos), Trojan.IFrame.HD (BitDefender)

Detection Availability

Active DatabaseExtended Database
FortiGate
low
high
FortiClient
FortiMail N/A

Visible Symptoms

  • System is also infected with W32/Virut.CE.

    • Detailed Analysis

    This detection is for files that have the HTML format that are modiifed by W32/Virut.CE.


  • Infected files have an inserted iFrame tag that redirects the browser to a malicious web site. One example is as follows:
    <iframe src="http://www.{REMOVED}.com/rc/" style="display:none"></iframe>

    • Recommended Action

      FortiGate Systems

    • Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option.

      FortiClient Systems

    • Quarantine/delete files that are detected and replace infected files with clean backup copies.

    Reference: ID - 763108