HTML/Virut.CE

description-logoAnalysis

This detection is for files that have the HTML format that are modiifed by W32/Virut.CE.

  • Infected files have an inserted iFrame tag that redirects the browser to a malicious web site. One example is as follows:
    <iframe src="http://www.{REMOVED}.com/rc/" style="display:none"></iframe>

  • recommended-action-logoRecommended Action

      FortiGate Systems
    • Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option.
      FortiClient Systems
    • Quarantine/delete files that are detected and replace infected files with clean backup copies.

    Telemetry logoTelemetry

    Detection Availability

    FortiGate
    FortiClient
    FortiAPS
    FortiAPU
    FortiMail
    FortiSandbox
    FortiWeb
    Web Application Firewall
    FortiIsolator
    FortiDeceptor
    FortiEDR

    Version Updates

    Date Version Detail
    2019-05-03 68.25100 Sig Updated
    2019-05-03 68.24700 Sig Updated
    2018-11-27 64.48600 Sig Updated
    2018-09-25 62.46700 Sig Updated