Virus:Trojan-Downloader.JS.Psyme.am
Other versions: .bs , .gy
Trojan-Downloader.JS.Psyme.am ( Kaspersky Lab ) is also known as: VBS/Psyme ( Grisoft ), Exploit.ADODB.Stream.Gen ( SOFTWIN )
| Detection added |
Jan 26 2005 |
| Update released |
May 12 2005 11:52 GMT |
| Description added |
Feb 05 2007 |
| Behavior |
TrojanDownloader |
This Trojan will download a file indicated in the Trojan's code to the victim machine. It uses a vulnerability in the ADODB.Stream ActiveX component to save the file to disk. The malicious code may be included in html pages. The Trojan is approximately 500 bytes in size.
The Trojan creates a Microsoft.XMLHTTP object and uses this to download the file to the victim machine. The Trojan uses a vulnerability in the ADODB.Stream ActiveX component to save the file to disk to the specified directory.
- Disable the ADODB.Stream object in Internet Explorer
- Delete the original Trojan file (the location will depend on how the program originally penetrated the victim machine).
- Update your antivirus databases and perform a full scan of the computer ( download a trial version of Kaspersky Anti-Virus).
|