Home>Other Malware>

Exploit.HTML.Ascii.n

Alert Level :	Low
Discovered:	Jan 24 2008
Tag:	HackerTools   Exploits
Discoverer and Source:	http://www.kaspersky.com/

Malware Behavior and Technical Description

This exploit uses a vulnerability in Internet Explorer (CVE-2006-3227) to run on the victim machine. It is an HTML page. It is 2109 bytes in size. It is not packed in any way.

Payload

This malicious program exploits a vulnerability which enables a remote malicious user to modify the appearance of pages displayed in Internet Explorer and to evade content filtering due to incorrect interpretation of 8-bit ASCII symbols.

Without the knowledge of the user, the script can use a vulnerability in the Microsoft XMLHTTP ActiveX object (MS06-071) and an IFrame vulnerability (MS01-020) to download other files to the victim machine.

Removal Exploit.HTML.Ascii.n instructions:

If your computer does not have an up-to-date antivirus, or does not have an antivirus solution at all, follow the instructions below to delete the malicious program:

1. Delete the original exploit file (the location will depend on how the program originally penetrated the victim machine).
2. Delete all files from %Temporary Internet Files%.
3. Install Internet Explorer updates.
4. Update your antivirus databases and perform a full scan of the computer (download a trial version of Kaspersky Anti-Virus).

Need help? Live computer support via remote at SupportSpace.Help with printer problems, windows, hardware, software, spyware removal and more. - Go Now!

Great Anti-Virus Software : Kaspersky Internet Security 2009 Save 35% Buy Panda Global Protection 2009 and Panda Antiviru Download PandaLabs Reports Free AVG virus removel tools Hunting Down Spyware and Adware Adware and spyware, knowing the basics Adware Spyware Remover from CBAdvance Keeping Your Computer in Good Condition Using Free Spyware A Beware of Covert Online Spies Why the Need to Remove Adware and Spyware