TROJ_FOOKBACE.A

TROJ_FOOKBACE.A is a harmful Trojan that is included in a Facebook scam on Valentine's day. This particular scam begins with a post on the affected user's wall and invites other users to install a Valentine's theme into their Facebook profile. Once a user clicks on this post, he/she is taken to another page that encourages them to install the said theme. This attack only works on either Mozilla Firefox and Google Chrome browsers. Clicking the 'Install' button on the page will urge the download of the malicious file named 'FacebookChrome.crx' which is detected as TROJ_FOOKBACE.A. Once executed, TROJ_FOOKBACE.A runs a script that is able to show ads from certain websites. TROJ_FOOKBACE.A also installs itself on the on the user's web browser as an extension named 'Facebook Improvement |Facebook.com'. Once this malicious browser extension is installed, it will control the user's browsing activities and divert their page to a survey page which asks them for their mobile number. Users who clicked on the post using Internet Explorer (IE) will be rerouted to the same survey, without them being asked to download anything. If your computer system has been infected with TROJ_FOOKBACE.A, remove it immediately after detection.