Threat description


Platform: W32
Aliases: Needy.L, Java/Needy.L


Needy trojan family consists of trojans thatare written in Java and use vulnerability in Microsoft Internet Explorer Java Runtime. Usually these trojans change Internet Explorer homepage and search settings and some variants also download executable trojans.

This variant Needy.L changes Internet Explorer start page and search settings to adult sites and downloads trojan executable.


Automatic action

Once detected, the F-Secure security product will automatically disinfect the suspect file by either deleting it or renaming it.


More information on scanning and removal options available in your F-Secure product can be found in the Help Center.

You may also refer to the Knowledge Base on the F-Secure Community site for more information.

Contact Support

For further assistance, F-Secure customers can request support online via the Request support or the Chat forms on our Home - Global site.

Technical Details

The Needy.L is activated when a web site containing the trojan is loaded with unpacthed Microsoft Internet Explorer browser. When the JAR file containing the trojan is executed it uses Microsoft Internet Explorer VerifierBug vulnerability to get full privileges by escaping the Java security, and execute its code.


Detection in F-Secure Anti-Virus was published on June 29th, 2004 in update:

Detection Type: PC
Database: 2004-06-29_02

Description Details: Jarno Niemela, June 29th, 2004;


Suspect a file or URL was wrongly detected? Submit a sample to our Labs for analysis

Submit Now

Give And Get Advice

Give advice. Get advice. Share the knowledge on our free discussion forum.

Learn More