Here's some more information from McAfee -- Update March 11, 2004 -- The risk assessment of this threat was lowered to Low-Profiled due to a decrease in prevalence. This javascript trojan allows various hidden functions to take place on a user's system. It exists in two forms: In HTA form, an HTML Application is created which is not visible to the user and can not be closed. In HTML form, a browser window is created which is minimized and can not be easily maximized or closed. Typically these window "tricks" are seen associated with advertisement and banner ad programs. Especially affiliated with pornographic sites and sites which pay commissions to others for displaying banner ads. The trojan does not contain any other payload and does not cause any damage to the local system. Files which trigger this detection should be deleted.