[NOD32] I get Java/ClassLoader.B trojan ..&.. Java/Exploit.Bytverify trojan

Discussion in 'Anti-Virus' started by PWalker, Jun 13, 2005.

  1. PWalker

    PWalker Guest

    Hi, I rann NOD32 recently and got the following as being tojans:

    C:\Documents and Settings\user\Application
    Data\Sun\Java\Deployment\cache\javapi\v1.0\file\BlackBox.class-3b328bed-47903523.class
    - Java/ClassLoader.B trojan

    C:\Documents and Settings\user\Application
    Data\Sun\Java\Deployment\cache\javapi\v1.0\file\Dummy.class-5d1b4c65-77d1dc48.class
    - Java/ClassLoader.B trojan

    C:\Documents and Settings\user\Application
    Data\Sun\Java\Deployment\cache\javapi\v1.0\file\VerifierBug.class-281e147b-26c755fc.class
    - Java/Exploit.Bytverify trojan

    .... but are they really? Can I delete them? They are present in my 'cache'
    which i am guessing is stuff i can delete i.e. similar to a 'Temp' folder?

    Any advice on what i should do?

    Many thanks,

    peter
     
    PWalker, Jun 13, 2005
    #1
    1. Advertisements

  2. On Mon, 13 Jun 2005 15:30:30 +1000, "PWalker" <>
    wrote:

    >Any advice on what i should do?
    >

    You can:
    a) submit the files to Eset for analysis. Here is how:
    "To submit a suspicious file to Eset for analysis, please carry on as
    follows:

    * compress the file(s) into a zip or rar archive, protect it with the
    password "infected"
    * attach the archive to an email message
    * send the message with the attachment to "
    b) get a second opinion by testing the files with online scanners like
    http://virusscan.jotti.org/ and
    http://www.virustotal.com/flash/index_en.html

    Jari
     
    Jari Lehtonen, Jun 13, 2005
    #2
    1. Advertisements

  3. From: "PWalker" <>

    | Hi, I rann NOD32 recently and got the following as being tojans:
    |
    | C:\Documents and Settings\user\Application
    | Data\Sun\Java\Deployment\cache\javapi\v1.0\file\BlackBox.class-3b328bed-47903523.class
    | - Java/ClassLoader.B trojan
    |
    | C:\Documents and Settings\user\Application
    | Data\Sun\Java\Deployment\cache\javapi\v1.0\file\Dummy.class-5d1b4c65-77d1dc48.class
    | - Java/ClassLoader.B trojan
    |
    | C:\Documents and Settings\user\Application
    | Data\Sun\Java\Deployment\cache\javapi\v1.0\file\VerifierBug.class-281e147b-26c755fc.class
    | - Java/Exploit.Bytverify trojan
    |
    | ... but are they really? Can I delete them? They are present in my 'cache'
    | which i am guessing is stuff i can delete i.e. similar to a 'Temp' folder?
    |
    | Any advice on what i should do?
    |
    | Many thanks,
    |
    | peter
    |

    They are real and quite common...

    Dump the contents of your IE cache -
    Start --> settings --> control panel --> Internet options --> delete files

    Dump the contents of the Mozilla FireFox Cache { if you use FireFox }
    Tools --> Options --> Privacy --> Cache --> Clear

    Dump the contents of your Sun Java cache -
    Start --> settings --> control panel --> Java applet --> cache --> clear
    or
    Start --> settings --> control panel --> Java applet --> general --> settings --> delete
    files

    Perform another "On Demand" scan of your computer.

    * * * Please report back your results * * *

    --
    Dave
    http://www.claymania.com/removal-trojan-adware.html
    http://www.ik-cs.com/got-a-virus.htm
     
    David H. Lipman, Jun 13, 2005
    #3
  4. PWalker

    Duane Arnold Guest

    PWalker wrote:

    > Hi, I rann NOD32 recently and got the following as being tojans:
    >
    > C:\Documents and Settings\user\Application
    >

    Data\Sun\Java\Deployment\cache\javapi\v1.0\file\BlackBox.class-3b328bed-47903523.class
    > - Java/ClassLoader.B trojan
    >
    > C:\Documents and Settings\user\Application
    >

    Data\Sun\Java\Deployment\cache\javapi\v1.0\file\Dummy.class-5d1b4c65-77d1dc48.class
    > - Java/ClassLoader.B trojan
    >
    > C:\Documents and Settings\user\Application
    >

    Data\Sun\Java\Deployment\cache\javapi\v1.0\file\VerifierBug.class-281e147b-26c755fc.class
    > - Java/Exploit.Bytverify trojan
    >
    > ... but are they really? Can I delete them? They are present in my 'cache'
    > which i am guessing is stuff i can delete i.e. similar to a 'Temp' folder?
    >


    Why don't you delete all the files out of the *cache* directory and be done
    with it? You can do it with the browser or you can do it manually.

    Duane :)
     
    Duane Arnold, Jun 13, 2005
    #4
    1. Advertisements

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Jack Barrett

    Java Startpage & BYTVerify.A - Help!

    Jack Barrett, Sep 20, 2003, in forum: Anti-Virus
    Replies:
    0
    Views:
    172
    Jack Barrett
    Sep 20, 2003
  2. Stephen Kaye

    java.bytverify.a virus

    Stephen Kaye, Sep 21, 2003, in forum: Anti-Virus
    Replies:
    3
    Views:
    246
    scoopdamedia
    Sep 22, 2003
  3. Getter
    Replies:
    10
    Views:
    501
  4. Adriano
    Replies:
    2
    Views:
    175
    Ferengi
    Nov 10, 2003
  5. jt
    Replies:
    1
    Views:
    551
    Duane Arnold
    Sep 30, 2005
Loading...

Share This Page