[NOD32] I get Java/ClassLoader.B trojan ..&.. Java/Exploit.Bytverify trojan

Discussion in 'Anti-Virus' started by PWalker, Jun 13, 2005.

  1. PWalker

    PWalker Guest

    Hi, I rann NOD32 recently and got the following as being tojans:

    C:\Documents and Settings\user\Application
    Data\Sun\Java\Deployment\cache\javapi\v1.0\file\BlackBox.class-3b328bed-47903523.class
    - Java/ClassLoader.B trojan

    C:\Documents and Settings\user\Application
    Data\Sun\Java\Deployment\cache\javapi\v1.0\file\Dummy.class-5d1b4c65-77d1dc48.class
    - Java/ClassLoader.B trojan

    C:\Documents and Settings\user\Application
    Data\Sun\Java\Deployment\cache\javapi\v1.0\file\VerifierBug.class-281e147b-26c755fc.class
    - Java/Exploit.Bytverify trojan

    .... but are they really? Can I delete them? They are present in my 'cache'
    which i am guessing is stuff i can delete i.e. similar to a 'Temp' folder?

    Any advice on what i should do?

    Many thanks,

    peter
     
    PWalker, Jun 13, 2005
    #1
    1. Advertisements

  2. On Mon, 13 Jun 2005 15:30:30 +1000, "PWalker" <>
    wrote:

    >Any advice on what i should do?
    >

    You can:
    a) submit the files to Eset for analysis. Here is how:
    "To submit a suspicious file to Eset for analysis, please carry on as
    follows:

    * compress the file(s) into a zip or rar archive, protect it with the
    password "infected"
    * attach the archive to an email message
    * send the message with the attachment to "
    b) get a second opinion by testing the files with online scanners like
    http://virusscan.jotti.org/ and
    http://www.virustotal.com/flash/index_en.html

    Jari
     
    Jari Lehtonen, Jun 13, 2005
    #2
    1. Advertisements

  3. From: "PWalker" <>

    | Hi, I rann NOD32 recently and got the following as being tojans:
    |
    | C:\Documents and Settings\user\Application
    | Data\Sun\Java\Deployment\cache\javapi\v1.0\file\BlackBox.class-3b328bed-47903523.class
    | - Java/ClassLoader.B trojan
    |
    | C:\Documents and Settings\user\Application
    | Data\Sun\Java\Deployment\cache\javapi\v1.0\file\Dummy.class-5d1b4c65-77d1dc48.class
    | - Java/ClassLoader.B trojan
    |
    | C:\Documents and Settings\user\Application
    | Data\Sun\Java\Deployment\cache\javapi\v1.0\file\VerifierBug.class-281e147b-26c755fc.class
    | - Java/Exploit.Bytverify trojan
    |
    | ... but are they really? Can I delete them? They are present in my 'cache'
    | which i am guessing is stuff i can delete i.e. similar to a 'Temp' folder?
    |
    | Any advice on what i should do?
    |
    | Many thanks,
    |
    | peter
    |

    They are real and quite common...

    Dump the contents of your IE cache -
    Start --> settings --> control panel --> Internet options --> delete files

    Dump the contents of the Mozilla FireFox Cache { if you use FireFox }
    Tools --> Options --> Privacy --> Cache --> Clear

    Dump the contents of your Sun Java cache -
    Start --> settings --> control panel --> Java applet --> cache --> clear
    or
    Start --> settings --> control panel --> Java applet --> general --> settings --> delete
    files

    Perform another "On Demand" scan of your computer.

    * * * Please report back your results * * *

    --
    Dave
    http://www.claymania.com/removal-trojan-adware.html
    http://www.ik-cs.com/got-a-virus.htm
     
    David H. Lipman, Jun 13, 2005
    #3
  4. PWalker

    Duane Arnold Guest

    PWalker wrote:

    > Hi, I rann NOD32 recently and got the following as being tojans:
    >
    > C:\Documents and Settings\user\Application
    >

    Data\Sun\Java\Deployment\cache\javapi\v1.0\file\BlackBox.class-3b328bed-47903523.class
    > - Java/ClassLoader.B trojan
    >
    > C:\Documents and Settings\user\Application
    >

    Data\Sun\Java\Deployment\cache\javapi\v1.0\file\Dummy.class-5d1b4c65-77d1dc48.class
    > - Java/ClassLoader.B trojan
    >
    > C:\Documents and Settings\user\Application
    >

    Data\Sun\Java\Deployment\cache\javapi\v1.0\file\VerifierBug.class-281e147b-26c755fc.class
    > - Java/Exploit.Bytverify trojan
    >
    > ... but are they really? Can I delete them? They are present in my 'cache'
    > which i am guessing is stuff i can delete i.e. similar to a 'Temp' folder?
    >


    Why don't you delete all the files out of the *cache* directory and be done
    with it? You can do it with the browser or you can do it manually.

    Duane :)
     
    Duane Arnold, Jun 13, 2005
    #4
    1. Advertisements

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Shirley Worrall

    Recommend Trojan programme to go with NOD32?

    Shirley Worrall, Aug 25, 2003, in forum: Anti-Virus
    Replies:
    19
    Views:
    680
    FromTheRafters
    Aug 26, 2003
  2. Jack Barrett

    Java Startpage & BYTVerify.A - Help!

    Jack Barrett, Sep 20, 2003, in forum: Anti-Virus
    Replies:
    0
    Views:
    260
    Jack Barrett
    Sep 20, 2003
  3. Stephen Kaye

    java.bytverify.a virus

    Stephen Kaye, Sep 21, 2003, in forum: Anti-Virus
    Replies:
    3
    Views:
    417
    scoopdamedia
    Sep 22, 2003
  4. Getter
    Replies:
    10
    Views:
    634
  5. Replies:
    4
    Views:
    250
    Dennis Freshwater
    Oct 7, 2003
  6. Adriano
    Replies:
    2
    Views:
    301
    Ferengi
    Nov 10, 2003
  7. rajmo

    Nod32 Trojan Downloader

    rajmo, Nov 15, 2004, in forum: Anti-Virus
    Replies:
    0
    Views:
    184
    rajmo
    Nov 15, 2004
  8. jt
    Replies:
    1
    Views:
    702
    Duane Arnold
    Sep 30, 2005
Loading...