What is this trojan what does it do?
or this one:
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=JAVA_NOCHEAT.A&VSect=T
Don’t know for sure because Avast uses different names.
Java.ByteVerify.exploit
avast4 missed a virus
Edit: forgot to mention that this trojan was added to the virus db after the ‘avast4 missed a virus’ thread ( VPS 0311-6, 16.12.2003)
On second thought you may be right.
Yep, people should make sure they have MS Virtual Machine 3810 or higher installed. It’s another Microsoft exploit.
or they may use Sun JRE instead
So MinaCross is the one that got Avast to eventually include this in the reference file :o
You can use that with IE?
absolutely ;D
Does that come with IE6 because I don’t have the option on IE5.5?
this option will appear after installing of the JRE. You can download it from here
BTW, IE6 SP1 is the ie version installed on my system…
Okay, got it installed! ;D Thanks!
I guess this is a result of the lawsuit between Sun and MS. I’m glad the Sun Java plugin is available for IE.
and mozilla
indeed , I am already using Mozilla 1.5 for a month or so now, no problems at all (thank God) ;D
I have IE, Mozilla, Mozilla Thunderbird, K-Meleon, and Opera. Why? I have no idea!
I’m not sure if this was a false-positive situation, or what. By way of background, I’ve got Home-4, both program and database are current, and in addition to my resident scanners I like to do a full-disk scan once a week or so. So far those have always come up clean.
I also like to once in a while pop into to Trend’s HouseCall too, for an “outside” check. Tonight it said I’d picked up this one (the Java Bytverify.A), but it couldn’t delete the infected files because they were in use. That’s probably because a good chunk of Java (I use Sun’s) is a plug-in for IE6, and of course that’s how I get to Trend.
So I dropped offline and tried an avast scan again, thorough this time – again no infections found. Interestingly, I searched for the supposedly infected zip file, to possibly delete it myself, and there’s no sign of it on my drive.
Ok, next step – rebooted in safe mode (XP-Home, by the way) and tried again, just in case it was one of those “in use by another process” things. Exactly the same results, nothing – no infection, and no such file.
So should I just assume it was probably a HouseCall false-positive, and quit worrying about it? Or is there additional checking of some kind I should be doing?
Sorry so long-winded, but sometimes I do ramble, plus I wanted to give you the info as complete as possible on the first try.
Thanks and best,
Mike
best to try another “outside check”
try bitdefender http://www.bitdefender.com/scan/license.php
I believe that byteverify trojan works on lower version of MS Virtual Machine. Since you’re using Sun Java I don’t think your machine is vulnerable.
Done, ML, thanks, and I’ve added them to my Favorites in the process for next time I want a “third opinion”. Boy, their first-time setup sure takes forever on a dialup, doesn’t it?
They agreed with HouseCall, though, about the same files, so I accepted that as a majority vote. Turned out they were in the Sun’s applet cache, which made them VERY easy to clean out, just opened its control panel and cleared the cache.
I’m more than a little surprised avast missed them (I think someone else mentioned the same experience) – but these were zip’s inside jar’s, and it’s possible that even with archive scanning on (which I always use), avast-home can’t handle archives-within-archives.
Anyway, thanks again – Polly wanna cracker? No?? How about a k-cookie, then?