detected first virus/trojan

Discussion in 'malware problems & news' started by toploader, Sep 12, 2005.

Thread Status:
Not open for further replies.
  1. toploader

    toploader Registered Member

    Joined:
    Aug 19, 2005
    Posts:
    707
    detected my first virus/trojan today - avg autostarted a disk scan - normally i stop it as it takes half an hour but this time i noticed it had found something though it failed to nullify it.

    did a kaspersky online scan which confirmed - so no false positive.

    it was a java openstream trojan - did a windows search and found the little toerag - one zip file one idx file - deleted them - switched off system restore point emptied bin and rebooted - checked to make sure gone - switched restore point back on.

    downloaded a military grade file shredder - if there's a next time i will well and truly shred any infected files.
     
    Last edited: Sep 12, 2005
  2. toploader

    toploader Registered Member

    Joined:
    Aug 19, 2005
    Posts:
    707
    having captured my very first trojan in the wild - i thought it might be fun to submit it to jotti's to see what their scanners made of it.

    On my own system - AVG found it with a manual scan (so why didn't it detect it with it's real time scan?)
     

    Attached Files:

    • jav.jpg
      jav.jpg
      File size:
      55.4 KB
      Views:
      274
    Last edited: Sep 14, 2005
  3. toploader

    toploader Registered Member

    Joined:
    Aug 19, 2005
    Posts:
    707

    Attached Files:

    • jav2.jpg
      jav2.jpg
      File size:
      55.4 KB
      Views:
      271
  4. toploader

    toploader Registered Member

    Joined:
    Aug 19, 2005
    Posts:
    707
    and another - this one found nothing....

    http://www.ravantivirus.com/scan/scan-online.php

    RAV AntiVirus command line for Linux i386.
    Version: 8.4.3.
    Copyright (c) since 1995 GeCAD The Software Company. All rights reserved.

    Scan engine 8.11 for i386.
    Last update: Sun, 12 Jun 2005 06:50:13 +0300
    Scanning for 128372 malwares (viruses, trojans and worms).

    Scan started on Wed Sep 14 09:09:09 2005

    javainstaller.jar-4514e5ea-6db049f3.zip - OK
    /tmp/php9LfZaB->META-INF/MANIFEST.MF - OK
    /tmp/php9LfZaB->META-INF/FD3DA547.SF - OK
    /tmp/php9LfZaB->META-INF/FD3DA547.RSA - OK
    /tmp/php9LfZaB->javainstaller/InstallerApplet.class - OK

    Scan ended on Wed Sep 14 09:09:09 2005

    Scan results:
    Time: 0 second(s).
    Objects scanned: 5. New objects: 5
    Infected: 0. Different virus bodies: 0.
    Files: 1. Directories: 0. Archives: 1. Packed: 0. Mail files: 0.
    Warnings: 0.
     
  5. toploader

    toploader Registered Member

    Joined:
    Aug 19, 2005
    Posts:
    707
    Virus Total....
     

    Attached Files:

    • jar3.jpg
      jar3.jpg
      File size:
      85.2 KB
      Views:
      268
Loading...
Thread Status:
Not open for further replies.