BlackBox.class & VerifierBug.class virus ???

dalek · 02-28-2004, 08:16 PM

I did a google search and it says this is a windoze virus. I would like to get rid of these but would like to make sure it is OK to delete. I don't want to screw up java.

If you happen to know, can someone tell me how the heck this got on my rig. I don't have or use windoze. Maybe it's a false alarm.

It's located here:

Code:

/home/dale/.jpi_cache/file/1.0/VerifierBug.class-5aad7e12-22ccba3f.class  is a destructive program
/home/dale/.jpi_cache/file/1.0/BlackBox.class-222b5bf4-396aa046.class  is a destructive program

Anyhow, any help or advise would be appreciated.

Side note here, what is this windoze crap doing on my Linux rig. I'm getting upset here. I HATE windoze.

Thanks

chort · 02-29-2004, 01:30 AM

Hehe, much to Sun's delight these are trojans that exploit a flaw in Microsoft JVM that doesn't exist in Sun (or anyone elses') JVM. click here for more details

You must have picked them up by surfing to a malicious website. They were downloaded and cached, but couldn't run since you don't have the MS JVM. It's safe to delete them. In fact, you can clean the whole cache directory if you like (see above instructions).

dalek · 02-29-2004, 01:51 AM

I sort of figured that it wasn't hurting anything since Linux won't run most viruses anyway. I just don't want to delete the directory and mess up something.

If windoze would fix those holes, we could spend our time having a lot more fun.

Just upgraded to Mozilla 1.6. So cool. The fonts look much better. They seem to make the fonts look better with every update. KDE too. Striving for perfection I guess. Linux is getting closer. Just need to get installs to point and click like the crappie OS.

Thanks for the help. Going to make f~prot happy now. Put in ~ so it won't show up in search. Thinking ahead now.

Later

chort · 02-29-2004, 03:38 AM

Quote:

If windoze would fix those holes, we could spend our time having a lot more fun.

No, people would just spend their time exploiting something else. Exploits will never go away, and it's not like Microsoft is purposely ignoring flaws.

Quote:

Going to make f~prot happy now. Put in ~ so it won't show up in search. Thinking ahead now.

Er, I'm not following you here... Why would it matter if the name of an AV scanner shows up?

dalek · 02-29-2004, 08:55 AM

Well I hate searching for a answer to a problem and find that someone makes a passing mention of something that don't help. Since this is the security section, I just changed the word a bit. Search won't show it then if someone searches for f~prot with a dash.

You are right, they would just find something else. I still lock my door when I leave, just to make it harder for the crooks. Windoze needs to close some of theirs, make it harder at least. I make it REAL hard, I use Linux only.

I deleted that file and am going back to a suspected sight and see if it puts it on there again. Wish me luck.

Later