trojan.byteverify question

[jester_2040]

Hey all,

Norton just picked up a trojan.byteverify file on my computer. I have no idea when it got there, it was in the temporary internet files folder. Does anyone know how I can tell if it was executed, and if my password security, etc has been compromised?

thx

[egghead]

i believe that it is used to install adware and spyware on your computer.

You usually get that from warez and crack and porn websites and you got it from a flaw in sun Java.

If you use internet explorer you should stop using it and use firefox.

The same sites will also install crap using exploits found in internet explorer.

Nod32 antivirus prrotects you from this in realtime.

I do not know what the trojan does so I cannot confirm if it does take your passwords.

[piaqt]

Norton's blocked that same trojan from a warez site lots of times on my system. AFAIK, my passwords etc. have not been compromised. Just to be on the safe side, run a spyware scan.

Also, look that trojan up in the Norton kb.

[Curio]

Trojan.byteverify is a buffer overflow attack which circumvents system security in the java virtual machine. The attacker creates a special java applet which exploits this vulnerability and may be executed automatically when you visit the webpage that contains it - depending on your security settings.

From Microsofts webpage explaining the exploit

Quote:

Impact of vulnerability:
Allow attacker to execute code of his or her choice.

So basically it can do anything if it executes - BUT - the presence of the file on your system does not mean that it executed only that it was downloaded automatically. For more info on the exploit visit MS Technet at http://www.microsoft.com/technet/sec.../MS03-011.mspx