• The site migration is complete! Hopefully everything transferred properly from the multiple decades old software we were using before. If you notice any issues please let me know, thanks! Also, I'm still working on things like chatbox, etc so hopefully those will be working in the next week or two.

need some help getting rid of a trojan

Bio248

Bio248

DUI BABY
however, here is the difficult part: i'm on my work computer so i don't have admin rights to install any more anti-malware/spyware programs.

typically at home i'd download a slew of them and then run them like 15 times in safe mode. easy enough and it works literally 99% of the time.

i have here at work: a full symantec endpoint and malware bytes.

the malware bytes keeps finding nothing. awesome, right? the symantec keeps finding a "Trojan.Maljava!gen1". it also keeps saying it cleans the file [a browser chache file .jar that it keeps finding in my java folders, q.jar-660ce11f-4c21c9c7.zip (can i just delete this file?)], but it's there everytime i run the scan so apparently there is some mess in my registry that keeps rebuilding it.

i am going to be getting a new computer soon enough, but it'd be nice if i didn't have to worry about NSFW popups randomly taking over my screen during the day while i'm here. i don't know where i picked it up and i really don't care, i just need to solve it for now so i don't have to turn in my computer to the help desk nerds.

i am having a hard time finding any real specific information on this guy as far as location of where it resides. everything i've run across just keeps telling me the same crap (download all these, run them, be free). remember, don't have admin rights so i can't install any more programs than the ones i have already. unless i can hack my admin rights, but that shouldn't really be the goal here.


hhaaaaaalp.

i'll paypal $5 to whoever tells me the information that makes it stop. legit.
 


well from my standpoint either your gonna need the admin rights to do anything correctly, or get into the admin login. I have a handy dandy disc that can knock out any password but that leaves the reinstalling of all your work based programs.
 
yeah, i was hoping there was someone who could dig a little deeper into the trojan itself so i could just "manually correct" the files. otherwise yes, i'll need admin rights to be able to install some more programs. apparently the two i have aren't good enough to get rid of it.
 
Wow...I wasn't sure what you meant at first, and I was going to tell you to call your girlfriend/wife/local 2 bit prostitute to help with that...
 


im telling you the correct way that most ppl i know would do, a trojan usally needs to be fully wipe, you cant go through with the formatting so your stuck. wish i could help more.
 
Type the exact phrase into Google, there are bunch of geek sites on the net that have guys that can help you do a manual reg edit. Typically these things have hidden files that rename themselves on a delete and then reinstall when you reboot. Some of these can be pretty nasty. And stay off those porn sites.....
 
The only thing I can find on it is that the name is just a generic name for a java exploit the virus program found. If you have access to delete temp files in your profile folder delete everything in Java's cache folder and in your temp folder.

The location listed was
c:\Documents and Settings\********\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\85dd9b0d924d7e1a1f8f73a3c074b618bcd949a79d589e1ada6f703c2dc569b7-5ac49eff-269cc948.zip

Find that cache folder and then delete everything in your temp files folders also.
 
Really you won't be able to do much without admin rights, most likely the IT people will give you your new PC if you're due for one. If you F up something on the PC, it could screw you depending on where most of your files are at.
 
i was already talking to them once. basically they said if i cant fix it then they need to bring it in. i need my desktop to do work, so thats literally not an option i can take.

i deleted the file that says was infected, we'll see where that gets me. running a new scan now.
 


PS: Go into your add/remove programs and look at Java....it should read Version 6 Update 27...This virus you have is the result of not keeping Java updated...the newest version corrects the holes in Java that viruses have exploited......If you do not have the latest version go to Java.com and download and install it......................

just a thought or a well placed cup of coffee accident
just let the geeks at work do it....hard to remedy anything when you have a limited account...
 
What did you download? If you say your having problems with your registry there is software out there that can clean all that right up, but if you dont have admin rights i dont know if you can download it. I am assuming you are using a windows computer...right?? Did you try using windows defender? I would need to know what you did to get this virus so I could help you out more. I could get rid of it for you in a matter of minutes...buts I would need your computer to do that...which I dont. Keep me posted
Thanks
 
my java is showing version 7 something or other.

i am on windows. i didnt download anything (i cant install anything new so there's no point), but i think when i was running through websites last week looking at bike parts i allowed a script to run and that's where it got me.
 
Install AVG free edition. It finds more viruses than Norton. It should pick it up no problem. I've removed many a trojan over the years with AVG where Norton has failed.
 
Bio248 said:
my java is showing version 7 something or other.

i am on windows. i didnt download anything (i cant install anything new so there's no point), but i think when i was running through websites last week looking at bike parts i allowed a script to run and that's where it got me.
Click to expand...

A sincere e-mail to Norton, telling them how over exploited there software is, might get a response. I personally would do it anyway, those damn fear mongers should solve it....oh yeah after telling you to update your license
 


Oh ****, I didn't see the you can't install thing. A) Do a system restore, b) Restart Windows in Safe Mode and try installing another anti virus then. If none of these work, then you may need a full wipe. Back up your data to a USB, restore windows, install anti virus, have it scan the USB before you open anything from it, and go ahead and replace all your data again.

If you want the best paid Anti Virus application, look up: http://www.trendmicro.com/us/home/index.html
 
Did you try windows defender? When an ad pops up, click ctrl alt delete, then click on Task manager. Once that opens up find which service is the ad and see if it is coming from a website or a file. Some viruses are put into files and then ran that way.
 
im gonna try and con the guys into letting me have admin rights to try fixing it. i cant go without my desktop for any period of time.
 
You may also want to look in control panel under programs and see if there is a program that is out of the ordinary. And you just have to manually find that file "Trojan.Maljava!gen1" and delete it that way.
 
You must log in or register to reply here.
Back
Top