Re: Hijack Logs To Tom Coyote

There were 3 Java entries. Two were definitely Java programs for browsers
but I'm not sure I know what the last one is; I haven't removed it. It's
called "Java Web Start", is 2.06 MB, and was last used 4-5-04 (but I'm not
sure how accurate that little tool is 'cause Quicken was last used 6-11-06
but the log says 4-22-05.)

Delete Java Web Start before I download the latest version of Java?

"David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in message
news:jcKjg.26192$X02.23549@xxxxxxxxxxx
From: "John Gregory" <jaygreg90@xxxxxxxxxxx>

| David, that's the most detailed,thorough report I've gotten in all the
| forums. I appreciate this. I was just getting set to run that HijackThis
log
| and post it in one of those guru forums like TomCoyote. Would that be
| preferred than doing all this here? Your information certainly won't go
to
| waste. I now have an idea of what to expect. And I learned earlier today
| from someone else that Java was a possible open door through which I was
| hit. My version is 2re1.4.2. Should I remove all Java files through
Control
| Panel/Add or Remove first then download and install? Or go to the Java
site
| and let the automatic download occur then remove the old?
|


Your version of Sun Java is certainly a vulnerable version. No doubt
about that. There is
a very good chance that is how you got infected.

Go to the control panel applet "Add/Remove Programs" and remove any/all
Sun Java versuions
then download and install version 5 update 7 which is the latest version.

As for HJT. It details Browser Helper Objects (BHOs) and it makes
identifiyting them easy
and the Vundo Trojan/Virtumonde Adware use BHOs.

Now there is always tyhe chance you have a new version that the utilities
I posted are not
aware of. This family of malware morphs reguarly.

Go through the steps I provided, if they don't work then well go from
there :-)

After you run; VirtumundoBeGone.exe you could post the VBG LOG file

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm




.

Relevant Pages

  • Re: Java Control Panel Folder Empty - Cannot Uninstall Java 6 Upda
    ... I was able to delete the ghost file from my add/remove programs. ... Tried reinstalling Java but I received the same messages that I ... Windows section, download the 'second' file. ... directions for installation. ...
    (microsoft.public.windowsxp.general)
  • Re: Java Web Start
    ... Please understand that SUN JRE is not a Microsoft Product, ... Microsoft is providing this information as a convenience to you. ... For more information about Microsoft Java Virtual Machine Support, ... >someone who can install programs the download tab is disabled. ...
    (microsoft.public.windowsxp.general)
  • Re: Java Control Panel Folder Empty - Cannot Uninstall Java 6 Upda
    ... Tried reinstalling Java but I received the same messages that I ... ghost files I mentioned and Java 6 update 13. ... again and during the install I am getting the same message I get when I try ... Download the one for 'offline installation', ...
    (microsoft.public.windowsxp.general)
  • Re: Cannot access https or windowsupdate
    ... I can connect to any other website. ... Because of a court decision Microsoft will stop all Java support after 30 ... Sun also offers an automatic download and install of the 1.4 Java plug-in ... Replies are posted only to the newsgroup for the benefit or other readers. ...
    (microsoft.public.windows.inetexplorer.ie6.browser)
  • Re: IE cant browse, Windows Explorer can
    ... Removed old versions of Java and reinstalled just the newest ... ||| Tried to reinstall Windows Media Center on the Dell E510 ... install and update the following ... || FireWall to allow it to download the needed AV vendor ...
    (microsoft.public.security.virus)