Author Topic: Help Java Agent Virus detected  (Read 4144 times)

0 Members and 1 Guest are viewing this topic.

metallbarren

  • Guest
Help Java Agent Virus detected
« on: June 02, 2013, 04:14:02 PM »
I ran a boot scan that showed several files infected with java agent virus. After reading here I've been down the checklist of various cleaners. Attached are my logs. Any help would be greatly appreciated.

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37611
  • Not a avast user
Re: Help Java Agent Virus detected
« Reply #1 on: June 02, 2013, 05:05:44 PM »
what was the location of the files?...... you may attach a screenshot of the scan result
did avast move them to chest?

malware removers are notified

metallbarren

  • Guest
Re: Help Java Agent Virus detected
« Reply #2 on: June 02, 2013, 05:21:38 PM »
I chose the delete all after deleting one at a time a few times. I really can't recall exactly where the files were located.  I feel like a numskull for not paying more attention now.

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Help Java Agent Virus detected
« Reply #3 on: June 02, 2013, 05:22:36 PM »
Generally a good clean of your temporary files will remove those...  Are you experiencing any problems ?

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following


Code: [Select]
:OTL
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-1333336162-3884839092-3921672393-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.

:Commands
[resethosts]
[emptytemp]
[CREATERESTOREPOINT]
[Reboot]
  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

metallbarren

  • Guest
Re: Help Java Agent Virus detected
« Reply #4 on: June 02, 2013, 05:42:01 PM »
After a little digging I found the following log from the boot scan.

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Help Java Agent Virus detected
« Reply #5 on: June 02, 2013, 05:45:55 PM »
They are in the Java cache by the look of it..  Run the OTL fix and it will clear all the caches

metallbarren

  • Guest
Re: Help Java Agent Virus detected
« Reply #6 on: June 02, 2013, 06:53:10 PM »
I ran the fix and a quick scan. OTL log attached.

Offline Pondus

  • Probably Bot
  • ****
  • Posts: 37611
  • Not a avast user
Re: Help Java Agent Virus detected
« Reply #7 on: June 02, 2013, 07:03:12 PM »
they are all listed as exploits.
If you are the type that keep your software updated, like browsers and java, then you are dobbel protected against exploits, so even if avast did not detect them they may not work if you have latest patched versions



Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Help Java Agent Virus detected
« Reply #8 on: June 02, 2013, 08:50:30 PM »
How is the computer behaving ?  As it looks clean but your Java is old

metallbarren

  • Guest
Re: Help Java Agent Virus detected
« Reply #9 on: June 02, 2013, 09:27:35 PM »
I noticed over the last few days that it started taking windows longer and longer to get up and running. I'm still not sure if that was related to this or not but it appears to be back to normal now. I also updated Java to version 7.0.21 now.

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Help Java Agent Virus detected
« Reply #10 on: June 02, 2013, 09:42:28 PM »
The emptying of temporary files may have helped, a disc defragment would probably not go amiss


Run OTL and press the cleanup button to remove it
Run AdwCleaner and press uninstall
Delete AswMbr from the desktop :)