Author Topic: Trojan detected after Java update  (Read 15027 times)

0 Members and 1 Guest are viewing this topic.

Yveline

  • Guest
Re: Trojan detected after Java update
« Reply #15 on: August 03, 2013, 11:47:25 PM »
This time, OTL ran normally, the PC rebooted, the start menu and the icons reappeared on the desktop.
I am attaching the log.
Thanks, Yveline

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Trojan detected after Java update
« Reply #16 on: August 03, 2013, 11:49:22 PM »
Could you now do a quick scan with Avast to confirm that the java malware has gone please

Yveline

  • Guest
Re: Trojan detected after Java update
« Reply #17 on: August 04, 2013, 12:22:28 AM »
Avast quick scan said "no infected file".
Yveline

Yveline

  • Guest
Re: Trojan detected after Java update
« Reply #18 on: August 05, 2013, 12:08:05 AM »
Now that avast said "no infected file", can I delete the tools I downloaded from what I was advised here? Is it good enough to delete from where they were downloaded? I can see a button called "purge tools" on OTL (getting confused).
Also, should I uninstall Java 6, which gives me a warning on avast? (I can see on the control panel Java FX2.1.1, Java (TM) 6 update 26 and Java 7 update 25.
You said Java was not installed properly. Should I do something about it?
Thanks,
Yveline

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Trojan detected after Java update
« Reply #19 on: August 05, 2013, 11:49:34 AM »
For Java there is a small tool that will remove all old Java version, this can be deleted from the desktop once it has done its job

http://fileforum.betanews.com/detail/JavaRa/1207335071/1

Subject to no further problems   :)

I will remove my tools now and give some recommendations, but, I would like you to run for 24 hours or so and come back if you have any problems 

Now the best part of the day ----- Your log now appears clean  :thumbsup:

A good workman always cleans up after himself so..The following will implement some cleanup procedures as well as reset  System Restore points:

Run AdwCleaner and press uninstall
Delete AswMBR from the desktop
Run OTL and hit the cleanup button.  It will remove all the programmes we have used plus itself. 

Clear Restore Points

Go Start > All Programmes > Accessories > System tools
Right click Disc Cleanup and select run as administrator
When it pops up at the first prompt select OK after it has done some calculations the tabs will appear
Select More Options tab
Press Sytem Restore and Shadow Copies Cleanup button



: Keep Java Updated :

WARNING: Java is the #1 exploited program at this time. The Department of Homeland Security recommends that computer users disable Java
See this article and this article.
I would recommend that you completely uninstall Java unless you need it to run an important software.
In that instance I would recommend that you disable Java in your browsers until you need it for that software and then enable it. (See How to diasble Java in your web browser and How to unplug Java from the browser)

Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:

Malwarebytes.

Update and run weekly to keep your system clean

Download and install FileHippo update checker and run it monthly it will show you which programmes on your system need updating and give a download link

If you use on-line banking then as an added layer of protection install Trusteer Rapport

It is critical to have both a firewall and anti virus to protect your system and to keep them updated. To keep your operating system up to date visit To learn more about how to protect yourself while on the internet read our little guide  How did I get infected in the first place ?Keep safe  :wave:

Yveline

  • Guest
Re: Trojan detected after Java update
« Reply #20 on: August 05, 2013, 11:53:27 PM »
I did what you said. Deleting tools and clear restore points went smoothly.
Though, I downloaded and ran the tool to remove the old java version, but when I look at the control panel, it still sits there: Java (TM) 6 update 26.
Besides, I didn't manage to open the java control panel as explained in the link you mentioned. I click on start, then control panel and then... what do I do? The only way I know how to see java there is through "program" and "modify/uninstall" but that doesn't open any java control panel.
Finally, I was surprized to read the trouble about Java and your advice to disable it. Over the years, I learnt this is one of those programs you need to download and update to browse the internet or files smoothly even though you don't officially know you're using it (mmm... phrased in non-geek words). Did I get it wrong or is it that the recent attacks changed that?
I'll be running the PC a while and will let you know if something is wrong.
thanks for your help,
Yveline

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Trojan detected after Java update
« Reply #21 on: August 06, 2013, 11:14:18 AM »
There are   few sites now that use Java, if I come across one that requires it then I just locate a different site.  As far as I know it is mainly games sites that require Java.
The highest percentage of exploits at the moment are centred around Java.  So if you do not need it for any programmes on you computer I would remove it totally 

Yveline

  • Guest
Re: Trojan detected after Java update
« Reply #22 on: August 07, 2013, 12:30:19 AM »
OK, I make a note of this.
Thanks,
Yveline

Yveline

  • Guest
Re: Trojan detected after Java update
« Reply #23 on: August 19, 2013, 11:22:25 PM »
Hi,
You asked me to run the computer for a while and get back to you if anything weird was going on.
Well...
The last time windows updated, the PC got stuck when rebooting. The system told me it could not set up the update. I restaured to prior that update.
Reminder: the latest java update went through poorly ; I restaured ; re-installed it when prompted, and later found a malware which drove me to start that thread.
I don't know whether the problem with windows update is related or not.
For information, I have not deleted java yet as you suggested. I have been away on and off since I last posted and part of the little time I used the PC, I struggled with that windows update.
Also, for information, until that java update went through poorly, this PC was ticking like a clock.
Thanks,
Yveline

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Trojan detected after Java update
« Reply #24 on: August 19, 2013, 11:52:25 PM »
Whit update failed ?  It should have presented a KB number

Yveline

  • Guest
Re: Trojan detected after Java update
« Reply #25 on: August 20, 2013, 05:24:23 AM »
In order to give you an answer, I went to windows update/update history and found that when I logged off after my last post, a set of updates had come in.
Since you mentioned about KB numbers (I didn't know that even existed), I looked for them and found that on Aug 15th, 9 updates carried the status "failed". They had the same KB number as some of the updates that came in yesterday with the status "success".
I assume this means that what failed a few days ago went through fine yesterday... ??
Most of what had failed was for windows vista security or windows defender and one was windows vista update

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: Trojan detected after Java update
« Reply #26 on: August 20, 2013, 07:10:21 PM »
If they are now successful then it was probably a bad download that caused them to be rolled back

Yveline

  • Guest
Re: Trojan detected after Java update
« Reply #27 on: August 21, 2013, 01:17:59 AM »
OK, thanks a lot.
Yveline