Java exploits and trojan found..

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by steveneedshelp, Jul 29, 2011.

  1. steveneedshelp

    steveneedshelp Private E-2

    While browsing facebook on my google chrome browser, I kept getting redirected through adf.ly links. I have run all the "Read Me" scans and found multiple instances of malware. The logs are attached. I appreciate any help you can give!
     

    Attached Files:

    steveneedshelp, Jul 29, 2011
    #1
  2. steveneedshelp

    steveneedshelp Private E-2

    additional logs
     

    Attached Files:

    steveneedshelp, Jul 29, 2011
    #2
  3. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    This is a download of an .iso file of just the Recovery Console for XP.
    Burn to CD with Nero or other 'disc image' capable tool and boot.

    XP Recovery Console.

    You will need to first boot into the bios and change the boot order to cd/dvd as first boot device. Then insert the disc and reboot. Once you are in the Recovery Console, type:
    fixmbr

    exit and reboot to normal mode and re-run MBRCheck. Attach the new log.
     
    TimW, Jul 29, 2011
    #3
  4. steveneedshelp

    steveneedshelp Private E-2

    I have a netbook with no CD/DVD drive.. can I boot this from a USB drive?
     
    steveneedshelp, Jul 30, 2011
    #4
  5. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Yes as long as you can get into the bios and there is that option.
     
    TimW, Jul 30, 2011
    #5
  6. steveneedshelp

    steveneedshelp Private E-2

    I successfully got the recovery console to boot from a USB drive, but before I proceed I want to let you know I got the following message when I started to run fixMBR. My computer is a Lenovo S10-2 that came with a partitioned hard drive due to a QuickBoot Linux distribution it was packaged with. Should I continue with this step?

    The message:

    ** Caution **
    This computer appears to have a non-standard or invalid master boot record.

    FIXMBR may damage your partition tables if you proceed.

    This could cause all the partitions on the current hard disk to become inaccessible.
    If you are not having problems accessing your drive, do not continue.
     
    steveneedshelp, Jul 31, 2011
    #6
  7. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    I am waiting on a consult because of the dual boot.
     
    TimW, Aug 1, 2011
    #7
  8. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You are faced with a choice. We can either go ahead and fix the MBR and risk your Linux install or if the infection is not causing you troubles, let it be.
     
    TimW, Aug 5, 2011
    #8
  9. steveneedshelp

    steveneedshelp Private E-2

    I couldn't care less about the Linux install, thankfully. As long as windows or the stability of the system isn't at risk, I'll fix the MBR. Are there any steps I could take to lessen the risk of something going wrong, or is it best to just run it?

    Thanks for your help!
     
    steveneedshelp, Aug 6, 2011
    #9
  10. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    To be on the safe side, I would advise you to backup all your important data and files before you go into the Recovery console and do the fixmbr command.

    Once you have done that, re-run MBRCheck and attach the new log.
     
    TimW, Aug 6, 2011
    #10

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds