Java exploits - have I got rid of them all?

Discussion in 'Malware Help (A Specialist Will Reply)' started by sgregg, Feb 3, 2013.

  1. sgregg

    sgregg Private E-2

    I've been experiencing problems with my Lenovo X220 (running Windows 7) for the past month and a half. At first I wasn't sure whether these problems were being caused by malware or by issues with my msata SSD drive, which had been giving me warnings that it was about to fail. I was in the process of running some of the software recommended on this site - namely RogueKiller, which I couldn't get to run - when the hard drive suddenly died, and I assumed that was probably the cause of the issues.

    The SSD has since been replaced, but in the last few days the problems have reappeared - the computer is behaving sluggishly and web pages take an eternity to open (if they open at all). Earlier today I ran a full scan with Microsoft Security Essentials, and it detected four items (all of which have now been removed):

    -Exploit:JS/Coolex.A
    -Exploit:Java/CVE-2013-0422
    -Exploit:Java/CVE-2013-0422.C
    -Exploit:JS/Blackole.KR

    The source of all four items seemed to be the back-up file that I'd taken of my old hard drive before it died - so it looks like the original issues weren't just caused by a faulty/dying hard drive.

    I've ran all of the recommended programs and attached the logs - all except RogueKiller, which crashes during the pre-scan stage. When I try to open the program it gets to the 'Loading Drivers' message, then reboots the computer before I can run it. This is exactly the same thing that it was doing just before the old hard drive died.

    I'd be very grateful for some help in working out what's still wrong with my computer and how to fix it. Thanks.
     

    Attached Files:

    sgregg, Feb 3, 2013
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    I am not finding any malware in your logs. I suggest you post in the software forum for further assistance.

    Since you are not having any malware problems, it is time to do our final steps:
    1. We recommend you keep Malwarebytes Anti-Malware for scanning/removal of malware. You can uninstall RogueKiller and HitManPro.
    2. Go back to step 4 of the READ ME and renable your Disk Emulation software with Defogger if you had disabled it.
    3. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    4. If running Vista or Win 7, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    5. Go to add/remove programs and uninstall HijackThis.
    6. Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders
      related to MGtools and some other items from our cleaning procedures.
    7. After doing the above, you should work thru the below link


    Malware removal from a National Chain = $149
    Malware removal from MajorGeeks = $0
     
    TimW, Feb 4, 2013
    #2
  3. sgregg

    sgregg Private E-2

    Thanks for taking the time to look at the logs - I appreciate it.
     
    sgregg, Feb 4, 2013
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Not a problem. Safe surfing. :)
     
    TimW, Feb 5, 2013
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds