This malware appears to have
file infector characteristics as a number of legitimate files appear to have been detected as being infected with W32/Unruy and deleted. Malwarebytes' Anti-Malware (mbam .exe) was one of the detections.
Go ahead and uninstall/reinstall Malwarebytes' Anti-Malware as foillows:
For Windows XP:
- First uninstall Malwarebytes' Anti-Malware using Add/Remove Programs in the Control Panel.
- Restart the computer.
- Download the mbam-clean.exe (MBAM Cleanup Utility) and save it to your Desktop.
- Double-click on mbamclean.exe to start the utility.
- When the cleanup routine has finished, it will ask to reboot your computer. Please allow the reboot.
- After the computer restarts, download and install the latest version of Malwarebytes' Anti-Malware (v1.50) from here.
For Windows Vista and Windows 7:
- First uninstall Malwarebytes' Anti-Malware using Programs and Features in Control Panel.
- Restart the computer.
- Download the mbam-clean.exe (MBAM Cleanup Utility) and save it to your Desktop.
- Right-click on mbamclean.exe and select Run As Administrator to start the utility.
- When the cleanup routine has finished, it will ask to reboot your computer. Please allow the reboot.
- After the computer restarts, download and install the latest version of Malwarebytes' Anti-Malware (v1.50) from here.
-- If using the Pro version, you will need to reactivate the program using the license key you were sent by email. If using the free version, then just ignore that part.
-- Launch the program and set the Protection and Registration. Then go to the UPDATE tab and check for updates if not done during installation.
-- Restart the computer again and verify that Malwarebytes' is in the task tray if using the Pro version. Now setup any file exclusions as may be required in your Anti-Virus/Internet-Security/Firewall applications and restart your Anti-Virus/Internet-Security applications.Rescan again with Malwarebytes Anti-Malware (
Quick Scan) in normal mode and
and check all items found for removal. Don't forgot to
check for database definition updates through the program's interface (
preferable method) before scanning and to reboot afterwards.
Failure to reboot normally will prevent Malwarebytes' from removing all the malware. When done, click the
Logs tab and copy/paste the contents of the new report in your next reply.
Your scan results indicate a threat(s) was found in the
Java cache.
When a browser runs an applet, the Java Runtime Environment (JRE) stores the downloaded files into its cache folder (C:\Documents and Settings\username\Application Data\Sun\Java\Deployment\cache) for quick execution later and better performance.
Malicious applets are also stored in the
Java cache directory and your anti-virus may detect them and provide alerts. For more specific information about Java exploits, please refer to
Virus found in the Java cache directory.
Notification of these files as a threat
does not always mean that a machine has been infected; it indicates that a program included the viral class file but this does not mean that it used the malicious functionality. As a precaution, I recommend clearing the entire cache to ensure everything is cleaned out:
Please perform a scan with
Eset Online Anti-virus Scanner.
- This scan requires Internet Explorer to work. If using a different browser, you will be given the option to download and use the ESET Smart Installer.
- Vista/Windows 7 users need to run Internet Explorer as Administrator. To do this, right-click on the IE icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run As Administrator from the context menu.
- Click the green
button. - Read the End User License Agreement and check the box:
- Check
. - Click the
button. - Accept any security warnings from your browser.
- Check
- Check Remove found threats and Scan potentially unwanted applications. (If given the option, choose "Quarantine" instead of delete.)
- Click the Start button.
- ESET will then download updates for itself, install itself, and begin scanning your computer.
- If offered the option to get information or buy software at any point, just close the window.
- The scan will take a while so be patient and do NOT use the computer while the scan is running. Keep all other programs and windows closed.
- When the scan completes, push
- Push
, and save the file to your desktop as ESETScan.txt. - Push the
button, then Finish. - Copy and paste the contents of ESETScan.txt in your next reply.
Note: A
log.txt file will also be created and automatically saved in the C:\Program Files\EsetOnlineScanner\ folder.
If you did not save the ESETScan log, click
>
Run..., then type or copy and paste everything in the code box below into the Open dialogue box:
C:\Program Files\ESET\EsetOnlineScanner\log.txt
- Click Ok and the scan results will open in Notepad.
- Copy and paste the contents of log.txt in your next reply.
-- Some online scanners will detect existing anti-virus software and refuse to cooperate. You may have to disable the real-time protection components of your existing anti-virus and try running the scan again. If you do this, remember to turn them back on after you are finished.
Back to top
