Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Can Anyone Help Please ?


  • Please log in to reply
5 replies to this topic

#1 cuteypie37

cuteypie37

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:05:34 PM

Posted 12 January 2007 - 07:26 AM

I dont know if i am in the right place but i was wondering if someone could help -we have zone alarms secuity on our computer and it says i have 5 viruses .i have mananged to delete / treat 2 of them but the other 3 i cant get rid of as it says failure to delete

I am a complete novice at computers so any help would be grateful for any help

in my summery it says

file java byte exploit! verify c/docume~1 karen\local~1TEMP\AAWTMP\C5630453\35AC80COUNTER.CLASS

Java/byteverify!exploit c:\docume~1\karen/LOCAL~1\TEMP\AAWTMP\C5630453\35AC80VERIFIERBUG.CLASS

Java/Shinwow.AB C:Docume~1/karen/Locals~1\TEMP\AAWTMP\C5630453\35AC80BEYOND.CLASS

Thank you in advance

cuteypie37

BC AdBot (Login to Remove)

 


#2 whintersby

whintersby

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:06:34 PM

Posted 12 January 2007 - 07:51 AM

I'm sure HiJackThis experts will come along and able to remove these infections manually - however, as you state you are a complete novice with computers I fear this could be quite complicated.

I'm a big fan of security program called Prevx1 who have information on the infections you mention.

ByteVerify:
http://virusinfo.prevx.com/pxparall.asp?PXC=bf08104383

I'd recommend downloading the free trial of Prevx1 which will scan your computer and remove these infections free of charge: :thumbsup:
http://www.prevx.com

Edited by whintersby, 12 January 2007 - 07:52 AM.


#3 fozzie

fozzie

    aut viam inveniam aut faciam


  • Members
  • 3,516 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ossendrecht/The Netherlands
  • Local time:06:34 PM

Posted 12 January 2007 - 08:19 AM

Step 1
* Clean your Cache and Cookies in IE:

* Close all instances of Outlook Express and Internet Explorer
* Go to Control Panel > Internet Options > General tab
* Under Browsing History, click "Delete".
* Click "Delete Files", "Delete cookies" and "Delete history"
* Click Close below.

* Clean your Cache and Cookies in Firefox (In case you also have Firefox installed):

* Go to Tools > Options.
* Click Privacy in the menu..
* Click the Clear now button below.. A new window will popup what to clear.
* Select all and click the Clear button again.
* Click OK to close the Options window

* Clean other Temporary files + Recycle bin

* Go to start > run and type: cleanmgr and click ok.
* Let it scan your system for files to remove.
* Make sure Temporary Files, Temporary Internet Files, and Recycle Bin are the only things checked.
* Press OK to remove them.

Step 2
In normal mode, run an online antivirus check from at least two and preferably three of the following sites
BitDefender
Computer Associates Online Virus Scan
Panda's ActiveScan
Trend Micro Housecall
Windows Live Safety Center Free Online Scan
This scanner from Trend does not require an Active X to run.

1. Detects and removes malware ( viruses, worms, trojans, etc. )
2. Detects and removes grayware and spyware
3. Restores damage caused by malware to your system.
4. Notifies about vulnerabilities in installed programs and connected network services.
5. Multi-platform support for: Windows, Linux, Solaris.
6. Easy-to-use with the Microsoft Internet Explorer and Mozilla Firefox.
I strongly recommend at least to do nr. 5 and 1

Step 3
Download and scan with SUPERAntiSypware Free for Home Users

* Double-click SUPERAntiSypware.exe and use the default settings for installation.
* An icon will be created on your desktop. Double-click that icon to launch the program.
* If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Udates". (If you encounter any problems while downloading the updates, manually download and unzip them from here.)
* When done, select "Scan for Harmful Software".
* There are three scanning options. Choose "Perform Complete Scan" and click "Next".
* When done, a Scan Summary will appear with potentially harmful items that were detected. Click "OK".
* Make sure they all have a checkmark next to them and click "Next".
* A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
* Click Preferences and then click the statistics/logs tab.
* Click the dated log and press View log. A text file will appear so you can see the results.
* Select close to exit the program.

Step 4
Your version of Java is outdated and needs to be updated to take advantage of fixes that have eliminated security vulnerabilities.
Updating Java:

* Download the latest version of Java Runtime Environment (JRE) 6.0
* Scroll down to where it says "Java Runtime Environment (JRE) 6
* Click the "Download" button to the right.
* Check the box that says: "Accept License Agreement".
* The page will refresh.
* Click on the link to download Windows Offline Installation, Multi-language and save to your desktop.
* Close any programs you may have running - especially your web browser.
* Go to Start > Control Panel double-click on Add/Remove programs and remove all older versions of Java.
* Check any item with Java Runtime Environment (JRE or J2SE) in the name.
- Examples of older versions in Add or Remove Programs:
o Java 2 Runtime Environment, SE v1.4.2
o J2SE Runtime Environment 5.0
o J2SE Runtime Environment 5.0 Update 6
* Click the Remove or Change/Remove button.
* Repeat as many times as necessary to remove each Java versions.
* Reboot your computer once all Java components are removed.
* Then from your desktop double-click on jre6-windows-i586-p.exe to install the newest version.

After that Reset and Re-enable your System Restore to remove infected files that have been backed up by Windows. The files in System Restore are protected to prevent any programs from changing those files. This is the only way to clean these files: (You will lose all previous restore points which are likely to be infected)

1. Turn off System Restore.
* On the Desktop, right-click My Computer.
* Click Properties.
* Click the System Restore tab.
* CHECK Turn off System Restore.
* Click Apply, and then click OK.
2. Restart your computer.
3. Turn ON System Restore.
* On the Desktop, right-click My Computer.
* Click Properties.
* Click the System Restore tab.
* UN-Check Turn off System Restore.
* Click Apply, and then click OK.


System Restore will now be active again.

Please note that prior to resetting your system restore you have to be sure if all infections have been removed. If ny doubt please repost.

Edited by fozzie, 12 January 2007 - 08:22 AM.


#4 TheTerrorist_75

TheTerrorist_75

  • Members
  • 645 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Fulton, NY > Snow country.
  • Local time:01:34 PM

Posted 12 January 2007 - 01:18 PM

That appears to be a false positive detection by Zone Alarm. The AWWTMP entries in your Temp folder belongs to AdAware. Are you running updated versions of Zone Alarm and AdAware SE plus if you are using XP have you updated to SP2?
I am a transplant survivor.

Get Your Donor Card

#5 cuteypie37

cuteypie37
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:05:34 PM

Posted 13 January 2007 - 03:27 PM

Thank you all for your replies :flowers: :trumpet: im trying all your suggestions:)

ill keep you posted

many thanx in advance

:thumbsup:

#6 cuteypie37

cuteypie37
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:05:34 PM

Posted 13 January 2007 - 03:28 PM

The terrorsit in answer to all your questions it is yes :thumbsup::flowers:




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users