Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Exploit:Java/CVE-2008-5353.B;Trojan:Java/Selace.A and B

05 Nov 2009   #11
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

My System SpecsSystem Spec
.
05 Nov 2009   #12
grenneam

WIN-XP SPk3
 
 

Thank You, Jacee - That was good info.
My System SpecsSystem Spec
05 Nov 2009   #13
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

You're welcome grenneam
My System SpecsSystem Spec
.

06 Nov 2009   #14
Barbara511

Windows
 
 

Hello Everyone! Thank you for all your responses. I have been digesting and studying all the info provided and will likely proceede with the steps suggested by Jacee.

Grenneam: I think you are correct about the hidden files. I remember choosing the option to hide them a few months ago (due to another problem I was having). I will check tomorrow.

All in all, there is so little info available on this bugger! Most of what's out there deals with prevention, rather then annihilation... So, all the suggestions here have been priceless!


I will report tomorrow how it goes.
Thank you once again!
B
My System SpecsSystem Spec
06 Nov 2009   #15
Barbara511

Windows
 
 

Quote   Quote: Originally Posted by Jacee View Post
Barbara,
Download ATF Cleaner ATF-Cleaner.exe - www.atribune.org
Click "Main" > check 'select all' (except Prefetch) this first time using it, then click "Empty Selected". Do the same for FireFox or Opera if you use either of those browsers.
Finally go to Control Panel > Internet Options.
On the General tab under "Temporary Internet Files" Click "Delete Files".
Put a check by "Delete Offline Content" and click OK.

Next,
  • Download the latest version of Java Runtime Environment (JRE) 6.
  • Scroll down to where it says "Java Runtime Environment (JRE) 6u17 allows end-users to run Java applications".
  • Click the "Download" button to the right.
  • Check the box that says: "Accept License Agreement".
  • The page will refresh.
  • Click on the link to download Windows Offline Installation with or without Multi-language and save to your desktop.
  • Close any programs you may have running - especially your web browser.
  • Go to Start > Control Panel double-click on Programs and Features and remove all older versions of Java.
  • Check any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-6u17-windows-i586-p.exe to install the newest version.
Scan your computer again with antimalware programs.
Hello Jacee!

I did everything. A few snagges along the way, but Java is back in, and according to Windows Safety Scanner, the three viruses are now gone... The computer is working decidedly faster. On the other hand, the re-directing is still present... I think I will contact Microsoft and see if they can fix...

Thank you for your help though! It did help me get rid of the three problems.

B
My System SpecsSystem Spec
07 Nov 2009   #16
iseeuu

 
 

Quote   Quote: Originally Posted by Barbara511 View Post
I did everything. A few snagges along the way, but Java is back in, and according to Windows Safety Scanner, the three viruses are now gone... The computer is working decidedly faster. On the other hand, the re-directing is still present... I think I will contact Microsoft and see if they can fix...

Thank you for your help though! It did help me get rid of the three problems.

B
Barbara;

Here is a Microsoft link on help to stop browser hijacking of IE.

Browser Not Working? Prevent Browser Hijacking - Microsoft Security

It is easy to hijack, the bad guys just send IE through their proxy server. In IE: go to "Internet Options", "Connections", "Lan settings", and see if there is a "Proxy server" listed. Delete (assuming you are not using a proxy server) the address and untic the "Proxy server" box to stop using the Proxy server.

Cheers!
Robert
My System SpecsSystem Spec
22 Mar 2010   #17
justabill

Windows 7 Ultimate
 
 

Barbara,
Hello, I have the same problem. For the last month, my Internet Explorer has been crashing. I ran the safety scanner, and it came up with the same 3 things you did. My question is, I have AVG full on my computer and do a daily scanner. Why wouldn't the AVG pick them up? Any ideas from anyone?

I'll try the method someone suggested and let you know.

JustABill
My System SpecsSystem Spec
13 Sep 2010   #18
NickofTime

Windows Vista Home Prem. SP 2; 32 bit operating system
 
 

I just started using Microsoft Security Essentials which did in fact detect and quarantine exploit:java/cve-2008-5353.oz
I was a very happy camper.
Also don't forget the old staples: system restore and as a last resort: re-load operating system.

Just my HO
My System SpecsSystem Spec
22 Sep 2010   #19
mr pc

Windows 7
 
 

Just ran MSSE and found three similar files/exploits

Java/CVE-2008-5353.JH
Java/CVE-2008-5353.EQ
Java/CVE-2009-3867.EH

I quarantined and tried finding any connection of these with any of the programs on my machine - no dice

I just updated to IE9, Opera 10.10, and just installed Bumptop out of curiosity

I'm apprehensive to remove if these are false positives

I also have Threatfire on my machine, Win Firewall on and presumably my Belkin router firewall

Threatfire scan did not detect it

MBAM didn't detect anything

hmmm
My System SpecsSystem Spec
22 Sep 2010   #20
Jacee
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

If you've left old versions of Java on your computer and not installed the latest version, (JRE) 6u21, then you can see why these exploits were detected:
Please read this Encyclopedia entry: Trojan:Java/Selace.D - Learn more about malware - Microsoft Malware Protection Center
My System SpecsSystem Spec
Reply

 Exploit:Java/CVE-2008-5353.B;Trojan:Java/Selace.A and B




Thread Tools




Similar help and support threads
Thread Forum
Java Exploit / Trojan magically re-appears even with a system re-image
I re-imaged my system hard drive the other day after getting infected with a google redirect virus, and a lot of other nasty malware that was apparently smart enough to be able to tell what you're doing and shuts your system down after making it unbootable. Seems to have been a Java exploit. I...
System Security
JAVA Exploit Remedy?
Scanning the web today I still do not see a credible "all clear" signal regarding the JAVA exploit. This team came up with a patch: Researcher Develops Patch for Java Zero-Day, Puts Pressure on Oracle to Deliver its Fix | threatpost but I don't see affirmative Greenlight from the major 3rd...
System Security
Yet another Java exploit thread.
I got infected by the Anti-piracy ransomware thing yesterday. Is the infection related to the Java exploit? I used tools recommended on this site and it looks to be fixed. I also uninstalled Java 6 and Java 7 (had both on my system?). While on the Java website they showed an option in the Java...
System Security
Exploit:Java/CVE-2010-0840.IO help.
Hi, I recently clicked on a fake Java update, which infected my computer with: Exploit:Java/CVE-2010-0840.IO TrojanDownloader.Java/OpenConnection.OS TrojanDownloader.Java/OpenConnection.OU These were recognised after doing a full MSE scan, and selecting these files for removal.
System Security
repeated start up prbs after Exploit and Java Trojan's 'removed'
hi there I'm not sure if this is the right place to post this plea... About a week ago i removed Explot:Java/CVE-20100840.JA and TrojanDownloader@Java/Openconnection using MSE. 3 days ago I was attaching a word document to a hotmail email and the system froze and never woke up. I used the...
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 07:39.
Twitter Facebook Google+ Seven Forums iOS App Seven Forums Android App