Computer Help and Support

Earth Bound Misfit

(3,585 posts)

28. This is a particular vulnerability, a "route to infection" rather than an infection.

Sat Jan 12, 2013, 08:39 PM

Jan 2013

What is put on as “the infection” is a matter of the payload chosen by the person(s) utilizing the exploit for this vulnerability. You can check and see if you’re vulnerable, but the only way to see if you’re infected is through the use of security software, Anti-Virus, Anti-Malware, etc. There's no accounting for zero day threats however.

From what I've read/heard thus far this vulnerability is mainly being used by exploit packs, which are crimeware tools made to be stitched into Web sites so that when visitors come to the site with vulnerable/outdated browser plugins (like this one), the site can silently install malware on the visitor’s PC. Exploit packs can be stitched into porn sites as well as legitimate sites. All it takes is for an attacker to be able to insert one line of code into a compromised site.

Typically when you’ve been a victim of a “drive by” like this, you will notice the effects; some will block access to security related web sites, like Symantec, Avast, Avira, Malwarebytes etc; they can disable features on the Windows system like Control Panel, Windows Update, Safe Mode, block/disable anti-virus, or anti-malware apps & scanners, block executables, hide your files/desktop...and much much more.

Edit history

Please sign in to view edit histories.

Recommendations

0 members have recommended this reply (displayed in chronological order):

47 replies

= new reply since forum marked as read

Highlight:

Turn off your Java plug-ins RIGHT FUGGIN NOW!!!!! [View all] Earth Bound Misfit Jan 2013 OP

K&R!!!!!!!!!!! CountAllVotes Jan 2013 #1

Is it good enough to disable ohheckyeah Jan 2013 #2

If you go into your addons/plugins it's should have an "update now" at the end the java Lone_Star_Dem Jan 2013 #4

Thanks - ohheckyeah Jan 2013 #5

As of this morning Mozilla has made Java "Click-to-Play" on a per site/ per visit basis... Earth Bound Misfit Jan 2013 #41

I am now running SuperAntispyware ... will this help? CountAllVotes Jan 2013 #3

My ThinkPad is screwed CountAllVotes Jan 2013 #6

This message was self-deleted by its author CountAllVotes Jan 2013 #8

Have a friend that ohheckyeah Jan 2013 #7

fix hint CountAllVotes Jan 2013 #9

My Acrobat just updated, I hadn't read any of this. polly7 Jan 2013 #10

I gave up on that computer CountAllVotes Jan 2013 #11

damn. polly7 Jan 2013 #13

if you do system restore it will be gone CountAllVotes Jan 2013 #14

that was a rumor! CountAllVotes Jan 2013 #24

Thanks .. polly7 Jan 2013 #25

Better stay off those porn sites, folks! WhoIsNumberNone Jan 2013 #12

you could be next CountAllVotes Jan 2013 #15

Funny you should say that WhoIsNumberNone Jan 2013 #16

I came home and turned on my computer CountAllVotes Jan 2013 #18

I've been pretty slack when it comes to updating Java WhoIsNumberNone Jan 2013 #19

Fascinating technical analysis... Earth Bound Misfit Jan 2013 #17

'tis a nightmare CountAllVotes Jan 2013 #20

Have you tried restoring your computer to factory settings? UnrepentantLiberal Jan 2013 #31

All I can do is system restore CountAllVotes Jan 2013 #33

What kind of computer do you have? UnrepentantLiberal Jan 2013 #39

IBM ThinkPad; desktop is an ACER CountAllVotes Jan 2013 #40

You mean you're using a Vista operating system UnrepentantLiberal Jan 2013 #44

I know! CountAllVotes Jan 2013 #45

Thanks for the information. nick of time Jan 2013 #21

R#5 & K. For me/LowTech, please spell everything out UTUSN Jan 2013 #22

Do the following: CountAllVotes Jan 2013 #27

tnx.am on kindle fire hd. does it affect. there was java tab in laptop control panel didn't click. UTUSN Jan 2013 #29

O.K., here's more of my problem: I've got Java 6and the tech article said nothing earlier than Java7 UTUSN Jan 2013 #32

yes I saw that CountAllVotes Jan 2013 #36

Don't go messing w/the registry CountAllVotes Jan 2013 #34

Amazon kindle fire hd 8.9 UTUSN Jan 2013 #37

The Security tab > Untick enable Java content is a new feature in Ver 7 update 10... Earth Bound Misfit Jan 2013 #38

tnx back pecking. is this a temporary situation. should I just governorate off ie laptop nt UTUSN Jan 2013 #42

that is what I am doing CountAllVotes Jan 2013 #43

Just UNinstalled my Java 6 (didn't see any JavaSCRIPT) & so far haven't seen any differences UTUSN Jan 2013 #46

JavaSCRIPT does not pertain to this vulnerability, the concern is Java APPLETS... Earth Bound Misfit Jan 2013 #47

This is a particular vulnerability, a "route to infection" rather than an infection. Earth Bound Misfit Jan 2013 #28

I believe I know where it came from CountAllVotes Jan 2013 #35

Thanks for posting this, malwarebytes has detailed instructions and a way to remove the malware Sunlei Jan 2013 #23

thanks! CountAllVotes Jan 2013 #26

Do I need to disable Java and Flash on my Android phone? UnrepentantLiberal Jan 2013 #30