Could somebody knowledgeable about these things, help me to understand the two Norton 360 screenshots below?
First screenshot:
Second screenshot:
You'll note that this happened a week ago. Since then, I've run scans with N360, NPE, and several other non-resident and online malware scanners, and my computer comes up clean. And I do understand that N360 told me that it blocked the attack. But what puzzles and bothers me is that my PC may have been attacked from within itself -- specifically, through JAVA.EXE.
What could be (or have been) going on? Can you help me decipher what these two screens mean?
Moderator: Please let me know if there is anything else that should be blacked out there for privacy and/or security reasons.
Thanks very much!
--JorgeA
P.S. What's the deal with the weird language, "The attack was resulted [sic] from..."?
If the attack was resulted from HARDDISK.........../ Internet explorer, or alternatively, Firefox, it usually means that malicious script on a web page has been blocked. It is considered to be on your hard drive because that is where the browser is situated, and the attack came by way of the browser.
If the attack was resulted from .........../svchost or some other system file, it is an indication that some infection may be on your machine.
Your images are not yet visible to us but it should be soon.
Your screen shots are not visible yet, but you do mention Java. Is your Java up to date? Have you configured it so it does not keep temporary files on your computer? If you open up your control panel, you should see a icon for Java. When you click that icon, you will see a tab for Temporary Internet Files. When you click that , you will see a place where you can uncheck, keep temporary files. You should delete any files that are already stored there. Any time that you use a program that uses Java, it will temporarily put those files back, so you are not missing anything by not keeping them on your computer and at the same time, you are helping to keep your computer clean.
You should also delete any old versions of Java that you may have.
Please come back and let us know if your Java is up to date and clear out those temp files. Thanks.
Well, I'm very glad thaty I posted. Thanks to your reply, I discovered that, even though I have Java set to look for updates on a monthly basis, for some reason it had not actually updated in six months! I was still using version 6.23 and they're up to 6.26 now.
I've cleared out the temporary Java files, unchecked the box to keep them on my computer, and am now in the process of downloading and installing the current version of Java.
Well, I'm very glad thaty I posted. Thanks to your reply, I discovered that, even though I have Java set to look for updates on a monthly basis, for some reason it had not actually updated in six months! I was still using version 6.23 and they're up to 6.26 now.
I've cleared out the temporary Java files, unchecked the box to keep them on my computer, and am now in the process of downloading and installing the current version of Java.
Much appreciated.
--JorgeA
Hello JorgeA
This is exactly why I don't like automatic downloads of updates. I would much rather go to Java and Adobe myself and check for updates to the programs. Even with Windows Updates, I like to be told that there are updates, but I want to see first what they are going to update and see if I need it..
When you do get the downloads, please be careful that there isn't another program or toolbar that tags along for the ride as many times these other products or toolbars are not wanted. Thanks.
The odd thing is, I did have Java set to notify me before downloading! Yet I didn't hear a peep about any updates for it looks like six months. Very strange.
A possible clue to this is that during the installation process, the Java folks offered a link to a web page with instructions to change the settings under elevated rights. I made sure to follow them -- hopefully the settings will "stick" now.
And yes, I did not end up with any unwanted toolbars or programs... that I know of!!
Since N360 is coming up clean, and a hosts file is something that you need. I would suggest running Malwarebytes free version for a cross-check. It is safer to use but quite effective. Download it, install, update, and run a full system scan. Are you still getting the intrusion warnings?
I'm using the hosts file included with Spybot Search & Destroy. An on-demand SS&D scan didn't turn up anything, nor did the Microsoft Safety Scanner or the MS Malware Removal Tool.
Glad to see the JPGs came online... I hope I didn't fail to black out any sensitive information there!
Huh, how about that. This Java thing is still pretty mysterious to me (one aspect of computing I haven't been able to put my finger on), but I'm not complaining since everything seems to be working normally now.
I'm glad that cleaning up the old Java and getting it up to date fixed the problem for you. Also, please don't forget to update your Adobe products like Adobe Reader, Flash Player and Shockwave player. Thanks.
Interesting that you should mention Adobe Reader. Just last week I "downgraded" from Reader X to Reader 9 because the Search function (Ctrl-F) was completely screwed up. It was highlighting random results -- totally useless.
So I went back to version 9, and it found the right strings in the same PDF files. Then I let it update to 9.4.5 and, while it still does find the items I ask it to, it no longer highlights them. I have to look carefully on the screen to find the thin blinking cursor.
Foxit Reader is looking better and better all the time. The interface isn't as sleek, but the program does what I need it to do -- correctly.