Enter your Keyword, Search here,

Manual Removal of Java.exe

Java.exe (Java)
The process called java.exe, is used to run programs written in the Java language. Terminating this process will end any java programs that are running at the time. If you find that it is causing problems from your system, you should terminate it.java.exe is an application that does NOT appear to be a security risk.
The Process Server database currently registers java.exe to Sun Microsystems.
This is part of Java Runtime. java.exe is related to javaw.exe, jucheck.exe, jusched.exe,
Whenever you have a concern about a file like java.exe, feel free to visit our Anonymous Surfing section to help verify your file you are not giving away too much personal information.
The Process Server database is updated often, but inaccuracies may still exist, often caused by viruses named after valid files such as Java. Always verify your results just to play it safe.

Damage Level: Low
Distribution Level: High

Manual Removal Instructions
Recommend Removal from Safe Mode:
How to Start in Safe mode:
Restart your Computer, Press F8 when your Screen turns on, Select Safe mode, press enter.


The Infected Files Can be Seen in these folders and names
Kill the following processes and delete the appropriate files:
Win32.MyDoom.M@mm Free Removal tool

Presence of the following registry key:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\JavaVM
with the following value:
%WINDIR%java.exe


Presence of the following files:

%WINDIR%java.exe
%WINDIR%services.exe


The port 1034 is listening for incoming connections.
This is an internet worm that spreads trough e-mail. When it is run it adds the following registry key:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\JavaVM
%WINDIR%java.exe


It copies itself to %WINDIR%java.exe
where %WINDIR% is a variable representing the Windows directory.


It drops the following file: %WINDIR%services.exe, that is detected by BitDefender as Backdoor.Mydoom.M


It tries to terminate some programs that have windows with the following names: rctrl_renwnd32, ATH_Note, IEFrame.

Close Registry Editor.
Restart your PC.

Recommended Removal Tools:
Kaspersky Antivirus or Internet Security (Shareware)
Spyware Doctor (Shareware)
AVG Antivirus (Freeware)
Hijackthis (Freeware)

No comments :

Post a Comment

Comment on this Post!!

More Posts that you may be interested...