Quote:
Originally posted by BrianR
I did delete the infected file, but I don't have a new copy so I'm going to download the whole enchilada.
|
A new copy of what? If the file in question was in Temporary Internet Content, you don't really want to replace it, that's just a cache.
Apparently this is an exploit based on security holes in IE, so you'd probably better get current on your IE patches soon, too. How this works is: the old MS Java support accidently gave Java applets the ability to create and maniplulate ActiveX programs. The big advantage Java applets have over ActiveX is that what applets can do has always been carefully controlled, but MS dropped the ball and gave their version of Java all the security problems that ActiveX has. (That's one reason you don't hear a lot about ActiveX anymore).
It's good to see MS getting burned themselves by exactly the chicanery which was the reason they lost their Java licence: insisting on putting Windows-only stuff in it in direct violation of the agreement they had with Sun.
The entry at Symantec says NAV is supposed to be able to clean this thing up...but if you don't close the hole in your IE you'll get reinfected if you go back to the site that nailed you in the first place.