Hi, I hope this is the right place to ask this question.
My McAfee virus scan keeps repeatedly and randomly detecting these two Java exploits. It has almost never found anything in the past, so to have these coming up on a regular basis is pretty alarming. My copy of Java is the latest and I have deleted all older versions.
Sometimes it can go for a day or two without finding them, sometimes one comes back after rebooting the computer. I've researched removing them, but I can't find any evidence of them myself. I never find any unusual processes running in Task Manager, and I can't find any unsual keys in the registry locations that the various help sites tell me to check.
Unfortunately I did pick up one of the Moneypak ransomware scams about a month ago, and I'm worried it might have created a vulnerability in my system. I removed it via System Restore, checked for unusual processes and registry keys, and ran scans with both McAfee and Malwarebytes. Everything looked clean, so I figured it was okay.
My computer is not acting strange, and being unable to find anything beyond what McAfee says makes me wonder if they are false positives, but I don't want to chance it. Is there anything else I should check?
Moved this to Malware Discussion as a more appropriate spot.
You might want to follow either the Hijackthis or the DDS routine laid out near the end of the last link in my signature below, as a precaution. There may be remnants of your Moneypak malware lingering.
Thank you for the quick response!
I've run Hijackthis and will post the log on one of the message boards listed. But from my own inspection of the log I don't see anything I don't recognize....
That could be, it didn't really start happening until a week or two after I got it. What other steps should I take? It seems like too much of a security risk to just ignore.
Is it giving paths to where these items are on the hard drive?
Are they appearing in the Quarantine folders (Navigation > Quarantine and Trusted Items)
If so temporarily disable the antivirus, reinstate them and then report them as possible false findings to McAfee, see what they say to that: see: https://community.mcafee.com/thread/2016