| Removing malicious Java code is a snap if you can identify it by name or know its location. Otherwise it is best to leave the disinfecting up to automated programs or the professionals. - Use an antivirus scanner
-
If your antivirus scanner detected the malicious applet, let it delete it. - Delete the malicious Java applet
-
If you can identify the malicious applet by name, locate it and delete it. To access the object list in Internet Explorer 5.x, choose Tools InternetOptions General Settings View Objects. Then you can then select the object and choose File Remove Program File. If the object is being used, you might have to manually delete the physical files in order to remove it. Usually active content objects are located in C:\WINDOWS\Downloaded Program Files or CLASSPATH subdirectories. The Dependency tab will reveal the other related files that can be deleted as long as no other objects depend on them. You might have to exit Internet Explorer, reboot Windows, and delete the necessary files prior to the starting your browser. - Restore from backup
-
As with any other type of exploit that you cannot be sure if it is 100 percent removed, it is best to delete or format the system and restore from a clean backup. |