jucheck.exe

A

AndyHancock

Guest
Avast detected "c:\Program Files\Java\jre1.6.0_01\bin\jucheck.exe".

This is also a legitimate file, but googling shows a worm also

masquerades with that name. How can one tell whether it is the

legitimate one or worm?

 
A

AndyHancock

Guest
On Jun 8, 8:23 pm, AndyHancock <AndyMHanc...@gmail.com> wrote:<span style="color:blue">

> Avast detected "c:program FilesJavajre1.6.0_01binjucheck.exe".

> This is also a legitimate file, but googling shows a worm also

> masquerades with that name. How can one tell whether it is the

> legitimate one or worm?</span>

I found this thread at "http://forum.avast.com/index.php?

topic=36183.0". I guess I'll migrate there for this thread, though

one needs an account on that forum to participate.

 
M

MowGreen [MVP]

Guest
IIRC, that is an older, vulnerable version of Sun's JRE, Andy.

Strongly suggest that you uninstall ALL older, vulnerable Versions

from Add/Remove Programs in the Control Panel.

If you want the latest so-called secure Version, click the Download

button next to Java Runtime Environment (JRE) 6 Update 6 on this page:

http://java.sun.com/javase/downloads/index.jsp

Me, I don't trust Sun and none of their runtimes are installed here nor

on any of my other systems.

MowGreen [MVP 2003-2008]

===============

-343- FDNY

Never Forgotten

===============

AndyHancock wrote:

<span style="color:blue">

> Avast detected "c:program FilesJavajre1.6.0_01binjucheck.exe".

> This is also a legitimate file, but googling shows a worm also

> masquerades with that name. How can one tell whether it is the

> legitimate one or worm?</span>

 
D

David H. Lipman

Guest
From: "AndyHancock" <AndyMHancock@gmail.com>

| Avast detected "c:\Program Files\Java\jre1.6.0_01\bin\jucheck.exe".

| This is also a legitimate file, but googling shows a worm also

| masquerades with that name. How can one tell whether it is the

| legitimate one or worm?

You can usually tell from where it is executed from as long as the file was not replaced or

Trojanized.

f you are using any version of Sun Java that is prior to JRE Version 6.0,

then you are strongly urged to remove any/all versions.

There are numerous vulnerabilities in them and they are actively being exploited.

It is highly suggested that you update to the latest version which is Sun Java JRE/JSE

Version 6.0 update 6 (jre 6u5)

Simple check, look under...

C:\Program Files\Java

The only folder under that folder should be the latest version.

Such as...

C:\Program Files\Java\jre1.6.0_06

http://java.sun.com/javase/downloads/index.jsp

http://www.java.com/en/download/manual.jsp

FYI:

http://sunsolve.sun.com/search/document.do...y=1-26-102557-1

http://sunsolve.sun.com/search/document.do...y=1-26-102622-1

http://sunsolve.sun.com/search/document.do...y=1-26-102648-1

http://sunsolve.sun.com/search/document.do...y=1-26-102729-1

http://sunsolve.sun.com/search/document.do...y=1-26-102732-1

http://sunsolve.sun.com/search/document.do...y=1-26-102760-1

--

Dave

http://www.claymania.com/removal-trojan-adware.html

Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp

 
A

AndyHancock

Guest
On Jun 8, 8:23 pm, AndyHancock <AndyMHanc...@gmail.com> wrote:<span style="color:blue">

> Avast detected "c:program FilesJavajre1.6.0_01binjucheck.exe".

> This is also a legitimate file, but googling shows a worm also

> masquerades with that name. How can one tell whether it is the

> legitimate one or worm?</span>

On Jun 9, 4:17 pm, "MowGreen [MVP]" <mowgr...@nowandzen.com> wrote:<span style="color:blue">

> IIRC, that is an older, vulnerable version of Sun's JRE, Andy.

> Strongly suggest that you uninstall ALL older, vulnerable Versions

> from Add/Remove Programs in the Control Panel. If you want the

> latest so-called secure Version, click the Download button next to

> Java Runtime Environment (JRE) 6 Update 6 on this

> page:http://java.sun.com/javase/downloads/index.jsp

>

> Me, I don't trust Sun and none of their runtimes are installed here

> nor on any of my other systems.</span>

On Jun 9, 4:24 pm, "David H. Lipman" <DLipman~nosp...@Verizon.Net>

wrote:<span style="color:blue">

> From: "AndyHancock" <AndyMHanc...@gmail.com>

>

> | Avast detected "c:program

> FilesJavajre1.6.0_01binjucheck.exe". | This is also a

> legitimate file, but googling shows a worm also | masquerades with

> that name. How can one tell whether it is the | legitimate one or

> worm?

>

> You can usually tell from where it is executed from as long as the

> file was not replaced or Trojanized.

>

> f you are using any version of Sun Java that is prior to JRE Version

> 6.0, then you are strongly urged to remove any/all versions. There

> are numerous vulnerabilities in them and they are actively being

> exploited.

>

> It is highly suggested that you update to the latest version which

> is Sun Java JRE/JSE Version 6.0 update 6 (jre 6u5)

>

> Simple check, look under... C:program FilesJava

>

> The only folder under that folder should be the latest version.

>

> Such as... C:program FilesJavajre1.6.0_06

>

> http://java.sun.com/javase/downloads/index...load/manual.jsp

>

> FYI:http://sunsolve.sun.com/search/document.do...y=1-26-102760-1</span>

On Jun 8, 8:43 pm, AndyHancock <AndyMHanc...@gmail.com> wrote:<span style="color:blue">

> I found this thread at "http://forum.avast.com/index.php?

> topic=36183.0". I guess I'll migrate there for this thread, though

> one needs an account on that forum to participate.</span>

MowGreen, David,

Thank you for the warning. Will action your advice. Similar advice

was provided at the Avast forum, thread

http://forum.avast.com/index.php?topic=36183.0

 
You must log in or register to reply here.
Top Bottom