Guest AndyHancock Posted June 9, 2008 Posted June 9, 2008 Avast detected "c:\Program Files\Java\jre1.6.0_01\bin\jucheck.exe". This is also a legitimate file, but googling shows a worm also masquerades with that name. How can one tell whether it is the legitimate one or worm? Quote
Guest AndyHancock Posted June 9, 2008 Posted June 9, 2008 On Jun 8, 8:23 pm, AndyHancock <AndyMHanc...@gmail.com> wrote:<span style="color:blue"> > Avast detected "c:Program FilesJavajre1.6.0_01binjucheck.exe". > This is also a legitimate file, but googling shows a worm also > masquerades with that name. How can one tell whether it is the > legitimate one or worm?</span> I found this thread at "http://forum.avast.com/index.php? topic=36183.0". I guess I'll migrate there for this thread, though one needs an account on that forum to participate. Quote
Guest MowGreen [MVP] Posted June 9, 2008 Posted June 9, 2008 IIRC, that is an older, vulnerable version of Sun's JRE, Andy. Strongly suggest that you uninstall ALL older, vulnerable Versions from Add/Remove Programs in the Control Panel. If you want the latest so-called secure Version, click the Download button next to Java Runtime Environment (JRE) 6 Update 6 on this page: http://java.sun.com/javase/downloads/index.jsp Me, I don't trust Sun and none of their runtimes are installed here nor on any of my other systems. MowGreen [MVP 2003-2008] =============== -343- FDNY Never Forgotten =============== AndyHancock wrote: <span style="color:blue"> > Avast detected "c:Program FilesJavajre1.6.0_01binjucheck.exe". > This is also a legitimate file, but googling shows a worm also > masquerades with that name. How can one tell whether it is the > legitimate one or worm?</span> Quote
Guest David H. Lipman Posted June 9, 2008 Posted June 9, 2008 From: "AndyHancock" <AndyMHancock@gmail.com> | Avast detected "c:\Program Files\Java\jre1.6.0_01\bin\jucheck.exe". | This is also a legitimate file, but googling shows a worm also | masquerades with that name. How can one tell whether it is the | legitimate one or worm? You can usually tell from where it is executed from as long as the file was not replaced or Trojanized. f you are using any version of Sun Java that is prior to JRE Version 6.0, then you are strongly urged to remove any/all versions. There are numerous vulnerabilities in them and they are actively being exploited. It is highly suggested that you update to the latest version which is Sun Java JRE/JSE Version 6.0 update 6 (jre 6u5) Simple check, look under... C:\Program Files\Java The only folder under that folder should be the latest version. Such as... C:\Program Files\Java\jre1.6.0_06 http://java.sun.com/javase/downloads/index.jsp http://www.java.com/en/download/manual.jsp FYI: http://sunsolve.sun.com/search/document.do...y=1-26-102557-1 http://sunsolve.sun.com/search/document.do...y=1-26-102622-1 http://sunsolve.sun.com/search/document.do...y=1-26-102648-1 http://sunsolve.sun.com/search/document.do...y=1-26-102729-1 http://sunsolve.sun.com/search/document.do...y=1-26-102732-1 http://sunsolve.sun.com/search/document.do...y=1-26-102760-1 -- Dave http://www.claymania.com/removal-trojan-adware.html Multi-AV - http://www.pctipp.ch/downloads/dl/35905.asp Quote
Guest AndyHancock Posted June 13, 2008 Posted June 13, 2008 On Jun 8, 8:23 pm, AndyHancock <AndyMHanc...@gmail.com> wrote:<span style="color:blue"> > Avast detected "c:Program FilesJavajre1.6.0_01binjucheck.exe". > This is also a legitimate file, but googling shows a worm also > masquerades with that name. How can one tell whether it is the > legitimate one or worm?</span> On Jun 9, 4:17 pm, "MowGreen [MVP]" <mowgr...@nowandzen.com> wrote:<span style="color:blue"> > IIRC, that is an older, vulnerable version of Sun's JRE, Andy. > Strongly suggest that you uninstall ALL older, vulnerable Versions > from Add/Remove Programs in the Control Panel. If you want the > latest so-called secure Version, click the Download button next to > Java Runtime Environment (JRE) 6 Update 6 on this > page:http://java.sun.com/javase/downloads/index.jsp > > Me, I don't trust Sun and none of their runtimes are installed here > nor on any of my other systems.</span> On Jun 9, 4:24 pm, "David H. Lipman" <DLipman~nosp...@Verizon.Net> wrote:<span style="color:blue"> > From: "AndyHancock" <AndyMHanc...@gmail.com> > > | Avast detected "c:Program > FilesJavajre1.6.0_01binjucheck.exe". | This is also a > legitimate file, but googling shows a worm also | masquerades with > that name. How can one tell whether it is the | legitimate one or > worm? > > You can usually tell from where it is executed from as long as the > file was not replaced or Trojanized. > > f you are using any version of Sun Java that is prior to JRE Version > 6.0, then you are strongly urged to remove any/all versions. There > are numerous vulnerabilities in them and they are actively being > exploited. > > It is highly suggested that you update to the latest version which > is Sun Java JRE/JSE Version 6.0 update 6 (jre 6u5) > > Simple check, look under... C:Program FilesJava > > The only folder under that folder should be the latest version. > > Such as... C:Program FilesJavajre1.6.0_06 > > http://java.sun.com/javase/downloads/index...load/manual.jsp > > FYI:http://sunsolve.sun.com/search/document.do...y=1-26-102760-1</span> On Jun 8, 8:43 pm, AndyHancock <AndyMHanc...@gmail.com> wrote:<span style="color:blue"> > I found this thread at "http://forum.avast.com/index.php? > topic=36183.0". I guess I'll migrate there for this thread, though > one needs an account on that forum to participate.</span> MowGreen, David, Thank you for the warning. Will action your advice. Similar advice was provided at the Avast forum, thread http://forum.avast.com/index.php?topic=36183.0 Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.