1. Skip to navigation
  2. Skip to content
  3. Skip to sidebar







PublicEnemy is a simple Java based trojan that was found in October 1997. The trojan does modifications to any class files that are located in the same directory from which the trojan is executed. PublicEnemy is a trojan not a virus and thus is unable to spread by infecting other Java applications.

Disinfection & Removal

Automatic Disinfection

Allow F-Secure Anti-Virus to disinfect the relevant files.

For more general information on disinfection, please see Removal Instructions.

Technical Details

When run, PublicEnemy searches the current directory for .class files, and modifies them damaging the file. The .class files damaged by PublicEnemy sometimes remain operational, but should still be restored from backups or reinstalled.

Being Java based trojan the PublicEnemy is capable of executing in almost any platform that has Java runtime environment installed. The trojan is capable of executing on Windows and Linux platforms and in PDA devices which have Java runtime installed.

PublicEnemy is not capable of spreading and it has not been met in the wild. As such, it can not be considered a realistic threat.

Technical Details: Jarno Niemela, February 2002, F-Secure

Submit a sample

Wondering if a file or URL is malicious? Submit a sample to our Lab for analysis via the Sample Analysis System (SAS)

Give And Get Advice

Give advice. Get advice. Share the knowledge on our free discussion forum.