VIRUS INFO (HOAX)

bama55

Sorry Niner, I checked one site and didn't find any info on it.
Will check further next time.

Edited by - bama55 on 08/28/2002 00:48:09

RugerNiner

THIS IS A HOAX!
Do not Delete this File!

Remember...Terrorist are attacking Civilians; Not the Government. Protect Yourself!

RugerNiner

Virus Hoax Spreads by E-Mail

False warning urges users to delete Java file that they actually need.

Gillian Law, IDG News Service


An e-mail hoax pretending to be a virus warning has been playing on users' fears and causing them to delete their Java Debugger Manager file, called jdbgmgr.exe, by telling them it's a virus, Symantec says Friday.

Symantec's security response staff have been dealing with calls all week, senior researcher Andre Post says Friday. Many say they have deleted the file "just to be cautious" and have to be told how to reinstall it, Post says.


Advertisement




The fake advisory claims that the file is a virus that is spread through address books and will damage the PC after sitting quietly for 14 days. It is usually easy to spot such hoaxes because they tend to have no attachment, say the virus is very destructive, and end in an appeal to send it to everyone you know, Post says.

"And capitalization rules. In this one for example, the final appeal is all in capitals," he says.

Check It Out

If in doubt, Post says, people should check the list of hoaxes on Symantec's Web site. At the moment most people don't, and just pass them on as directed.

"These e-mails are very successful. Generally as soon as it starts, you see it spread and get translated into different languages," Post says.

However, Symantec only discovers around one hoax a week, which is minimal in comparison to the 10 to 20 real viruses discovered, Post says.

It is hard to identify who starts this type of e-mail, but they are presumably non-technical, or would create their own virus instead, Post says. "And a high proportion appear to be Dutch! I don't know why," he says.




Remember...Terrorist are attacking Civilians; Not the Government. Protect Yourself!

RugerNiner

JDBGMGR
Type
Virus hoax

Description
JDBGMGR.EXE is the Microsoft Debugger Registrar for Java. The program uses an icon of a grey teddybear. Some versions of the hoax misreport the name of this file as JDBMGR.EXE or JBDGMGR.EXE.

Although it is possible for the file to be infected by a virus, it has also been the subject of a hoax.

Note: The W32/Magistr-A virus is known to infect the file JDBGMGR.EXE (this is unconnected with the hoax) so Sophos recommends users delete the file if they ever receive it as an email attachment.

This hoax is very similar to the SULFNBK hoax. It has been reported in English, French, Italian, Spanish, Dutch, German, Polish, Danish and other languages.

Here is the text of the hoax in English:

I found the little bear in my machine because of that I am sending this message in order for you to find it in your machine. The procedure is very simple:

The objective of this e-mail is to warn all Hotmail users about a new virus that is spreading by MSN Messenger. The name of this virus is jdbgmgr.exe and it is sent automatically by the Messenger and by the address book too. The virus is not detected by McAfee or Norton and it stays quiet for 14 days before damaging the system.
The virus can be cleaned before it deletes the files from your system. In order to eliminate it, it is just necessary to do the following steps:
1. Go to Start, click "Search"
2.- In the "Files or Folders option" write the name jdbgmgr.exe
3.- Be sure that you are searching in the drive "C"
4.- Click "find now"
5.- If the virus is there (it has a little bear-like icon with the name of jdbgmgr.exe DO NOT OPEN IT FOR ANY REASON
6.- Right click and delete it (it will go to the Recycle bin)
7.- Go to the recycle bin and delete it or empty the recycle bin.

IF YOU FIND THE VIRUS IN ALL OF YOUR SYSTEMS SEND THIS MESSAGE TO ALL OF YOUR CONTACTS LOCATED IN YOUR ADDRESS BOOK BEFORE IT CAN CAUSE ANY DAMAGE.




Remember...Terrorist are attacking Civilians; Not the Government. Protect Yourself!

Iconoclast

bama55, treat any warning of a virus which does not originate from McAfee or Norton with skepticism & check their sites before deleting any file your particular AV app does not automatically flag as malware. It is much easier and almost as disruptive to put out a rumor depicting a required element of your system as being malware as it is to write something which could actually slip past your electronic guardians . . . of course that presupposes one has a good AV app with current definitions. This electronic vandalism plays on the publicity associated with real viruses to exploit the general public, many of whom have less than full confidence in their knowledge of computer operations and react accordingly. Trust your AV app if it is current - these people make lots of money hawking apps to protect the public; if they miss something like this, they can kiss their stock options good-bye. Not saying it couldn't happen, but it's more likely the Red Sox & Cubs will play in the Series this fall.

pickenup

If people would bother to look when they get these hoaxs, and fine these files, they would notice that these files have been in their computer for years. I have to laugh when they say it is going to do anything in the next 14 days. ROFLMFAO

If I knew then, what I know now.