GlassyClass on mon 27 may 02
http://www.f-secure.com/hoaxes/jdbgmgr.shtml
Hoax Warnings
NAME: jdbgmgr.exe virus hoax
NOTE: On 21st of May 2002, a new virus using this hoax was found. The virus
sends messages coming apparently from Symantec corporation and contains a
warning on the JDBGMGR hoax - plus a virus attached to it.
In April 2002 there appeared a hoax message concerning a new virus that was
reportedly discovered in Windows utility JDBGMGR.EXE. The jdbgmgr is a
standard
windows component that is found in every windows installation, it is used as
Java debugger manager in Microsoft Java runtime engine. We checked several
versions of this utility from Windows installations and found nothing
malicious
in them.
Please ignore this hoax or anything similar warning about jdbgmgr.exe and
don't
pass it on.
If you have deleted jdbgmgr.exe, please see Microsoft knowledgebase article
Q322993 for instructions how to restore your system:
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q322993
Please note that some e-mail worms (for example, Magistr) might sometimes
send
an infected JDBGMGR.EXE in an e-mail attachment, but this infection is
caused
by Magistr not JDBGMGR by itself. So the bottom line is, if you receive
JDBGMGR.EXE or any other windows component by email, it is most probably a
file
infected by a virus. If you find JDBGMGR.EXE from your system directory, it
is
most probably a clean file.
Here's the original hoax message:
http://www.f-secure.com/hoaxes/jdbgmgr.shtml
or
http://www.symantec.com/avcenter/venc/data/jdbgmgr.exe.file.hoax.html
Jdbgmgr.exe file hoax
Reported on: April 12, 2002
Last Updated on: May 21, 2002 at 07:29:25 AM PDT
Symantec Security Response encourages you to ignore any messages regarding
this
hoax. It is harmless and is intended only to cause unwarranted concern.
Type: Hoax
Security Response has received reports of the circulation of a fake email
message purporting to be sent from Symantec with information about this
hoax.
The email has the following characteristics:
From: "Symantec Corporation"
Subject: Virus Hoax Warning
The exact content of the email is unknown at this time. It appears to be
making
use of a known exploit to download possible malicious content from a free
hosting website. More information will be provided as soon as it becomes
available.
----------------------------------------------------------------------------
---
-
This is a hoax that, like the SULFNBK.EXE Warning hoax, tries to persuade
you
to delete a legitimate Windows file from your computer. The file that the
hoax
refers to, Jdbgmgr.exe, is a Java Debugger Manager. It is a Microsoft file
that
is installed when you install Windows.
It has a teddy bear icon as described in the hoax:
CAUTION: Jdbgmgr.exe, like any file, can become infected by a virus. One
virus
in particular, W32.Efortune.31384@mm, targets this file. Norton AntiVirus
has
provided protection against W32.Efortune.31384@mm since May 11, 2001.
NOTE: If you have already deleted the Jdbgmgr.exe file, some Java applets
may
not run correctly. This is not a critical system file. The file version may
vary with your operating system and version of Internet Explorer. If you
want
to restore the file, read the instructions in the How to restore the
Jdbgmgr.exefile section at the end of this document.
----- Original Message -----
From: "Barbara"
Sent: Monday, May 27, 2002 11:20 AM
Subject: Fw: Virus in affecting address book of Carol Silverman
----- Original Message -----
I just recieved this memo and I did have the virus----I deleted it---I am
sorry, but you may have gotten it--please read the following instructins
and
delete from your files as well.
I am very sorry---guess these things just happen..
Sorry, sorry, sorry,
Barb Skelton
Sent: Monday, May 27, 2002 7:50 AM
Subject: Virus in affecting address book of Carol Silverman
We just received this from friends. We checked our C drive and deleted this
virus.
Their address book was infected with a virus and passed on to our computer.
Our
address book, in turn, has been infected. The virus (called jdbgmgr.exe) is
not
detected by Norton or McAfee anti virus systems. The virus sits quietly for
14
days before damaging the system. It's sent automatically by the messenger
and
by the address book, whether or not you sent emails to your contacts. I have
checked it, found it, and deleted it. SO SORRY...
Here's how to check for the virus and how to get rid of it:
DO THIS;
1. Go to start, Find or Search Option
2. In the files/folder option, write the name jdbgmgr.exe
3. Be sure to search your C:drive
4. Click the "find now"
5. The virus has a teddy bear icon with the name jdbgmgr.exe
>DO NOT OPEN IT!!
6. Right click and delete it. It will then go to the Recycle Bin
7. Go to the Recycle Bin and delete it there as well.
>IF YOU FIND THE VIRUS, YOU MUST CONTACT ALL THE PEOPLE IN YOUR ADDRESS BOOK
SO
THEY CAN ERADICATE IT IN THEIR OWN ADDRESS BOOKS. SORRY ABOUT THIS. I'M SURE
EVERYONE IN MY ADDRESS BOOK WILL HAVE IT.
Hope you do not have this, but if you do, please delete it
immediately....Joan
and Dale and Carol Silverman
----------------------------------------------------------------------------
---
-
Get your FREE download of MSN Explorer at http://explorer.msn.com.
| |
|
