|
From: Genopre - Thomas Inskip <[EMAIL PROTECTED]>
Subject: THEY SAY THE TEDDY BEAR VIRUS IS A HOAX Date: Monday, May 20, 2002 6:33 PM From: Tom and Eleanor <[EMAIL PROTECTED] Monday, May 20, 2002
Now we are being told that the Teddy Bear virus is a hoax. Here are three responses. Sorry for any problems this caused. Tom will be back this evening and I will share all this information with him. Eleanor RESPONSE #1
From: Michael Dorffler <[EMAIL PROTECTED]> To: Genopre - Thomas Inskip <[EMAIL PROTECTED]> Subject: Re: virus alert Date: Monday, May 20, 2002 10:32 AM I am trying to inform as many as I can that the
'jdbgmgr.exe' virus file is a hoax. I fell for it too and removed the file.
After I learned that this virus warning was a hoax, I simply put the file (a
required Windows System file) back into the Windows\System directory, and all is
well - no apparent damage.
RESPONSE #2
From: Ben <[EMAIL PROTECTED]> To: Genopre - Thomas Inskip <[EMAIL PROTECTED]> Subject: Re: Virus warning Date: Monday, May 20, 2002 10:42 AM TOM -- I have received several emails from various
people letting me know that the virus alert about the teddy bear is actually a
HOAX - I deleted the file only to find out that it is an original windows file.
Below are two of the replies I received from GOOD friends: Sorry about that. In
my version of Windows Millennium, the file reappeared but in Windows 98. it did
not.
I believe the virus you are talking about is not a
virus at all, but a virus hoax. Sometimes the hoax is as bad as a real
virus because people follow the instructions in the hoax email. The
following link talks about this hoax.
Whenever you "think" you have a virus - search for the virus information online. In this case, it's a hoax, see the below url. RESPONSE #3 From: Gaspardo, Christine <[EMAIL PROTECTED]> To: 'Genopre - Thomas Inskip' <[EMAIL PROTECTED]> Subject: RE: virus alert Date: Monday, May 20, 2002 10:06 AM Dear Tom and Eleanor: Thank you for the
message sent to
<mailto:[EMAIL PROTECTED]> [EMAIL PROTECTED] regarding a virus alert. I have attached an excerpt from symantec.com that explains that this virus is a hoax. It is getting you to delete a needed windows file. The following link will take you Symantec's site and explain it in greater detail, it will also give you instructions on how to restore the file. http://securityresponse.symantec.com/avcenter/venc/data/jdbgmgr.exe.file.hoa x.html <http://securityresponse.symantec.com/avcenter/venc/data/jdbgmgr.exe.file.ho ax.html> Thank you, FROM SYMANTEC WEBSITE...
Symantec Security Response encourages you to ignore any messages regarding this hoax. It is harmless and is intended only to cause unwarranted concern. Type: <http://securityresponse.symantec.com/avcenter/refa.html#hoax> Hoax technicaldetails technical details
<http://securityresponse.symantec.com/avcenter/graphics/ssrc/writeups/sectio
n_title_technical.gif> This is a hoax that, like the
<http://securityresponse.symantec.com/avcenter/venc/data/sulfnbk.exe.warning .html> SULFNBK.EXE Warning hoax, tries to persuade you to delete a legitimate Windows file from your computer. The file that the hoax refers to, Jdbgmgr.exe, is a Java Debugger Manager. It is a Microsoft file that is installed when you install Windows. It has a teddy bear icon as described in the
hoax:
CAUTION: Jdbgmgr.exe, like any file, can become
infected by a virus. One
virus in particular, <http:[EMAIL PROTECTED]> W32.Efortune.31384@mm, targets this file. Norton AntiVirus has provided protection against W32.Efortune.31384@mm since May 11, 2001. NOTE: If you have already deleted the Jdbgmgr.exe
file, some Java applets
may not run correctly. This is not a critical system file. The file version may vary with your operating system and version of Internet Explorer. If you want to restore the file, read the instructions in the How to restore the Jdbgmgr.exefile section at the end of this document. -----Original Message----- From: Genopre - Thomas Inskip [mailto:[EMAIL PROTECTED]] Sent: Monday, May 20, 2002 8:28 AM To: Inskip, Terry; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; [EMAIL PROTECTED]; Imelda C. Velasquez; Humboldt klinikum; Great Planes info; Gorham Printing.com; [EMAIL PROTECTED]; Ft. Benning Information Systems; FARBERWARE Subject: virus alert From: Tom and Eleanor < [EMAIL PROTECTED]
<mailto:[EMAIL PROTECTED]> Sunday, May 19, 2002 We received the same virus warning from two of our friends, Ben < [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> > and Loma Luz Hospital in Belize < [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> > We have Norton Anti-Virus on our machine and it did not detect the teddy bear file. By following the instructions listed below, we found it, and deleted it. Check all your machines. We also found it on our second machine which is not on-line. It had somehow transferred between machines. Suggest you look for it on all your computers. Tom and Eleanor This is the message and the instructions for finding and deleting the offending virus: I discovered today that my computer had picked up a virus through someone else's address book. This is not detected by Norton or McAfee. The virus infects the Address book, stays quite for 14 days then does its damage. It is sent automatically by the address book whether or not I have sent e-mails to you. It is easy to remove as follows: 1. Go to start, Find or Search option 2. In the files/folder option, write the name jdbgmgr.exe 3. Be sure you are searching in your C drive 4. Click "find now" 5 The virus has a little bear icon with the name Jdbgmgr.exe DO NOT OPEN IT 6 Right click on the name (jdbgmgr) and delete it. IF YOU FIND THE VIRUS YOU MUST CONTACT ALL THE PEOPLE IN YOUR ADDRESS BOOK SO THEY CAN ALSO DELETE IT. |
