Date: Tue, 24 Sep 2002 13:33:05 -0400 Reply-To: Maryland Birds & Birding Sender: Maryland Birds & Birding From: "Wilkerson, Jordan T." Subject: HOAX!!! was: Please DO Action this--Important! MIME-Version: 1.0 Content-Type: text/plain; charset="ISO-8859-1" MDOsprey. Please, please PLEASE! go to any antivirus website and CONFIRM these are not hoaxes before sending some important message to everyone in your address book! Below is the text from McAfee's Hoax page about this particular message... This email message is just a HOAX. Although, the JDBGMGR.EXE file may become infected by a number of valid viruses (most commonly W32/Magistr@MM), the details of this HOAX message are not based on actual events. We are advising users who receive the email to delete the message and DO NOT pass it on as this is how an email HOAX propagates. JDBGMGR.EXE is the Microsoft Debugger Registrar for Java. In the event that this file has already been deleted, see the Removal Instructions on how to restore this file. It uses this icon: Jordan Wilkerson Cloverly, MD Montgomery County jordan.wilkerson@jhuapl.edu jandk@jordanandkaren.com -----Original Message----- From: Carol /Oscar Ghebelian [mailto:gheb@BELLATLANTIC.NET] Sent: Tuesday, September 24, 2002 1:34 PM To: MDOSPREY@HOME.EASE.LSOFT.COM Subject: [MDOSPREY] Please DO Action this--Important! Someone has infected my system which is passed on through an address book, and am afraid has been passed on to you. Easy to delete, just follow instructions below. SO SORRY--mea culpa. Carol Ghebelian Indian Head, MD gheb@bellatlantic.net I found this in my system.Please check yours. Our computer has been infected with a virus from one of our contacts. As a result, so has yours because your address is in our book. The virus is called jdbgmgr.exe. It cannot be detected by Norton or McAfee anti-virus programs. > It sits quietly for 14 days before damaging the system. It is sent > automatically by messenger and by the address book, whether or not you send > e-mails. In essence, because you are in our address book, you are most > likely to be infected. Sorry. I followed the instructions below and it was > easy to get rid of. I did a file search and it showed up in the > Windows/system32 file. > To get rid of the virus: > 1. Go to start, then find Search > 2. in Files/Folders, write the name jdbgmgr.exe > 3. Be sure to search in your C drive > 4. Click Find or Search > 5. The virus has a teddy bear logo with the name jdbgmgr.exe DO NOT OPEN > IT!! > 6. Right click and delete it > 7. Go to the recycle bin and delete it there too > NOTE: IF YOU FIND THE VIRUS, YOU MUST CONTACT EVERYONE IN YOUR ADDRESS BOOK. > Sorry to be the "bearer" of bad news, but it was very easy to get rid of. > If you don't see the teddy bear, then you don't have the virus. ======================================================================= To leave the MDOsprey list, send e-mail to listserv@home.ease.lsoft.com with the following message in line 1: signoff mdosprey ======================================================================= ======================================================================= To leave the MDOsprey list, send e-mail to listserv@home.ease.lsoft.com with the following message in line 1: signoff mdosprey ======================================================================= =========================================================================