Thursday, July 31, 2008

Horrible, No-Good, Nasty, Worst-Ever Virus

Quick! Tell Everyone You Know And Even People You Don't Know

By Tony Bradley, CISSP-ISSAP, About.com

  • If you receive an email entitled "Bedtimes" delete it IMMEDIATELY. Do not open it. Apparently this one is pretty nasty. It will not only erase everything on your hard drive, but it will also delete anything on disks within 20 feet of your computer.

    It demagnetizes the strips on ALL of your credit cards. It reprograms your ATM access code and screws up the tracking on your VCR and uses subspace field harmonics to scratch any CD's you attempt to play. It will program your phone auto dial to call only 900 numbers. This virus will mix antifreeze into your fish tank.

    IT WILL CAUSE YOUR TOILET TO FLUSH WHILE YOU ARE SHOWERING.

    It will drink ALL your beer. FOR GOD'S SAKE, ARE YOU LISTENING?? It will leave dirty underwear on the coffee table when you are expecting company! It will replace your shampoo with Nair and your Nair with Rogaine.

    If the "Bedtimes" message is opened in a Windows 95/98 environment, it will leave the toilet seat up and leave your hair dryer plugged in dangerously close to a full bathtub.

    It will not only remove the forbidden tags from your mattresses and pillows, it will also refill your Skim milk with whole milk.

    ******* WARN AS MANY PEOPLE AS YOU CAN. *******

    And if you don't send this to 5000 people in 20 seconds, you'll fart so hard that your right leg will spasm and shoot straight out in front of you ,sending sparks that will ignite the person nearest you. Send to everyone.

    For those who may not have caught on yet- THIS IS A JOKE!

I received the joke hoax above from a friend and thought it illustrated the point well. It sounds ridiculous, doesn't it? Of course you wouldn't fall for that. Even if you were hooked into thinking that maybe there really is something called "subspace field harmonics" that can scratch your CD's from afar, you hopefully realized that this was a joke by the time you got to the part about it drinking all of your beer.

While this is an extreme example, it isn't that far off from some of the chain-mail and spam hoaxes that people fall for every day. The little boy in England dying of cancer does not want you to send him any more greeting cards. Congress will not be voting any day now on a bill to implement a modem tax. Neither Microsoft nor Disney has implemented any next-generation email tracking system that will make you rich if you just forward the email.
So- the joke cited above may be a little on the extreme side, but the fact of the matter is that people receive these messages frequently and for whatever reason- superstition, gullibility or just because they think its humorous- they propagate it to everyone they know and continue clogging the email boxes of the world with more junk.

Have you ever seen this message:

  • BlankA virus has been passed to me by a contact. Our address book in turn has been affected. Since you are in our address book there is a good chance you will find it in your computer too.

    We followed the direction below and eradicated the virus easily. The virus (called jdbgmgr.exe) is not detected by Norton or McAfee anti-virus systems (nor OnTrack). The virus sits quietly for 14 days before damaging the system.

    It is sent automatically by messenger and by the address book whether or not you sent emails to your contacts.

    Here is how you check for the virus and get rid of it.

    1. Go to start, then: find or search option.
    2. In the file/folders option, type the name: jdbgmgr.exe
    3. Be sure to search your C: drive and all the subfolders and any other drives you may have.
    4. Click "find now"
    5. The virus has a teddy bear icon with the name jdbgmgr.exe. DO NOT OPEN IT
    6. Go to Edit (on the menu bar), choose "select all" to highlight the file without opening it.
    7. Now go to File (on the menu bar) and select delete. It will then go to the recycle bin.

    IF YOU FIND THIS VIRUS,YOU MUST CONTACT ALL THE PEOPLE IN YOUR ADDRESS BOOK SO THEY CAN ERADICATE IT IN THEIR OWN ADDRESS BOOKS.

    To do this: (a) Open a new e-mail message (b) Click on the icon of the address book next to the "TO" (c) Highlight every name and add to "BCC" (d) Copy this message above and paste to e-mail. (e) Enter subject

Or, maybe you received a version that looks like this:

  • Subject: Virus Alert

    A virus has been passed to our computers. As your contact is in our address book, you may have received this virus from me as well.

    Please see the instructions below to delete and pass on to your contacts. The virus (called jdbgmgr.exe) is not detected by Norton or McAfee or F-secure or VET anti virus systems. The virus sits quietly for 14 days before damaging the system. It's sent automatically by messenger and by the address book whether or not you send e-mails to your contacts.

    Here's how to check for the virus and how to get rid of it.

    Thanks

    YOU MUST DO THIS -

    1. Go to start (bottom left corner), find the search option (or "find").
    2. In the files / folders option, write the name jdbgmgr.exe
    3. Be sure to search your C: drive and any other drives you may have.
    4. Click "find now"
    5. The virus has a teddy bear icon with the name jdbgmgr.exe DO NOT OPEN IT.
    6. Go to edit : choose "select all" to highlight the file without opening it.
    7. Now go to file and select "delete". It will go to your recycle bin.
    8. Go to your recycle bin and delete it there as well.

    IF YOU FIND THE VIRUS YOU MUST CONTACT ALL THE PEOPLE IN YOUR ADDRESS BOOK SO THEY CAN ERADICATE IT IN THEIR OWN ADDRESS BOOKS. SORRY ABOUT THIS. I'm SURE EVERYONE IN THE ADDRESS BOOK WILL HAVE IT.

    To do this open new email message, click the photo of the address book next to TO. Click every name and add to BCC. Copy this message, enter subject, paste to email, send.

These are two versions of the JDBGMGR Teddy Bear Hoax message. Yes, there is a file on most Windows computers called JDBGMGR.exe and, yes, it does have a teddy bear icon associated with it. However, it is a standard file and not the result of any virus or other malware.

For the record, if you did happen to delete the JDBGMGR.exe file, you probably have nothing to worry about. It is only necessary for Java developers. Here is a message from Microsoft about it:

  • The Microsoft Debugger Registrar for Java (Jdbgmgr.exe) is only used by Microsoft Visual J++ 1.1 developers.

    If you follow the e-mail message instructions and delete this file, you do not have to recover it unless you use Microsoft Visual J++ 1.1 to develop Java programs on Windows XP, Windows NT 4.0, Windows 98 Second Edition, Windows 98, or Windows 95.

    For Windows XP, Windows NT 4.0, Windows 98 Second Edition, Windows 98, and Windows 95: Reinstall Microsoft Virtual Machine (Microsoft VM).

The bottom line is this- if a message implores you to send it on to everyone you know there is a 99.9% chance it is a hoax or some other form of spam. Before you fall victim and continue the cycle of ridiculously meaningless email being propagated around the world, try validating the truth of the message at a site like the Snopes.com Urban Legends References or the About.com Antivirus Hoax Encyclopedia.

No comments:

How to Get files from the directory - One more method

 import os import openpyxl # Specify the target folder folder_path = "C:/Your/Target/Folder"  # Replace with the actual path # Cre...