- Virus Alert: Dasmin Trojan Lingers:

Images Events Jobs Premium Services Media Kit

Network Map

E-mail Offers

Vendor Solutions

Webcasts

eSecurity subjects:

Online Threats & Alerts

Vulnerability & Virus Patches

Information Security Resources

Information Security Trends

Security Advisors

Prevention & Risk Management

Security Best Practices

Videos

Glossary

Products

Site Map

About eSecurity Planet

IT Management Blog

Technology Jobs

E-Security Planet Webcasts:


	Keeping Your Data Secure from the Outside In

	Beyond Basic Data Security

	more Webcasts...

Search EarthWeb Network

internet.commerce

Be a Commerce Partner

esecurityplanet : Online Threats & Alerts: Virus Alert: Dasmin Trojan Lingers

Related Articles

•Virus Alert: Dasmin Arrives

eSecurity Glossary

biometrics
encryption
keylogger
malware
phishing
RFID
security
spyware
virus
worm

Search for more eSecurity terms ...

FREE Tech Newsletters

Virus Alert: Dasmin Trojan Lingers
January 21, 2003
By eSecurityPlanet Staff

The UPX-packed Trojan, Dasmin, is installing itself to Windows System folder as two separate files:

jdbgmrg.exe
avirchk.exe

Worth noting is that the Trojan uses the "jdbgmrg.exe" name, which is quite close to the name of a common Windows component: "jdbgmgr.exe" (Java Debug Manager). Also, one Jdbgmgr hoax variant that was widespread in May 2002 had a typo -- the "jdbgmrg.exe" file name mentioned there should have read "jdbgmgr.exe".

The Dasmin trojan uses the same teddy bear icon that looks exactly like the icon of JDBGMBR.EXE file.

The Trojan creates autostartup keys for itself in the Registry. It also changes startup and search pages of Internet Explorer.

To disinfect a system simply kill Trojan's tasks from Task Manager and to delete both Trojan's files from a hard drive.

To find out about the different variants and aliases the Trojan is using, visit this F-Secure page.

Compiled by Esther Shein.

Tools:

Add www.esecurityplanet.com to your favorites

Add www.esecurityplanet.com to your browser search box
IE 7 | Firefox 2.0 | Firefox 1.5.x
Receive news via our XML/RSS feed

Online Threats & Alerts Archives

Search:

Jupitermedia Corporation has two divisions: Jupiterimages and JupiterOnlineMedia

Jupitermedia Corporate Info

Legal Notices, Licensing, Reprints, & Permissions, Privacy Policy.

Advertise | Newsletters | Tech Jobs | Shopping | E-mail Offers

Solutions

Whitepapers and eBooks
Symantec eBook: The Guide to E-Mail Archiving and Management Microsoft Article: RODCs Transform Branch Office Security Avaya Article: Advancing the State of the Art in Customer Service Microsoft Article: Security Enhancements Abound in Windows Server 2008 Adobe Acrobat Connect Pro: Web Conferencing and eLearning Whitepapers		Avaya Article: Avaya AE Services Provide Rapid Telephony Integration with Facebook Intel Go Parallel Article: Getting Started with TBB on Windows Intel Go Parallel Article: Intel Threading Tools and OpenMP HP eBook: Storage Networking , Part 1 MORE WHITEPAPERS, EBOOKS, AND ARTICLES

Webcasts
HP Webcast: Disaster Recovery Planning HP Video: StorageWorks EVA4400 and Oracle		HP Webcast: Storage Is Changing Fast - Be Ready or Be Left Behind MORE WEBCASTS, PODCASTS, AND VIDEOS

Downloads and eKits
IBM TCO eKIT: Your IT Budget is Under Attack, Get in Control IBM Energy Efficiency eKIT: Learn How to Reduce Costs 30-Day Trial: SPAMfighter Exchange Module		Red Gate Download: SQL Toolbelt and free High-Performance SQL Code eBook Iron Speed Designer Application Generator MORE DOWNLOADS, EKITS, AND FREE TRIALS

Tutorials and Demos
Microsoft Article: Silverlight Streaming--Free Video Hosting for All Featured Algorithm: Intel Threading Building Blocks - parallel_reduce		HP Demo: StorageWorks EVA4400 MORE TUTORIALS, DEMOS AND STEP-BY-STEP GUIDES