Proactive IT Security
Upgrade Internet.Hoax
Threat risk
Threat risk none
|
Detection files published:
|
Description created:
2000-12-05 |
Description updated:
2001-11-16 |
|
Alias:
Perrin.EXE, Upgrade Internet2 |
Spreading mechanism
| |
|
Payload:
| ||
Summary
Language versions
Spanish, English.
The first version of this hoax was in Spanish, but an English translation has later appeared.
Description of the hoax
The "Upgrade Internet" hoax is also seen in an "Upgrade Internet2" variant that only has minor changes from the original version.
Note that known viruses use some of the file names mentioned in these variants.
Spanish version
Si reciben un mail titulado "up-grade internet2 " NO LO ABRAN ,ya que contiene un ejecutable con un ?cono muy gracioso ,el ejecutable se llama PERRIN.EXE. Este virus borrar? toda la infomaci?n del disco duro ,y de alguna manera se refugia en la memoria del computadora ,por lo que cada vez que carguen informaci?n en el disco duro ,este lo borrar? De nuevo ,dejando practicamente inservible la computadora. Esta informaci?n fu? publicada ayer en la p?gina Web de la CNN.Se ha dicho que este virus es muy peligroso y que a?n no existe antivirus para el. Reenvien este mensaje a toda la gente que puedan ,ya que si bien es cierto no puede ser detenido ,al menos que salga perjudicada la menor cantidad de gente posible.
English version
Pls, carefully ! !
PLEASE SEND THIS INFORMATION TO EVERY PERSON IN YOUR ADDRESS BOOK.IF YOU RECEIVE AN E-MAIL THAT READS "UPGRADE INTERNET" DO NOT OPEN IT, AS IT CONTAINS AN EXECUTABLE NAMED "PERRIN.EXE." IT WILL ERASE ALL THE DATA IN YOUR HARD DRIVE AND IT WILL STAY IN MEMORY. EVERY TIME THAT YOU UPLOAD ANY DATA, IT WILL BE AUTOMATICALLY ERASED AND YOU WILL NOT BE ABLE TO USE YOUR COMPUTER AGAIN.
THIS INFORMATION WAS PUBLISHED YESTERDAY IN THE CNN WEB SITE. THIS IS A VERY DANGEROUS VIRUS. TO THIS DATE, THERE IS NO KNOWN ANTIVIRUS PROGRAM FOR THIS PARTICULAR VIRUS. PLEASE FORWARD THIS INFORMATION TO YOUR FRIENDS, SO THAT THEY WILL BE ON THE ALERT. ALSO CHECK THE LIST BELOW, SENT BY IBM, WITH THE NAMES OF SOME E-MAILS THAT, IF RECEIVED, SHOULD NOT BE OPENED AND MUST BE DELETED IMMEDIATELY, BECAUSE THEY CONTAIN ATTACHED VIRUSES. THIS WAY YOUR COMPUTER WILL BE SAFE.
THE TITLES ARE:
1) buddylst.exe
2) calcu18r.exe
3) deathpr.exe
4) einstein.exe
5) happ.exe
6) girls.exe
7) happy99.exe
8) japanese.exe
9) keypress.exe
10) kitty.exe
11) monday.exe
12) teletubb.exe
13) The Phantom Menace
14) prettypark.exe
15) UP-GRADE INTERNET2
16) perrin.exe
17) I love You
18) CELCOM Screen Saver or CELSAVER.EXE
19) Win a Holiday (e-mail)
20) JOIN THE CREW O PENPALS
ONCE AGAIN, DO NOT OPEN THESE E-MAILS especially all attachment with exe extension.
Removal
Norman's antivirus products do not check for haoxes.
