I just got one of those chain mails telling me to do a search for the file 'jdbgmgr'. I did so, and found it in both the Windows\system and the Windows\System32 folders. However, since I really didn't open any attached files on suspicious looking mails, I am rather wondering how it

A) Got there
and
B) If this perhaps is some kind of trick to get me to delete an important file.

Does anyone know if this is an actual virus?

Found it already.

Aliases
Teddy, JDBMGR, JBDGMGR, Teddybear, BlankA

Type
Virus hoax

Description
The JDBGMBR hoax tells the user to delete a file on their computer because it is a previously unknown virus. It is one of the most widely distributed hoaxes.

If you receive such a message do not delete the file from your system.
If you are worried, scan the file to check it for viruses.
If you receive a copy of JDBGMGR.EXE via email, delete it as you would any other unsolicited attachment.
JDBGMGR.EXE is the Microsoft Debugger Registrar for Java. The program uses an icon of a grey teddybear. It is usually found in one or more places among the Windows system files. Some versions of the hoax misreport the name of this file as JDBMGR.EXE or JBDGMGR.EXE.

The JDBGMGR.EXE file is no more susceptible than any other to being infected by a virus.

Some versions of the hoax mistakenly claim that deleting the file JDBGMGR.EXE is a solution to the W32/Bugbear-A worm. This misconception has almost certainly come about because JDBGMGR.EXE has an icon of a small grey teddybear.

Note: The W32/Magistr-A virus may infect the file JDBGMGR.EXE and attach it to emails (this is unconnected with the hoax). Sophos recommends users delete the file if they ever receive it as an email attachment.

This hoax is very similar to the SULFNBK hoax. It has been reported in English, French, Italian, Spanish, Dutch, German, Polish, Danish and other languages.


I'd better return the mail to those people to make sure they don't delete this file ;)

Glad you found the right info before jumping off a cliff...

For reference, jdbgmgr.exe is a java debug manager, I think... something that's actually used.

The correct answer to "should I do what this email says" is always <font color = yellow><h4>NO!!!</h4></font>, at least until you've had a chance to verify what's in there. Check one of the virus information sites (McAfee, Symantec) or one of the hoax pages (snopes) for the critter in question.

If you don't find it, do a reasonableness check -- is the message reasonable? And double this reasonableness check with someone else -- your company's IT department, school's IT manager (not necessarily the staff), your friendly neighborhood geek... someone who's likely to be skeptical and explain why (or why not) the email is reasonable.

Took me two years to get my mother trained... :grumble:

Has anyone ever encountered any email chain that turned out to be genuine? I havent, and I havent heard of any either.

You mean there isn't a deathly sick armless, legless, willieless boy in Tanzania?!?

Tied to an elephant who just wants to know people care about him?