Don't be fooled by the Jdbgmgr.exe virus hoax

Did you receive an e-mail recently telling you to delete the application Jdbgmgr.exe from Windows because the app is a dangerous virus? Ignore it. The .exe file is a Java bebugger. However, if you receive a file called Jdbgmgr.exe in an e-mail, delete it.

A well-designed e-hoax using the Windows executable file Jdbgmgr.exe is spreading panic across the Internet. It is similar to the Sulfnbk.exe hoax in that jdbgmgr.exe is a legitimate file already found on many Windows PCs. The hoax e-mail message that is going around states that you should delete the file, but doing so may impair the functionality of your operating system. The hoax reads, in part:

    The virus' name is jdbgmgr.exe, and it is not detected with McAfee nor Norton. It remains in your computer's system for 14 days before it erases all your files. To delete and eliminate it completely, please do the following immediately:
    1. Go to start-Find-Files or Folders
    2. Under NAMED, type jdbgmgr.exe and click FIND NOW. Make sure you are looking under Drive C. DO NOT CLICK ON IT IF IT APPEARS!!
    3. If the virus appears (the icon next to it will be a teddy bear), the name will be jdbgmgr.exe
    4. DO NOT OPEN IT! Just right click on it (with the mouse) and DELETE it. It will be sent to the recycle bin.
    5. After you see it disappear, go to the Recycle bin and DELETE it from there as well. If at all possible EMPTY the Recycle Bin under FILE.

The file jdbgmgr.exe is the Microsoft Debugger Registrar for Java, and it may or may not be present on your computer. For example, it is present on my computer because I have Java 1.2 installed on my root drive.

The trouble is, an e-mail message such as this adds to the confusion regarding real viruses. Turns out, the file jdbgmgr.exe is involved with a legitimate virus. Magistr.A sends out infected copies of jdbgmgr.exe as attached e-mail files. And, contrary to this e-mail’s explicit warning, nearly all the antivirus software vendors do protect you against Magistr.A.

A few simple lessons to draw from this e-hoax:

1. If someone sends you a message with an EXE attachment, delete the message. Chances are, it’s a virus.
2. If you don’t want to delete the message, then save it to disk and scan it with an updated antivirus product before executing the file.
3. Do not forward e-mail virus warnings such as this without first checking TechUpdate's Anti-Virus page or any other virus information Web site.
4. Do not try to detect or remove viruses by yourself. Use an antivirus software product, and be sure to keep it updated with the latest antivirus signature files.

If you have already deleted jdbgmgr.exe, do not despair. You can reinstall the file by downloading the latest version of the Microsoft Virtual Machine

For more information on the Jdbgmgr.exe hoax, see Central Command, Kaspersky,McAfee, Norman, Sophos, Symantec, and Trend Micro.