We checked up the file APPLICATION DATATEMPMANAGER.EXE and found it hazardous.
The file APPLICATION DATATEMPMANAGER.EXE must be deleted from the system immediately.
Kill the process APPLICATION DATATEMPMANAGER.EXE and remove APPLICATION DATATEMPMANAGER.EXE from the Windows startup.
Malware Analysis of APPLICATION DATATEMPMANAGER.EXE
Full path on a computer: %Appdata%tempManager.exe
Detected by UnHackMe:
APPLICATION DATATEMPMANAGER.EXE
Default location: %Appdata%tempManager.exe
Removal Results: Success
Number of reboot: 1
APPLICATION DATATEMPMANAGER.EXE is known as:
Trojan.Dorifel, TrojanDropper.Dorifel.keg, Backdoor.MSIL.PGen, Trojan.DownLoader6.zzbes, Trojan-Dropper.Dorifel.keg, Trojan.Agent.Gen-Injector[Fmt], Trojan.DownLoader6.56460, MSIL.Spy.Keylogger, TR.Dorifel.C, TrojanDropper.Dorifel.pdn, Troj.Dorifel.(kcloud), Dropper.A.Dorifel.18432.N, Dropper.Dorifel, Trojan-Dropper.Dorifel.jcm, a variant of MSIL.Spy.Keylogger.GF, W32.Dorifel.KEG.tr, PSW.ILSpy
APPLICATION DATATEMPMANAGER.EXE hash:
- MD5: e84f49d9a7eabbfd6d2ef642df4419d4
Registry:- HKCU\Software\Microsoft\Windows\CurrentVersion\Run\tempManager: “%Appdata%tempManager.exe”
Files:- %Temp%\1.exe
- %Temp%\1.JPG
- %Appdata%tempManager.exe