How to remove DesktopLayermgr.exe
- File Details
- Overview
- Analysis
DesktopLayermgr.exe
The module DesktopLayermgr.exe has been detected as Spy.Zbot
File Details
| Company Name: |
|
| MD5: |
dcd2cafa72c9d5bd898b636a18133d3c |
| Size: |
106 KB |
| First Published: |
2017-06-22 01:01:53 (6 years ago) |
| Latest Published: |
2020-12-05 21:29:35 (3 years ago) |
| Status: |
Spy.Zbot (on last analysis) |
|
| Analysis Date: |
2020-12-05 21:29:35 (3 years ago) |
| %localappdata%\temp |
| %sysdrive%\docume~1\fannan6\locals~1\temp |
| %programfiles%\microsoft |
| %sysdrive%\$recycle.bin\s-1-5-21-3911669584-2456851692-2669443308-1000 |
| %programfiles%\fpnugpcv |
| %programfiles%\internet explorer |
| %startup% |
| %sysdrive%\$recycle.bin\s-1-5-21-2229783204-1593186752-550032327-1000\$rdsz1co |
| %programfiles% |
| %sysdrive%\recycler_detec |
| svchost.exe |
| DesktopLayermgr.exe |
| $RYNM2JN.exe |
| $REOF73O.exe |
| $RHDI6N6.exe |
| $RQMW94O.exe |
| OsKutcra.exe |
| qIfYsimE.exe |
| AdnPEyJf.exe |
| CrRhFxIk.exe |
| AXgyGUya.exe |
| CssVGyKD.exe |
| DEOQqIgq.exe |
| XBcyRaoD.exe |
| IUjObPxK.exe |
| VWkFEWPK.exe |
| GBoVnJMa.exe |
| qWOQYnBN.exe |
| MaaXDpFQ.exe |
| joauBakj.exe |
| JGesGpNl.exe |
| OUjQgxVH.exe |
| yqhgwHqc.exe |
| eFxyPmwN.exe |
| twbdBTby.exe |
| OaUDvnmt.exe |
| CirnTXQP.exe |
| KCTCkqcs.exe |
| AFTTDefW.exe |
| kFpDWxUR.exe |
| SkSCmQQR.exe |
| egpNBTlV.exe |
| qTcltnIy.exe |
| riQgDjmO.exe |
| LMGIGRnf.exe |
| JtvJvCsE.exe |
| lmxlYgsS.exe |
| iXoHbdvN.exe |
| MHfxrQHb.exe |
| gfQLWNkc.exe |
| dbigDbph.exe |
| GXAgTlYI.exe |
| HgxBSOCF.exe |
| HJZaNgSd.exe |
| FAutIqRp.exe |
| rbApNCAy.exe |
| XiIyHHEc.exe |
| BgKGyLSH.exe |
| sSnDhmHx.exe |
| vwGDcypF.exe |
| ZLmNEQPu.exe |
| tERjeJQa.exe |
| glbxuqHY.exe |
| MNSNgXoi.exe |
| FkDXnWYj.exe |
| FKnlWnoy.exe |
| GdutRPlk.exe |
| hSDMIwqq.exe |
| FHNfFZNA.exe |
| BfmSjauL.exe |
| KSpygopN.exe |
| XukJgpVW.exe |
| XlQTmflr.exe |
| nvfhqplm.exe |
| IEXPLOREmgr.exe |
| viepeeul.exe |
| nKdqAaRV.exe |
| GSbioAJW.exe |
| LOiCLlZQ.exe |
| YrHfIAnT.exe |
| ZKnPUgMM.exe |
| LnLvDrxU.exe |
| LResdNXY.exe |
| KkfqJvja.exe |
| kavgihkx.exe |
| HOZEPEsN.exe |
| jNpGUyTd.exe |
| rXgiWWHB.exe |
| hDSKUJSc.exe |
| kkrXJtSU.exe |
| GXAVlXNv.exe |
| vtCXyReQ.exe |
| kmUOiEyw.exe |
| kFAEDZrV.exe |
| gZFGGklA.exe |
| KLkonLel.exe |
| RGZKwaCC.exe |
| PHRimEry.exe |
| hyCgXllb.exe |
| mykeumsa.exe |
|
45.0% |
|
|
36.9% |
|
|
11.7% |
|
|
5.4% |
|
|
0.9% |
|
| Windows 7 |
94.6% |
|
| Windows 8 |
1.8% |
|
| Windows XP |
1.8% |
|
| Windows Vista |
1.8% |
|
Analysis
| Subsystem: |
Windows GUI |
| PE Type: |
pe |
| OS Bitness: |
32 |
| Image Base: |
0x00400000 |
| Entry Address: |
0x00001000 |
| Name |
Size of data |
MD5 |
| .text |
2048 |
c0d9c2b30865d4e682f1f443fc3c73cd |
| .rdata |
2048 |
a99571fc5348ba72e7bcfa9f3172b25b |
| .data |
89088 |
094065f7c38c94af61214611179ecb37 |
| .rsrc |
13312 |
456709dde1c09d9c85e562dabc1d8e76 |
| .reloc |
512 |
555e35d4d579b3c503c4a1430acdfd69 |
