dm_mgr.exe - Dangerous
dm_mgr.exe
Manual removal instructions:
Antivirus Report of dm_mgr.exe:
dm_mgr.exe
Added as a result of the JITTAR VIRUS.
Backdoor.Jittar is a Backdoor Trojan Horse that gives its creator remote access to and complete control over a compromised system.
By default it uses ports 1309 and 2699 to listen for commands from the Trojan's creator.
When Backdoor.Jittar does the following:
Copies itself as the following files, and then executes them:
%System%\Dm_mgr.exe
%System%\Linxup.exe
On Windows NT/2000/XP computers, it installs %System%\Dm_mgr.exe as a service with the following details:
Name: WMDM
Display name: WMDM Manager
Execute path: %System%\dm_mgr.exe
On Windows 95/98/Me computers, it adds the value:
"DM mgr"="%System%\dm_mgr.exe"
to the registry key:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
so that the Trojan runs when you start Windows.
Manual removal:
In the registry key:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
delete the value:
"DM mgr"="%System%\dm_mgr.exe"
You may use RegRun Startup Optimizer to automatic remove it from startup.
dm_mgr.exe | Malware |
dm_mgr.exe | Dangerous |
dm_mgr.exe | High Risk |
Backdoor.Jittar is a Backdoor Trojan Horse that gives its creator remote access to and complete control over a compromised system.
By default it uses ports 1309 and 2699 to listen for commands from the Trojan's creator.
When Backdoor.Jittar does the following:
Copies itself as the following files, and then executes them:
%System%\Dm_mgr.exe
%System%\Linxup.exe
On Windows NT/2000/XP computers, it installs %System%\Dm_mgr.exe as a service with the following details:
Name: WMDM
Display name: WMDM Manager
Execute path: %System%\dm_mgr.exe
On Windows 95/98/Me computers, it adds the value:
"DM mgr"="%System%\dm_mgr.exe"
to the registry key:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
so that the Trojan runs when you start Windows.
Manual removal:
In the registry key:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
delete the value:
"DM mgr"="%System%\dm_mgr.exe"
You may use RegRun Startup Optimizer to automatic remove it from startup.
Dmitry Sokolov:
I created UnHackMe in 2006 to fix the problem that antivioruses did not fix: detecting rootkits.
Since that time I work every day to fix the issues that antiviruses cannot.
If your antivirus have not helped you solve the problem, you should try UnHackMe.
We are a small company and you can ask me directly, if you have any questions.