NOTEPAB.EXE – Backdoor Zegost

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

NOTEPAB.EXE – Backdoor Zegost removal

FileMD5Virus Alias
NOTEPAB.EXE a94ab2dce86cc17a01c76920d1cf53a2 Backdoor Zegost
NOTEPAB.EXE a94ab2dce86cc17a01c76920d1cf53a2 Trojan SuspiciousFile
NOTEPAB.EXE a94ab2dce86cc17a01c76920d1cf53a2 Trojan Artemis
NOTEPAB.EXE a94ab2dce86cc17a01c76920d1cf53a2 Trojan Generic
NOTEPAB.EXE a94ab2dce86cc17a01c76920d1cf53a2 Trojan Eldorado
NOTEPAB.EXE a94ab2dce86cc17a01c76920d1cf53a2 Trojan Downloader

NOTEPAB.EXE size: 298058 bytes
NOTEPAB.EXE hash: A94AB2DCE86CC17A01C76920D1CF53A2

Created files:

C:\Windows\BJ.exe
C:\Windows\notepab.exe
C:\Windows\svchest000.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Kris: c:\Windows\notepab.exe

Detected by UnHackMe:

NOTEPAB.EXE
Default location: %WinDir%\NOTEPAB.EXE

Dropper information:
MD5: a94ab2dce86cc17a01c76920d1cf53a2
File size: 298058 bytes

Leave a Reply