Solved! Use NOTEPAB.EXE (Backdoor Zegost) Removal Guide

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

NOTEPAB.EXE – Backdoor Zegost removal

FileMD5Virus Alias
NOTEPAB.EXE 1fcdb0ff5c18cdfbf4aa9dec515bf317 Backdoor Zegost
NOTEPAB.EXE 1fcdb0ff5c18cdfbf4aa9dec515bf317 Trojan SuspiciousFile
NOTEPAB.EXE 1fcdb0ff5c18cdfbf4aa9dec515bf317 Trojan Generic
NOTEPAB.EXE 1fcdb0ff5c18cdfbf4aa9dec515bf317 Trojan Eldorado
NOTEPAB.EXE 1fcdb0ff5c18cdfbf4aa9dec515bf317 Trojan Downloader
NOTEPAB.EXE 1fcdb0ff5c18cdfbf4aa9dec515bf317 Trojan Magania

NOTEPAB.EXE size: 568537 bytes
NOTEPAB.EXE hash: 1FCDB0FF5C18CDFBF4AA9DEC515BF317

Created files:

C:\Windows\BJ.exe
C:\Windows\notepab.exe
C:\Windows\svchest000.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Kris: c:\Windows\notepab.exe

Detected by UnHackMe:

NOTEPAB.EXE
Default location: %WinDir%\NOTEPAB.EXE

Dropper information:
MD5: 1fcdb0ff5c18cdfbf4aa9dec515bf317
File size: 568537 bytes

Leave a Reply