Solved! Use NOTEPAB.EXE (Backdoor Zegost) Removal Guide

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

NOTEPAB.EXE – Backdoor Zegost removal

FileMD5Virus Alias
NOTEPAB.EXE 32b60de5da681b0b910eddf810b91586 Backdoor Zegost
NOTEPAB.EXE 32b60de5da681b0b910eddf810b91586 Trojan SuspiciousFile
NOTEPAB.EXE 32b60de5da681b0b910eddf810b91586 Trojan Generic
NOTEPAB.EXE 32b60de5da681b0b910eddf810b91586 Trojan Eldorado
NOTEPAB.EXE 32b60de5da681b0b910eddf810b91586 Trojan Downloader
NOTEPAB.EXE 32b60de5da681b0b910eddf810b91586 Trojan Agent

NOTEPAB.EXE size: 781248 bytes
NOTEPAB.EXE hash: 32B60DE5DA681B0B910EDDF810B91586

Created files:

C:\Windows\BJ.exe
C:\Windows\notepab.exe
C:\Windows\svchest001465662051.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Kris: c:\Windows\notepab.exe

Detected by UnHackMe:

NOTEPAB.EXE
Default location: %WinDir%\NOTEPAB.EXE

Dropper information:
MD5: 32b60de5da681b0b910eddf810b91586
File size: 781248 bytes

Leave a Reply