NOTEPAB.EXE – Backdoor Zegost

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

NOTEPAB.EXE – Backdoor Zegost removal

FileMD5Virus Alias
NOTEPAB.EXE 03b2986a019f0eb65975ef7b26b69b3d Backdoor Zegost
NOTEPAB.EXE 03b2986a019f0eb65975ef7b26b69b3d Trojan SuspiciousFile
NOTEPAB.EXE 03b2986a019f0eb65975ef7b26b69b3d Trojan Generic
NOTEPAB.EXE 03b2986a019f0eb65975ef7b26b69b3d Trojan Eldorado
NOTEPAB.EXE 03b2986a019f0eb65975ef7b26b69b3d Trojan Downloader
NOTEPAB.EXE 03b2986a019f0eb65975ef7b26b69b3d Trojan Agent

NOTEPAB.EXE size: 885832 bytes
NOTEPAB.EXE hash: 03B2986A019F0EB65975EF7B26B69B3D

Created files:

C:\Windows\BJ.exe
C:\Windows\notepab.exe
C:\Windows\svchest001465662051.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Kris: c:\Windows\notepab.exe

Detected by UnHackMe:

NOTEPAB.EXE
Default location: %WinDir%\NOTEPAB.EXE

Dropper information:
MD5: 03b2986a019f0eb65975ef7b26b69b3d
File size: 885832 bytes

Leave a Reply