NOTEPAB.EXE – Backdoor Zegost

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

NOTEPAB.EXE – Backdoor Zegost removal

FileMD5Virus Alias
NOTEPAB.EXE 208573d417bbdc27b0f0c7bf7d69bcf6 Backdoor Zegost
NOTEPAB.EXE 208573d417bbdc27b0f0c7bf7d69bcf6 Trojan Unknown.Suspicious.File
NOTEPAB.EXE 208573d417bbdc27b0f0c7bf7d69bcf6 Trojan Generic
NOTEPAB.EXE 208573d417bbdc27b0f0c7bf7d69bcf6 Trojan Eldorado
NOTEPAB.EXE 208573d417bbdc27b0f0c7bf7d69bcf6 Trojan Downloader
NOTEPAB.EXE 208573d417bbdc27b0f0c7bf7d69bcf6 Trojan Magania

NOTEPAB.EXE size: 703678 bytes
NOTEPAB.EXE hash: 208573D417BBDC27B0F0C7BF7D69BCF6

Created files:

C:\Windows\BJ.exe
C:\Windows\notepab.exe
C:\Windows\svchest000.exe

Autostart registry keys:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Kris: c:\Windows\notepab.exe

Detected by UnHackMe:

NOTEPAB.EXE
Default location: %WinDir%\NOTEPAB.EXE

Dropper information:
MD5: 208573d417bbdc27b0f0c7bf7d69bcf6
File size: 703678 bytes

Leave a Reply