Trojan.Win32.Vebzenpak.adto removal guide

The Trojan.Win32.Vebzenpak.adto is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.Win32.Vebzenpak.adto virus can do?

Executable code extraction
Creates RWX memory
Network activity detected but not expressed in API logs
Anomalous binary characteristics

How to determine Trojan.Win32.Vebzenpak.adto?


File Info:
crc32: 00B7F78D
md5: f2fa7b4d67d062eeb5d00df8795d6d77
name: F2FA7B4D67D062EEB5D00DF8795D6D77.mlw
sha1: 7ad036612da619827f920e6967ed3c9ea0aff7b6
sha256: ca4de6db62d461d570dc13bd7501e75f78a9af1450b393eaecf5d60b7bec1132
sha512: 36407977104dec0192d5c2bc9d869be286284ae43788d94485bb6b2f035d2969ee22af31fd08a5db38b3798f3a0b52861d7bccc4482d6a6727a491133f6a9a72
ssdeep: 384:h/HuK2BXodAy8X3cvMhGcKyG0PJNedLgefKhXvifLp9+Qam3k9dzYai35f:9HuK2BYdATMvMMByGuJcHUifgmS45
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
Translation: 0x0409 0x04b0
InternalName: EGERT
FileVersion: 1.00
CompanyName: COX x2122
Comments: COX x2122
ProductName: COX x2122
ProductVersion: 1.00
OriginalFilename: EGERT.exe

Trojan.Win32.Vebzenpak.adto also known as:

Bkav	W32.AutorunHAE.Fam.Worm
Elastic	malicious (high confidence)
FireEye	Generic.mg.f2fa7b4d67d062ee
Cylance	Unsafe
Sangfor	Trojan.Win32.Save.a
K7GW	Riskware ( 0040eff71 )
Cyren	W32/Kryptik.BCI.gen!Eldorado
APEX	Malicious
Avast	Win32:Malware-gen
Kaspersky	Trojan.Win32.Vebzenpak.adto
AegisLab	Trojan.Win32.Vebzenpak.4!c
McAfee-GW-Edition	BehavesLike.Win32.Trojan.pm
Sophos	ML/PE-A
Microsoft	Program:Win32/Wacapew.C!ml
Gridinsoft	Trojan.Win32.Downloader.sa
ZoneAlarm	Trojan.Win32.Vebzenpak.adto
GData	Win32.Trojan-Downloader.GuLoader.TQYF7N
McAfee	Artemis!F2FA7B4D67D0
Ikarus	Win32.Outbreak
eGambit	Unsafe.AI_Score_75%
BitDefenderTheta	Gen:NN.ZevbaF.34574.dm0@ay@!9Cfi
AVG	Win32:Malware-gen
Paloalto	generic.ml
CrowdStrike	win/malicious_confidence_90% (W)
Qihoo-360	Win32/Trojan.Vebzenpak.HgIASPQA

How to remove Trojan.Win32.Vebzenpak.adto?

Trojan.Win32.Vebzenpak.adto removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X