Community
    • Login

    Notepad++ infected with a virus Trojan.rHeur.Agent.dg ?

    Scheduled Pinned Locked Moved General Discussion
    3 Posts 2 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Sergey MuzychenkoS
      Sergey Muzychenko
      last edited by

      GridinSoft Anti-Malware

      Starting the file scan:

      Quick Scan started
      Scanning process…
      ----- c:\program files (x86)\notepad++\uninstall.exe ---- General Threat
      Trojan.Win32.Agent.dg!s5
      ProdVer: 7.71
      FileVer: 7.7.1.0
      Name: Notepad\u002B\u002B
      Company: Don HO don.h@free.fr
      Signature verification: False
      NAC: FBF23A70065C147B42097EDF09795B99:29
      MD5: 1FF8A862CD7F44D6E0531B40C7D7289B:264162
      RIC: 1B4066815F3407736426E45C8B2F5B82:133786
      RFH: 3072:ZZGjXpoGoByXPQs2UTXQ8yb7aFcPiSIvF68fJx:ZZGbpYByPT7lyvIcqSIvF68fn
      SUBS: Win32 GUI
      PE: x86
      EP: 81ECD40200005356576A205F33DB6801800000895C2414C744241030A24000895C241CFF15AC804000FF15A880400025FFFFFFBF663D0600A34CA24200741153E8
      EPSEC: 0
      EPRVA: 000034A5
      IBASE: 00400000
      SEC:
      .text:60000020:BFE2B726D49CBD922B87BAD5EEA65E61:26112
      .rdata:40000040:D45DCBA8CA646543F7E339E20089687E:5120
      .data:C0000040:8575FC5E872CA789611C386779287649:1536
      .ndata:C0000080:00000000000000000000000000000000:0
      .rsrc:40000040:7F8FBD44E7165874FED8C030BC3A0930:156160

      ----- HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Notepad++|UninstallString ---- Hijack Suspicious
      Trojan.rHeur.Agent.dg

      EkopalypseE 1 Reply Last reply Reply Quote 1
      • EkopalypseE
        Ekopalypse @Sergey Muzychenko
        last edited by

        @Sergey-Muzychenko

        if you downloaded it from the official site then it is a false positive
        and btw. never trust only one source of information. What is really in reality is
        real in IT as well. Check the file against virustotal.

        1 Reply Last reply Reply Quote 3
        • Sergey MuzychenkoS
          Sergey Muzychenko
          last edited by

          @Ekopalypse said:

          virustotal.

          Thanks for the info, checked virustotal, everything is in order.

          1 Reply Last reply Reply Quote 2
          • First post
            Last post
          The Community of users of the Notepad++ text editor.
          Powered by NodeBB | Contributors