- Jan 8, 2002
- 18,927
- 0
- 76
Just curious to find out if anyone has come across a really nasty rootkit.
I threw everything at this computer.
Malwarebytes - Finds something, a reg key in particular, unable to delete
ComboFix - Runs partially but does not engage to the point of removal
SmitFraud - Runs but nothing found
SDFix - Runs partially just like CF but does not clean
SuperAntiSpyware - Finds nothing
HiJackThis - Sees the exact files, there is something in the APPINIT and a few 04 entries but every time to try to remove them, always comes back
RootKitRevealer - Doesn't find anything
and finally, the rootkit unhooker.
The rootkit unhooker sees the exact file that is causing everything to be borked.
The file is yuvuyezo.dll and there is nothing in Google which is a sign that it's probably a random file that was generated.
Anyone come across something like this lately? What was used to remove it?
Forgot to mention the file is not found or seen by Windows. It's a very good rootkit.
I threw everything at this computer.
Malwarebytes - Finds something, a reg key in particular, unable to delete
ComboFix - Runs partially but does not engage to the point of removal
SmitFraud - Runs but nothing found
SDFix - Runs partially just like CF but does not clean
SuperAntiSpyware - Finds nothing
HiJackThis - Sees the exact files, there is something in the APPINIT and a few 04 entries but every time to try to remove them, always comes back
RootKitRevealer - Doesn't find anything
and finally, the rootkit unhooker.
The rootkit unhooker sees the exact file that is causing everything to be borked.
The file is yuvuyezo.dll and there is nothing in Google which is a sign that it's probably a random file that was generated.
Anyone come across something like this lately? What was used to remove it?
Forgot to mention the file is not found or seen by Windows. It's a very good rootkit.
Facebook
Twitter