Solved! Use ZWOUC.DLL (Backdoor Koutodoor) Removal Guide

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Free Download
Fully Functional 30-day Trial. No credit card is required.
Reviews
. EULA. Privacy Policy. Uninstall.

ZWOUC.DLL – Backdoor Koutodoor removal

FileMD5Virus Alias
ZWOUC.DLL 4839d203cc462047a414f552388431d6 Backdoor Koutodoor
ZWOUC.DLL 4839d203cc462047a414f552388431d6 Trojan Generic
ZWOUC.DLL 4839d203cc462047a414f552388431d6 Trojan Eldorado
ZWOUC.DLL 4839d203cc462047a414f552388431d6 Trojan Adload
ZWOUC.DLL 4839d203cc462047a414f552388431d6 Trojan Agent

ZWOUC.DLL size: 53248 bytes
ZWOUC.DLL hash: 4839D203CC462047A414F552388431D6

Created files:

%SysDir%\drivers\yhdtj.sys
%SysDir%\zwouc.dll

Autostart registry keys:

HKLM\System\CurrentControlSet\Services\yhdtj\Type: 01000000
HKLM\System\CurrentControlSet\Services\yhdtj\ErrorControl: 01000000
HKLM\System\CurrentControlSet\Services\yhdtj\DisplayName: yhdtj
HKLM\System\CurrentControlSet\Services\yhdtj\ImagePath: 730079007300740065006D00330032005C0064007200690076006500720073005C0079006800640074006A002E007300790073000000

Detected by UnHackMe:

ZWOUC.DLL
Default location: %SYSDIR%\ZWOUC.DLL

Dropper information:
MD5: 0f55c96d203d171e3801bb974488a316
File size: 123136 bytes

Leave a Reply