I recently posted a couple of Rootkit.HiddenKey@0 scan results in the False Positives section without any usable feedback. After re-installing Comodo, I now have about 40 more. These are mostly in the following general areas:
HKEY_CURRENT_USER\Software\Microsoft\SystemCertificates
HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates
I have also scanned with Malwarebytes, Superantispyware, Housecall, Black Light but they find nothing. I followed up with RootkitRevealer and RegDelNull which found nothing in those locations. My main question is whether the Rootkit.HiddenKey@0 entries are equivalent to embedded nulls? If that is the case, why didn’t Sysinternals apps find them? Comodo could not remove any of the apparent rootkits.
I’ve googled the term “Rootkit.HiddenKey@0” plus searched this forum and found no explanation of it.