Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

NTOSKRNL-HOOK Mcafee enterprise 8.5 unable to perm remove help!


  • Please log in to reply

#1
Nick_Danger

Nick_Danger

    New Member

  • Member
  • Pip
  • 1 posts
Hello, I am helping a friend clean up his system after infecting himself with spyware protect 2009 and successfully removed it via malwarebytes. Then ran mcafee, combofix, smitfraudfix, avz and threatfire they killed a few more virus. VUNDO.H, Zlob.H and a bunch of files in the system32 subdir armhzhw.dll, wwwlpoxi.dll, yhs783ijfo3e.dll, autochk.dll and ntdll64.dll. also had the registry and task manager disabled but used combofix to clean that up too. now McAfee Enterprise 8.5.0i is constantly reporting NTOSKRNL-HOOK Generic RootKit.d! rootkit on every reboot says it is a trojan and that it is deleted but on next boot or scan it reappears and I am unable to remove it even after perusing other posts that solved this problem. Currently scanning with kaspersky online scanner and it has detected Trojan-Spy.HTML.Fraud.gen x2 and Trojan-Spy.Win32.Zbot.rxp but it still has a way to go. Please any help would be appreciated! attached hijack this and SD fix logfiles as a start. -NickAttached File  SystemReport.txt   26.6KB   331 downloads

Attached Files


Edited by Nick_Danger, 27 April 2009 - 06:18 PM.

  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP