phoenix115
Posts: 17 +0
Hi Mike,
As I explained in my previous posts, the only time Dr.Web picked up on something was the first scan. The later scans (2nd~5th time) did not pick up on anything; it says "No Viruses found" at the end of the complete scans. I attached a part of the CureIt log that contained lines that said "read error". (I was going through the log as I was waiting for your reply.) The things that Dr.Web picked up on during the first scan was either Cured or Moved like I said earlier. However, none of the things indicated "Hacktool" or "Hacktool.Rootkit".
I have ran the scans you indicated in your last post (MBAM, SAS) multiple times and no viruses are found. But Norton still detects the Hacktool and Hacktool.Rootkit viruses once my computer restarts. And then the whole process repeats with the detection, removal, restart.
Since Norton always detects these 2 viruses in the same areas:
c:\windows\system32\drivers\jsdpp32.sys
c:\windows\system32\drivers\oxauau96.sys
c:\windows\system32\drivers\qh3s.sys
Is there anything we can do to these 3 locations directly. I don't think the scans are doing anything as I've been running scans since Friday.
As I explained in my previous posts, the only time Dr.Web picked up on something was the first scan. The later scans (2nd~5th time) did not pick up on anything; it says "No Viruses found" at the end of the complete scans. I attached a part of the CureIt log that contained lines that said "read error". (I was going through the log as I was waiting for your reply.) The things that Dr.Web picked up on during the first scan was either Cured or Moved like I said earlier. However, none of the things indicated "Hacktool" or "Hacktool.Rootkit".
I have ran the scans you indicated in your last post (MBAM, SAS) multiple times and no viruses are found. But Norton still detects the Hacktool and Hacktool.Rootkit viruses once my computer restarts. And then the whole process repeats with the detection, removal, restart.
Since Norton always detects these 2 viruses in the same areas:
c:\windows\system32\drivers\jsdpp32.sys
c:\windows\system32\drivers\oxauau96.sys
c:\windows\system32\drivers\qh3s.sys
Is there anything we can do to these 3 locations directly. I don't think the scans are doing anything as I've been running scans since Friday.