Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infostealer


  • Please log in to reply
1 reply to this topic

#1 Johnny.

Johnny.

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australia, Perth
  • Local time:09:10 PM

Posted 19 November 2006 - 09:04 PM

Every time I load up my user Norton AntiVirus pops up telling me this:

VIRUS ALERT

x High Risk

Norton AntiVirus has dietected a virus on your computer.

Object Name: C:\WINDOWS\system32\hook.dll
Virus Name: Infostealer
Action Taken: Unable to repair this file.



After clicking ok it comes up except the action taken is "Access to the file was denied". However, the Alerts are continuously popping up. Very annoying.

I use Windows XP. I have tried scanning my system but it seems Norton AntiVirus cannot delete/quarantine/fix it. I have tried searching the registry and looking for the value(s), given from various sources in-which give removal instructions, but I cannot seem to find those values, unless I have done something wrong...which I may have. I have also tried using Spybot and SUPERAntiSpyware, which haven't detected it, thus I cannot fix it with them. I probably have done something wrong so simply my question is:

Does anyone know how to get rid of it?

BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,135 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:10:10 PM

Posted 20 November 2006 - 11:21 AM

Have you tried doing your scans in "SAFE MODE"?

If that does not resolve the problem, then download and scan with AVG Anti-Spyware 7.5 in "SAFE MODE".
(This is Ewdio 4.0 renamed. If you already have Ewido installed, please update to this version which has a special "clean driver" for removing persistent malware.) Be sure to print out the AVG Anti-Spyware Install-Scan Instructions and read the User Manual.

When done perform this online Virus scan: Trend Micro Housecall <- Use "Autoclean" and manually delete what it can't clean.
[Watch the Address bar in IE. You may receive alerts that "This site might require the following ActiveX control...Click here to install...". Click on that alert and then Click Install ActiveX component.]

Note: Keyloggers and backdoor Trojans can be dangerours. When infected by either of them you should disconnect the computer from the Internet until your system is cleaned. If your computer was used for online banking or has credit card information on it, all passwords should be changed immediately. You should consider them to be compromised. I suggest you change them by using a different computer and not the infected one. Banking and credit card institutions should be notified of the possible security breech. Because your computer was compromised please read How to report ID theft, fraud, drive-by installs, hijacking and malware.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users