Hello buddies, I'll post here my problem. I've installed Windows XP on my Virtualbox-3.1.2 VM just to learn developing rootkits (or at least learn some more about them). After I completed the installation, I've installed Rootkit Unhooker to check if the developing of my simple rootkit was going good. The real problem is that Rootkit Unhooker reveals a hook on SYSENTER/INT 0x2E at the address 0x00000000, which for me (and my little experience) has really no sense. I am unable to create a new hook on SYSENTER or unhook the existing one. What do you think about this ?