![]() Tried to do a System Restore but it would NOT complete at any restore point. Icon never appeared on my desktop for that, nor did it override my existing HMP Build 125. Today deleted last night's downloaded HMP files from IDM file list. Contact at Surfright last night said to install HMP Beta 126. Proshield malware, I discover today, is what prevented me from running HMP Build 125 scan last night. That last build finally got rid of a stray Trojan in 32 sys that would continually turn up in every HMP scan as ativtmxxc.dll and show as a 'fail' whenever I would reboot. Have HMP since 8/2010, automatically updated a week or so ago to Build 125. Laptop is 2006 Dell Inspiron 1505E, 2 mb RAM 1.87 ghz. Have 32 bit XP, SP3, atapi in sys, although not with. Hitman Pro is able to clean TD元/4 infections from within Windows since 2009 (build 79), without a boot CD. Even the Computerworld article mentions to use the Norton Boot CD (shameless advertisement) to get rid of TDL4. These are WORLDS apart and are NOT RELATED at all. To conclude, some people started to mention TDL4 with Popureb. But the mere fact that Microsoft did state that you have to reinstall after infection drew everybody's attention and we decided to jump on it and so did Symantec and Webroot. Mebroot and TD元/4 are MUCH more sophisticated. So what people have to do in order to regain control over their Windows is guesswork AT BEST.įrom a technical point of view, the rootkit is totally NOT INTERESTING AT ALL (well maybe for laughs, as Marco stated in his article). I mean, its not like Windows says: "the MBR is infected and its hooking my atapi.sys, please clean MBR". But, when you can't boot into Windows anymore, I doubt many would think it was caused by a recent Popureb infection. So if you have XP with SP3 and you get infected then you have to resort to special tooling. Popureb has several things hard coded and that is why its only running on XP with atapi.sys as miniport driver.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |