A forum for reverse engineering, OS internals and malware analysis 

Search found 1 match

 Go to advanced search

Re: Win32/Poweliks

 by Naathim ¦  Fri Aug 29, 2014 12:13 pm ¦  Forum: Malware ¦  Topic: Win32/Poweliks ¦  Replies: 36 ¦  Views: 112403

Hello. Looks like there is some nev variant of Poweliks, which infects another CLSID (or maybe it's just the XP speciality), which I'm fighting here: https://forums.malwarebytes.org/index.php?/topic/155838-avenger-file-issues/ Aside of forged run subkey, there is another one: [HKLM\Software\Classes\...