Jump to content

Rogue.WinZix2


Billy O'Neal

Recommended Posts

Hello :huh:

/// LINK REMOVED ///

Registry Keys Infected:

HKEY_CLASSES_ROOT\.zix (Rogue.WinZix2) -> No action taken.

The extension should not be nuked unless other symptoms of that rogue are present. In this case, the ZIX mail program has registered that extension.

MbAM needs to check the zixFile in HKCR to see if the extension loads the rogue or not.

Billy3

Edited by Billy O'Neal
Link to post
Share on other sites

Hello :huh:

For those with access, a link to the discussion for this is here:

http://www.bleepingcomputer.com/forums/ind...t&p=1023729

The extension should not be nuked unless other symptoms of that rogue are present. In this case, the ZIX mail program has registered that extension.

MbAM needs to check the zixFile in HKCR to see if the extension loads the rogue or not.

Billy3

Easy fix , will be in next defs update tonight .

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.