Перейти к содержимому


l.e.e.

Дата рег: 14 Июл 2011
Оффлайн Был(а) онлайн: Скрыт
*****

Темы пользователя

Exploit в антивирусе ?

01 Декабрь 2015 - 22:45

\SD-карта\SmsContactsBackup\apks\com.drweb.pro.market\files\sf.mp4 - что это вообще за файлик ? Это точно не медиа-файл.

Fortinet Android/StageFright.fam!exploit 20151201

Kaspersky Exploit.AndroidOS.Stagefright.a 20151201

https://www.virustotal.com/ru/file/c0b582154c7635be1d3f49f96f37af7e60d34ddfe88c5e5a6a473f81edad15fa/analysis/1448993038/

Прикрепленный файл  Screenshot_2015-12-01-21-54-17.png   67,3К   0 Скачано раз

(Спасибо КАТАНА :))


Нет меню настроек

17 Апрель 2015 - 19:10

На телефоне Lenovo A859 установили пробную версию, потом ligth - нет опции настроек. Встречалось ли такое, с чем может быть связано ?

Прикрепленный файл  Screenshot_2015-04-17-19-07-11.png   67,11К   0 Скачано раз


Reminder

17 Декабрь 2013 - 07:01

Уважаемый Марафонец!

Это напоминание о новом вопросе Марафона «Доктор Веб — 10:0» отправлено вам потому, что вы оформили подписку на странице https://www.drweb.com/10years/reminders/.

Если вы желаете отменить подписку, перейдите на эту страницуhttps://www.drweb.com/10years/reminders/.

 

Скажите пожалуйста, в чём смысл такого напоминания ? Не забыть отписаться ?  :) Вот так трудно сделать ? http://www.drweb.com/10years/


FlashPlayer 11.7

16 Апрель 2013 - 07:39

"Object","Threat","Action","Path",""
"install_flash_player.exe","DLOADER.Trojan","Заблокирован","http://fpdownload.adobe.com/get/flashplayer/pdc/11.7.700.169/install_flash_player.exe"
"install_flash_player.exe","DLOADER.Trojan","Заблокирован","http://fpdownload.adobe.com/get/flashplayer/pdc/11.7.700.169/install_flash_player.exe"
"install_flash_player.exe","DLOADER.Trojan","Заблокирован","http://fpdownload.adobe.com/get/flashplayer/pdc/11.7.700.169/install_flash_player.exe"
"install_flash_player.exe","DLOADER.Trojan","Заблокирован","http://fpdownload.adobe.com/get/flashplayer/pdc/11.7.700.169/install_flash_player.exe"
"install_flash_player.exe","DLOADER.Trojan","Заблокирован","http://fpdownload.adobe.com/get/flashplayer/pdc/11.7.700.169/install_flash_player.exe"
"install_flash_player.exe","DLOADER.Trojan","Заблокирован","http://fpdownload.adobe.com/get/flashplayer/pdc/11.7.700.169/install_flash_player.exe"
"install_flash_player.exe","DLOADER.Trojan","Заблокирован","http://fpdownload.adobe.com/get/flashplayer/pdc/11.7.700.169/install_flash_player.exe"
"install_flash_player.exe","DLOADER.Trojan","Заблокирован","http://fpdownload.adobe.com/get/flashplayer/pdc/11.7.700.169/install_flash_player.exe"

 

 

-----------------------------------------------------------------------------
Start curing
-----------------------------------------------------------------------------
E:\WINDOWS\system32\Macromed\Flash\FlashUtil32_11_7_700_169_Plugin.exe - quarantined
E:\WINDOWS\system32\Macromed\Flash\FlashUtil_ActiveX.exe - quarantine error

E:\Users\DEF\Documents\rkill.exe - quarantined
E:\Users\DEF\Documents\rkill.com - quarantined
E:\Users\DEF\Documents\rkill.scr - quarantined
E:\Users\DEF\Documents\uSeRiNiT.exe - quarantined

Total 8528265525 bytes in 19270 files scanned (21110 objects)
Total 19223 files (21056 objects) are clean
Total 4 files are infected
Total 2 files are suspicious
Total 5 files are neutralized
Total 41 files are raised error condition
Scan time is 00:11:22.423

Это ложное срабатывание или ?

 

И к стати, чем плоха RKiLL ?

BleepingComputer Review:
RKill is a program that was developed at BleepingComputer.com that attempts to terminate known malware processes so that your normal security software can then run and clean your computer of infections. When RKill runs it will kill malware processes and then removes incorrect executable associations and fixes policies that stop us from using certain tools. When finished it will display a log file that shows the processes that were terminated while the program was running.

As RKill only terminates a program's running process, and does not delete any files, after running it you should not reboot your computer as any malware processes that are configured to start automatically will just be started again. Instead, after running RKill you should immediately scan your computer using some sort of anti-malware or anti-virus program so that the infections can be properly removed.

Below are a list of RKill download links using different filenames. We offer RKill under different filenames because some malware will not allow processes to run unless they have a certain filename. Therefore when attempting to run RKill, if a malware terminates it please try a different filename offered below.

сканирование разными версиями

08 Апрель 2013 - 22:00

Вот вы не поверите (хотя кое кто говорил..) - 7-ка и та не видит, то что видит 8-ка .Когда такое увидишь.. Это точка НЕвозврата.. :mellow: