TIP: Click on subject to list as thread! ANSI
echo: alt-comp-anti-virus
to: ALL
from: SHADOW
date: 2018-06-01 14:42:00
subject: Re: kaspersky rescue disk
On Fri, 01 Jun 2018 13:38:26 -0300, Shadow  wrote:

>On Wed, 30 May 2018 18:54:51 -0400, John B. Smith 
>wrote:
>
>>On Tue, 29 May 2018 16:25:54 -0300, Shadow  wrote:
>>
>>>On Mon, 28 May 2018 19:57:39 -0400, John B. Smith 
>>>wrote:
>>>
>>>>maybe there was something wrong with the Rescue 10 iso I downloaded
>>>>twice. I'll try downloading it again in a week or so, see if anything
>>>>has improved.
>>>
>>> Check the MD5 after downloading. Though MD5 is relatively easy
>>>to forge:
>>>
>>>https://support.kaspersky.com/4162
>>>
>>> They ought to supply SHA 256 or SHA512 as well as the MD5.
>>>Strange for a firm that is supposed to be proficient in security.
>>> []'s
>>thanks for that link it says
>>"Kaspersky Rescue Disk 10 is no longer supported. use Kaspersky2018."
>>The 2018 version scans the OS so fast I wonder if the definitions are
>>even included with it. I can't see any place to download them once you
>>boot the disk.
>
> Yes, they changed it after I last accessed it.
> It now points to:
>
>https://support.kaspersky.com/14221
>
> And although it says you can boot it from a USB (in system
>requirements), they don't tell you how to.
> The old link to the Rescue2usb utility has been removed.
> Sh*tty support ....

 So I dd'd it to the USB, it booted, ran a scan (a million
files, took just over an hour), found 49 "malware", most of which were
Nirsoft utilities. 3 (non Nirsoft) were classified as trojans and one
was described as a browser hijacker, but I couldn't read the path to
the files (screen not wide enough), so I tried to save a logfile, but
that's not an option.
 So I did some research and discovered it keeps the logs in 
C:\KRD2018_Data\Reports\*.enc1
 But the file is encrypted !!!!!
 What am I missing ? Is there an util to unencrypt the file so
I can discover where the "malware" is and submit it to Virustotal ?
 TIA

 PS There is a warning:

https://support.kaspersky.com/14231

//Kaspersky Rescue Disk 2018 makes changes to the operating system
files. This may affect the work of your operating system. Before you
start using Kaspersky Rescue Disk 2018, we recommend that you create a
backup copy of your operating system.//

  WTF does that mean ? What "changes" ?
 []'s
 
-- 
Don't be evil - Google 2004
We have a new policy  - Google 2012
--- NewsGate v1.0 gamma 2
* Origin: News Gate @ Net396 -Huntsville, AL - USA (1:396/4)
SOURCE: echomail via QWK@docsplace.org

Email questions or comments to sysop@ipingthereforeiam.com
All parts of this website painstakingly hand-crafted in the U.S.A.!
IPTIA BBS/MUD/Terminal/Game Server List, © 2025 IPTIA Consulting™.