---

krivanov wrote:

Hi everyone. As a result, of several tests I revealed a significant bug in sonar. When you run the malware from the desktop - Sonar just does not work.  I am not sure if I am able to give any proof-links - but here is video proof of this problem. 

hope to get an answer. 

---

Welcome,

Am I understanding you to say that you cannot run Malwarebytes free scanner from the desktop with NIS/NAV2012 active? If that's what you're saying then wee are going to need a lot more information about your configuration. I say this because I run the scanner about once a week on my system and do not encounter any problems.

Do you have any other security software installed?

Thanks

Posted link PROOF goes to Norton Full Page Block

I have notified Moderator

---

bjm_ wrote:

Posted link PROOF goes to Norton Full Page Block

I have notified Moderator

---

Thanks bjm,

That's where it took me also, I guess the OP edited it after Dick answered - actually I was wondering what Dick was smoking! 

wow! russians site...

right link to the page with this video:

http://www.symantecclub.ru/viewtopic.php?f=48&p=87849#p87849

it is on the youtube.com:

http://www.youtube.com/watch?v=YmwxGYJCBpU&feature=player_embedded

interesting video about SONAR fail. really looks like that files executed from some folders SONAR skip. Previosly from another location was deleted after several seconds and from the desktop's subfolder was executed and get successful run in one moment. computer blocked.

спасибо! еле успел вытащить какуб-то обрезанную ссылку - модераторы через неск. мин. уже удалили ее ;)

re: YouTube

A vulnerability has been reported in Adobe Flash Player, which can be exploited by malicious people to compromise a user's system.

http://secunia.com/advisories/47161/

---

bjm_ wrote:

re: YouTube

A vulnerability has been reported in Adobe Flash Player, which can be exploited by malicious people to compromise a user's system.

http://secunia.com/advisories/47161/

---

 

---

Thanks again bjm_!

Dave.

Do not visit YouTube - it havaing vulnerability!!! How scary is it!!! You have your Norton - what to scaring? ;)

Administrator of the linked russian site (by topic's theme) told that SONAR have excluded Desktop folder from the Monitor function. Is it true? So all malware not blacklisted will be skipped by SONAR if they are in the desktop?

If so THAT IS REAL VULNERABILITY and not your flash player on youtube.com or somethat else site...

I want to ask USA specialists about it!

---

Niko233 wrote:

[...] 

Administrator of the linked russian site (by topic's theme) told that SONAR have excluded Desktop folder from the Monitor function. Is it true? So all malware not blacklisted will be skipped by SONAR if they are in the desktop?

If so THAT IS REAL VULNERABILITY and not your flash player on youtube.com or somethat else site...

I want to ask USA specialists about it!

---

I'm curious to know what the answers are to these question too.

Regarding the removed link in krivanov's opening post: that link had an extra 'http://' prefixed to it as a result of the 'Insert URL' feature of this forum's Rich Text Editor. Hence krivanov's statement "(hope inserted link in a right way)". 

The reason I'm mentioning this is that any link that has an additional 'http://' at the start of it will trigger NIS 2012's Full Screen block, at least under Internet Explorer 9. This issue needs to be tested with other browsers to see if they are impacted.

Some non-malicious examples to illustrate are shown below. Open these links using IE9. When the Full Screen block appears, click on the Safe Web icon on the Norton Toolbar to see the actual site name (they are all 'http'),  the type of threats and the alleged full report:

http://http://

http://http://us.norton.com

http://http://google.com

The issue with the http prefixing in the forum URL editor has been previously raised here:

http://community.norton.com/t5/Forum-Feedback/Post-Message-Rich-Text-Editor-default-Target-for-the-I...