Protégez votre univers

Nos autres ressources

  • free.drweb.fr — utilitaires gratuits, plugins, widgets
  • av-desk.com — service Internet pour les prestataires de services Dr.Web AV-Desk
  • curenet.drweb.com — l'utilitaire de désinfection réseau Dr.Web CureNet!
Fermer

Bibliothèque
Ma bibliothèque

+ Ajouter à la bibliothèque

Contacter-nous !
Support 24/24 | Rules regarding submitting

Nous téléphoner

0 825 300 230

Forum

Vos requêtes

  • Toutes : -
  • Non clôturées : -
  • Dernière : le -

Nous téléphoner

0 825 300 230

Profil

The investigation
of virus-related computer incidents (VCI)

Doctor Web offers paid services related to the investigation of virus-related computer incidents.

Investigation | Scope of the investigation | Questions and answers | Report | Request an investigation

An investigation can bring to light a host of questions; just how many of those questions Doctor Web’s investigators can help answer depends on the amount of services the customer has paid for.

QuestionsAnswers
Compromised elements of the system (the subject of the investigation)
  • Has the system integrity been compromised?
  • Did the incident involve malware (if so, the incident is within the scope of a Doctor Web investigation).
Where did the VCI take place* (VCI incidents)?
  • The technical specifications of the system that experienced the VCI and its environment. The system's function (this information is necessary to determine the priorities of the investigation).
  • Are there any indications that the machine has been covertly accessed by a third party?
  • Information about the security software that was installed on the machine in question when the incident took place and whether the software was compromised. If yes, how was the security software compromised?
What caused the VCI?
  • Staff violations of operational rules or security policies that resulted in the VCI.
How did the VCI occur?
  • Viruses and other malware involved in the VCI, including a description of their features and payload (those used in the incident as well potentially dangerous ones).
  • Steps taken by the customer's employees to discover the incident and to deal with its consequences. Effectiveness assessment.
What was the incident's impact?
  • The current state of the computer system.
  • What sort of information was stolen?
  • The consequences of the incident.
  • Is the compromised computer operational?
The people involved in the incident.
  • The individuals who participated in the incident (deliberately or accidentally) and the extent to which each of them was involved.
Available evidence of the incident
  • Is the incident the focus of an investigation by law enforcement agencies? Is there the possibility to appeal to law enforcement agencies and subsequently a court of law? The chances of winning the case.
  • The list of collected evidence.
Measures to prevent future incidents like this one.
  • Recommendations on deployment of an anti-virus solution that would prevent VRIs or help reduce their number in the future.
Editeur russe des solutions antivirus Dr.Web
Expérience dans le développement depuis 1992
Les internautes dans plus de 200 pays utilisent Dr.Web
L'antivirus est fourni en tant que service depuis 2007
Support 24/24

Dr.Web © Doctor Web
2003 — 2020

Doctor Web - éditeur russe des solutions antivirus Dr.Web. Doctor Web développe les produits Dr.Web depuis 1992.

333b, Avenue de Colmar, 67100 Strasbourg