Open yburkouski opened 1 year ago
Warning message:
This program is dangerous and executes commands from an attacker. containerfile: C:\Users\yury\Downloads\QuickLook.Plugin.GraphvizDotViewer.qlplugin file: C:\Users\yury\Downloads\QuickLook.Plugin.GraphvizDotViewer.qlplugin->GraphvizBin\graphvizdotviewer_dotwrapper.exe webfile: C:\Users\yury\Downloads\QuickLook.Plugin.GraphvizDotViewer.qlplugin|https://objects.githubusercontent.com/github-production-release-asset-2e65be/496316324/860cce7d-34ca-4f9a-bc5a-bb2a6766bfc9?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAIWNJYAX4CSVEH53A%2F20230204%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20230204T184732Z&X-Amz-Expires=300&X-Amz-Signature=c90698dbd123b636640fec9fee8f6865e025b82377377e894ef408cea0ba521c&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=496316324&response-content-disposition=attachment%3B%20filename%3DQuickLook.Plugin.GraphvizDotViewer.qlplugin&response-content-type=application%2Foctet-stream|pid:10828,ProcessStart:133200101151950447
Slightly different but similar warning for me, skipping this plugin for now:
Detected Backdoor:AndroidOS/ZkarletFlash during download on QuickLook.xe60Ss8-.Plugin.GraphvizDotViewer.qlplugin.part
Backdoor:AndroidOS/ZkarletFlash
QuickLook.xe60Ss8-.Plugin.GraphvizDotViewer.qlplugin.part
Warning message: