Neutralizing Threats

 Top  Previous  Next

Viewing the list of detected threats

If threats are detected by SpIDer Guard, the threat_detected_icon sign (on Android 5.0 and higher — threat_detected_icon_5) appears in the status bar on the screen. You will also see a notification about detected threats.

If Dr.Web Scanner detects threats on your device, the scanner_threat sign will appear at the bottom of the Scanner screen. Tap it to view the list of detected threats and neutralize them.

You can also open the list of detected threats and neutralize them on the notification bar.

For each threat in the list, the following information is displayed:

Name of the threat.

Path to the file containing the threat.

If the detected threat is not a virus (which still could be potentially harmful for your device), Dr.Web will add a clarification in brackets: adware, riskware, joke or hacktool program.

info

On Android 5.0 and higher, notification bar will display a warning on the top of all applications until you neutralize the threat or until you swipe over the notification. Moreover, on Android 5.0 and higher, the threat notification will appear on the lock screen where you can go to the threat list from.

Neutralizing threats

Select a threat in the list and apply one of the following actions:

Delete – to delete the threat from your device.

Move to quarantine – to isolate the threat in the quarantine folder.

info

If the threat is detected in an installed application, it cannot be moved to quarantine. In this case, the Move to quarantine option will not be available.

Ignore – to temporary ignore the threat with no action applied.

Report false positive – to send the threat to Doctor Web anti-virus laboratory to report that it is not harmful and was identified by the anti-virus as dangerous by mistake. Enter your email to receive the results of the file analysis and tap Send.

info

The Report false positive action is available for threat modifications with the ".origin" postfix and for threats detected in the device system area.

Neutralizing Stagefright exploits

info

Stagefright exploits are detected and neutralized by Dr.Web Firewall. Enable it to protect your device from Stagefright exploits.

Stagefright is an Android vulnerability that allows infecting your device by multimedia file with built in malicious code.

Dr.Web Firewall scans all multimedia files you download in a real time. If Dr.Web detects malicious code in a file you are downloading:

download will be stopped;

a notification with the notif_monitor_threats sign will appear at the bottom part of the screen. There will be shown a threat name with a relevant postfix (<threat.name>.Stagefright);

information on the detected threat will be added to the app statistics.