* Home Help Search Login Register  

Welcome, Guest. Please login or register.
December 20, 2009, 05:04:00 PM

Login with username, password and session length

343976 Posts
38020 Topics
86289 Members
Latest Member: HOGCALLER

more news...
Search:     Advanced search | Tag Cloud
+  Welcome to the Comodo Forum
|-+  Desktop Security Products
| |-+  Comodo Internet Security - CIS
| | |-+  Help - CIS
| | | |-+  Anti Virus Help
| | | | |-+  submitted possible threats - what next?		 « previous next »
Pages: [1] Go Down Print
Author Topic: submitted possible threats - what next?  (Read 482 times)
40apple40
Newbie
*
Offline Offline

Posts: 12
« on: July 02, 2009, 07:06:07 AM »
hi,

i've had some possible threats quarantined as they came up as "heur suspicious".

from the quarantine page i submitted these (7 of them) for investigation using the submit option on that page.

what happens now though? how do i find the results to the investigation?

do i just keep restoring them & rescanning to see if they've been added to some safe file data base?

if so, how long does this take?

i'm not sure when to delete these permanantly.

thanks,

apple.
Logged
Endymion
Comodo's Hero
*****
Offline Offline

Posts: 956


Reality is subordinate to perception


WWW
« Reply #1 on: July 02, 2009, 07:50:38 AM »
Quote from: 40apple40 on July 02, 2009, 07:06:07 AM
do i just keep restoring them & rescanning to see if they've been added to some safe file data base?

if so, how long does this take?

i'm not sure when to delete these permanantly.

No clue here as well.

In case users are sure the samples are not malicious they attach them in the False Positive/Negative reporting - (Is this a malware that CIS has/not detected?) and in one/two days the AV database is updated.

As restoring quarantined samples to periodically check if their classification was changed might be unpractical it would make sense to add a lookup button in the quarantine dialog.

This way quarantined samples could be easily checked against the most recent AV DB updates.
Logged
I have learnt silence from the talkative, toleration from the intolerant, and kindness from the unkind; yet strange, I am ungrateful to these teachers.
Kahlil Gibran (1883 - 1931)
40apple40
Newbie
*
Offline Offline

Posts: 12
« Reply #2 on: July 07, 2009, 03:00:16 AM »
it seems a shame to have such a useful function as this go to waste as it appears that no-one knows how to use it. Huh

if anyone does ever work it out, please let us know.

thanks,

apple
Logged
HeffeD
Comodo's Hero
*****
Offline Offline

Posts: 1510
« Reply #3 on: July 07, 2009, 11:59:25 AM »
If you report it on the FP forum, you will get a response.
Logged
Can you beat my gladiator?
40apple40
Newbie
*
Offline Offline

Posts: 12
« Reply #4 on: July 08, 2009, 04:11:32 AM »
thanks for your reply.

yes, i've done that & i have had a response. i just wanted to know if the submit function in the quarantine page was usable. it seems that no one knows. Huh

if the submit function is used there seems to be no way of knowing if or when the FPs have been fixed.

apple
Logged
HeffeD
Comodo's Hero
*****
Offline Offline

Posts: 1510
« Reply #5 on: July 08, 2009, 10:53:50 AM »
Yes, the submit function works. However, you will not get any sort of response.

The devs have also stated that there is a quicker turnaround time for submissions through the forum or email. I don't know why this is the case.
Logged
Can you beat my gladiator?
40apple40
Newbie
*
Offline Offline

Posts: 12
« Reply #6 on: July 08, 2009, 06:08:30 PM »
thanks for that. it's a shame as the submit function would be a very convenient. not much point submitting though if you never know if the threats are genuine of FPs.


apple.
« Last Edit: July 09, 2009, 02:40:13 AM by 40apple40 » Logged
Tags:
Pages: [1] Go Up Print 
« previous next »
Jump to:  

SSL Certificate Free Virus Removal Firewall
Page created in 6.476 seconds with 21 queries.
Powered by SMF 1.1.11 | SMF © 2006, Simple Machines LLC
Seo4Smf v0.2 © Webmaster's Talks 		Design by 7dana.com