Post here your unfixed FP's (only after 2 days)

[Guest]

[gmohan]

Hi Camille Case,

Hello,

FP's reported over e-mail on may 25 (DB 1198) are still not fixed with DB 1215 1219.
See also this topic : https://forums.comodo.com/false_positivenegative_reporting_is_this_a_malware_that_cis_hasnot_detected/fp_in_windows_xp_system_files-t40127.0.html;msg291230#msg291230

Thanks

Hi,

2 of 3 FP's (netsetup.exe and msnsusii.exe) fixed with DB 1220.   

Reported FPs have been fixed in DB 1224.

Regards,
-Chandra Mohan

[ComoJust]

Hi,

Please correct this false positive.

ThunderWatcher.exe still detected in DB 1248

Thanks

http://forums.comodo.com/false_positivenegative_reporting_is_this_a_malware_that_cis_hasnot_detected/false_positive-t39944.0.html

[Saxuality]

Please check a file named bass_alac.dll in AIMP 2 music player.

CIS detects it as Heur.Packed. The FP has not been fixed for more than 2 weeks.

[Saxuality]

Please check a file named bass_alac.dll in AIMP 2 music player.

CIS detects it as Heur.Packed. The FP has not been fixed for more than 2 weeks.

Thank you for quick reaction, the FP has been fixed in the latest database  

[patrice58]

Heur.Suspicious[at]19750095 location X:\Downloads\H\WD_Windows_Tools\Google\Desktop\ESN\setup.exe.downloading

Tested with database 1203

Original forum post https://forums.comodo.com/false_positivenegative_reporting_is_this_a_malware_that_cis_hasnot_detected/maybe_a_fp-t40073.0.html

Remember this one? Chandra Mohan, yep it's the one you skipped it and moved on to another post that was posted later now I think that's rude even tho it has now been dealt with it was not at the time of posting.

[hailong.wang]

Heur.Suspicious[at]19750095 location X:\Downloads\H\WD_Windows_Tools\Google\Desktop\ESN\setup.exe.downloading

Tested with database 1203

Original forum post https://forums.comodo.com/false_positivenegative_reporting_is_this_a_malware_that_cis_hasnot_detected/maybe_a_fp-t40073.0.html

Remember this one? Chandra Mohan, yep it's the one you skipped it and moved on to another post that was posted later now I think that's rude even tho it has now been dealt with it was not at the time of posting.

Hi patrice58,
Mentioned FP has been fixed.
Please update your DB to 1232.

Regards,
-Chandra Mohan

[disPPlay]

http://forums.comodo.com/false_positivenegative_reporting_is_this_a_malware_that_cis_hasnot_detected/fp_btnext_btnext118_cyberscript32_npgp_npcipher_nppsk_npupdate0-t40784.0.html



btnext, and btnext_1.1.8 are not yet fixed.

edit: it's still getting detected




Thanks,
disPlay

[Vaishnavi]

Hi DiSP,

http://forums.comodo.com/false_positivenegative_reporting_is_this_a_malware_that_cis_hasnot_detected/fp_btnext_btnext118_cyberscript32_npgp_npcipher_nppsk_npupdate0-t40784.0.html



btnext, and btnext_1.1.8 are not yet fixed.

edit: it's still getting detected




Thanks,
disPlay

Reported FPs are fixed in DB 1290.
Kindly update and verify.

Regards,
Vaishnavi.V.K

[disPPlay]

Hi DiSP,

Reported FPs are fixed in DB 1290.
Kindly update and verify.

Regards,
Vaishnavi.V.K

Verified FPs fixed

Thanks,
disPlay

[eXPerience]

Got this over pm

Hi,

I have reported a false positive for quite some time now but it has not been corrected.
http://forums.comodo.com/false_positivenegative_reporting_is_this_a_malware_that_cis_hasnot_detected/false_positive-t39944.0.html

This comes from a free screen reader designed to support blind and visually impaired users, so it would be nice if Comodo could correct this mistake.
http://www.screenreader.net/index.php?pageid=2

There are thousands of people who are using this software without any problem, so this cannot be a trojan.  Mcafee has already corrected this false positive(Artemis) when I have reported it.

Before I reported it:
http://www.virustotal.com/analisis/a4eebaa56077fd6fba07e755815930e396ef53d67ee76cd79cba53e99693b6c3-1243856315

After I reported it:
http://www.virustotal.com/analisis/a4eebaa56077fd6fba07e755815930e396ef53d67ee76cd79cba53e99693b6c3-1245491201

Here is WOT an Mcafee site advisor ratings:
http://www.mywot.com/en/scorecard/screenreader.net
http://www.siteadvisor.com/sites/screenreader.net

Thanks for doing the needful.

Xan

[eXPerience]

Camille, please send it also here

http://internetsecurity.comodo.com/submit.php

Xan

[kingsdave]

These two have been around for a long long time. I posted in the FP thread 3 or 4 versions back, They've been submitted through the program and 3 times now on the web submission page, most recently on the th and 19th of this month.

Heur.Packed.Unknown C:\hp\bin\USBPwrMGMT.exe
Heur.Packed.Unknown C:\Program Files\Lavalys\EVEREST Home Edition\everest_icons.dll

[kingsdave]

Still there with DB 1812.

Heur.Packed.Unknown C:\Program Files\Lavalys\EVEREST Home Edition\everest_icons.dll

[Ionel]

Still there with DB 1812.

Heur.Packed.Unknown C:\Program Files\Lavalys\EVEREST Home Edition\everest_icons.dll

Hi kingsdave,

Can you please point the post where this file was not fixed?

We might detect another version of this file, in this case please submit the sample at:

http://internetsecurity.comodo.com/submit.php

Thanks and regards,
Ionel

[kingsdave]

Hi kingsdave,

Can you please point the post where this file was not fixed?

We might detect another version of this file, in this case please submit the sample at:

http://internetsecurity.comodo.com/submit.php

Thanks and regards,
Ionel

I'm not sure what you're asking in the first sentence, but the file has been submitted at that link several times.  Since I started tracking the date I sent it on July 4th, the 19th, the 25th, and again prior to my post today.

[Tags:]