Author Topic: What do you think about this video?  (Read 8569 times)

Online Siketa

  • Comodo's Hero
  • *****
  • Posts: 4725
  • ZIG ZAG
Re: What do you think about this video?
« Reply #15 on: October 14, 2010, 02:23:12 PM »
nice, that was quick  :)
Yep....just like Melih said....fixed in a blink of an eye  ;D
  :-TU

Offline morphiusz

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 2639
    • Suspicious file?
Re: What do you think about this video?
« Reply #16 on: October 14, 2010, 02:31:44 PM »
hoshinkaaaa is me :D I did research and found these viruses on the Internet.
Yep.It's true. Fast reaction from Comodo Team.

Offline Melih

  • CEO - Comodo
  • Administrator
  • Comodo's Hero
  • *****
  • Posts: 13564
    • Video Blog
Re: What do you think about this video?
« Reply #17 on: October 14, 2010, 02:47:11 PM »
Thank you guys for your vigilance.
We will continue to add more stringent processes for our whitelists.

All in all, things are good and small hiccups are fixed immediately, thanks to this amazing community we have!

thanks
Melih

Offline naren

  • Comodo's Hero
  • *****
  • Posts: 4376
Re: What do you think about this video?
« Reply #18 on: October 15, 2010, 08:01:29 AM »
But why did CAV didn't detected the files second time??? Is this a bug in CAV?? or care to give info on this. Coz I find it strange CAV detecting the files first time & not detecting second time.

Thanxx
Naren

Offline umesh

  • Comodo Staff
  • Comodo's Hero
  • *****
  • Posts: 866
    • COMODO
Re: What do you think about this video?
« Reply #19 on: October 15, 2010, 08:17:47 AM »
Hi,
But why did CAV didn't detected the files second time??? Is this a bug in CAV?? or care to give info on this. Coz I find it strange CAV detecting the files first time & not detecting second time.

Thanxx
Naren

It is because the way CIS works. Due to speed optimization, it does not do TVL cloud lookup on on-access, but  when a file is detected as malware it verifies in cloud if it is safe, as it can be false-positive also, and if so, vendor is added to local Trusted Vendor List.

Next time when file was executed, vendor was already in TVL as last check found vendor in cloud and added to local TVL list and therefore there was no alert in second attempt.

Thanks
-umesh

Offline naren

  • Comodo's Hero
  • *****
  • Posts: 4376
Re: What do you think about this video?
« Reply #20 on: October 15, 2010, 09:02:21 AM »
Hi,
It is because the way CIS works. Due to speed optimization, it does not do TVL cloud lookup on on-access, but  when a file is detected as malware it verifies in cloud if it is safe, as it can be false-positive also, and if so, vendor is added to local Trusted Vendor List.

Next time when file was executed, vendor was already in TVL as last check found vendor in cloud and added to local TVL list and therefore there was no alert in second attempt.

Thanks
-umesh


I was thinking of this but wanted an info from the experts. Thanxx you explained it clearly.

But on first attempt if the file is detected as malware & the cloud lookup found the file safe & added it to TVL local that means it was an FP, but an average user will not try to run the file second time. Dont you think it should do TVL cloud lookup on onaccess.

Thanxx
Naren

Offline tommymacangel

  • Comodo Loves me
  • ****
  • Posts: 134
Re: What do you think about this video?
« Reply #21 on: October 16, 2010, 06:34:42 AM »
One more time, this thing indicates that TVL is not offering maximun protection (event if, of course it helps to decrease number of popup etc....).

For me, the best protection is based on a whitelist refering to uniques files :-TU

Remember STUXNET with Realtek and JMicron digitals signatures...

 

Seo4Smf 2.0 © SmfMod.Com | Smf Destek