Author Topic: False positives and exploits which are undetected  (Read 95763 times)

Offline vadim

  • Comodo's Hero
  • *****
  • Posts: 248
False positives and exploits which are undetected
« on: April 29, 2011, 07:24:56 AM »
We would be grateful for any information about false positives and exploits which are undetected by SiteInspector detection engine.

Thank you for all your feedbacks which help us to improve the detection technology.

Offline EricJH

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 19140
Re: False positives and exploits which are undetected
« Reply #1 on: April 29, 2011, 08:42:00 AM »
Stickied.

Offline morphiusz

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 2543
    • Suspicious file?
« Last Edit: April 29, 2011, 05:04:51 PM by morphiusz »

Online wasgij6

  • Volunteer Moderator
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 3769
« Last Edit: April 30, 2011, 12:50:12 AM by wasgij6 »
| Win 8.1 Pro (x64) | UAC Disabled | CFW 7.0.317799.4142 | Intel i7 4770k | Asus Maximus VI Formula Mobo | Asus GeForce GTX 780 | G.Skill TridentX 16gb RAM | Samsung 840 Pro SSD |

Offline morphiusz

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 2543
    • Suspicious file?

Online wasgij6

  • Volunteer Moderator
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 3769
| Win 8.1 Pro (x64) | UAC Disabled | CFW 7.0.317799.4142 | Intel i7 4770k | Asus Maximus VI Formula Mobo | Asus GeForce GTX 780 | G.Skill TridentX 16gb RAM | Samsung 840 Pro SSD |

Offline morphiusz

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 2543
    • Suspicious file?
« Last Edit: May 25, 2011, 02:59:18 PM by morphiusz »

Online wasgij6

  • Volunteer Moderator
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 3769
| Win 8.1 Pro (x64) | UAC Disabled | CFW 7.0.317799.4142 | Intel i7 4770k | Asus Maximus VI Formula Mobo | Asus GeForce GTX 780 | G.Skill TridentX 16gb RAM | Samsung 840 Pro SSD |

Offline morphiusz

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 2543
    • Suspicious file?
Re: False positives and exploits which are undetected
« Reply #8 on: June 05, 2011, 03:55:11 AM »
It's only because Comodo AV cannot detect it..
When it will be added to AV database it will be detected.
SI didn't fail :).
Submit this file to the AV lab.

Online wasgij6

  • Volunteer Moderator
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 3769
Re: False positives and exploits which are undetected
« Reply #9 on: July 04, 2011, 01:35:26 AM »
| Win 8.1 Pro (x64) | UAC Disabled | CFW 7.0.317799.4142 | Intel i7 4770k | Asus Maximus VI Formula Mobo | Asus GeForce GTX 780 | G.Skill TridentX 16gb RAM | Samsung 840 Pro SSD |


Online wasgij6

  • Volunteer Moderator
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 3769
Re: False positives and exploits which are undetected
« Reply #11 on: July 28, 2011, 02:22:26 PM »
http://siteinspector.comodo.com/public/reports/171236


if this is a FP then there are a lot because all its saying is a file was downloaded into temporary internet files which is what happens when you install a program
| Win 8.1 Pro (x64) | UAC Disabled | CFW 7.0.317799.4142 | Intel i7 4770k | Asus Maximus VI Formula Mobo | Asus GeForce GTX 780 | G.Skill TridentX 16gb RAM | Samsung 840 Pro SSD |

Offline morphiusz

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 2543
    • Suspicious file?
Re: False positives and exploits which are undetected
« Reply #12 on: July 28, 2011, 03:32:59 PM »
i think that it is working differently. it checks action preformed by browser without user premission.

Online wasgij6

  • Volunteer Moderator
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 3769
Re: False positives and exploits which are undetected
« Reply #13 on: July 28, 2011, 03:36:44 PM »
i think that it is working differently. it checks action preformed by browser without user premission.

maybe but i have tested SI against some legit download sites like filehippo.com and i put the link it for ccleaner installer and it flags it as a medium risk.

http://siteinspector.comodo.com/public/reports/172069
| Win 8.1 Pro (x64) | UAC Disabled | CFW 7.0.317799.4142 | Intel i7 4770k | Asus Maximus VI Formula Mobo | Asus GeForce GTX 780 | G.Skill TridentX 16gb RAM | Samsung 840 Pro SSD |

Offline morphiusz

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 2543
    • Suspicious file?
Re: False positives and exploits which are undetected
« Reply #14 on: July 28, 2011, 03:57:38 PM »
so that should be fixed asap ...

 

Seo4Smf 2.0 © SmfMod.Com | Smf Destek