Author Topic: False Positive: TweakBit Driver Updater  (Read 1109 times)

Offline ElenaRez

  • Comodo Member
  • **
  • Posts: 26
False Positive: TweakBit Driver Updater
« on: March 12, 2019, 08:18:26 AM »
Hello,
Can you please help us remove a false positive, given to TweakBit Driver Updater. It fully complies with CSA and AppEsteem requirements, doesn't contain any bundles, malware or any other unwanted behavior.
TweakBit Driver Updater download link: http://dynamicdownloads.tweakbit.com/driver/def/driver-updater-setup.exe
Detection name: Malware[at]#53cft09gjllh
SHA256: 04c9e9a7cadf0075c335f2b367f704d8ed094ae03399c820290753a88529f5e4
VirusTotal scan: https://www.virustotal.com/#/file/04c9e9a7cadf0075c335f2b367f704d8ed094ae03399c820290753a88529f5e4/detection
I'd be happy to provide any additional information.
Thank you,
Elena

Offline Vlad.Pe

  • Malware Research Group
  • Newbie
  • *****
  • Posts: 14
Re: False Positive: TweakBit Driver Updater
« Reply #1 on: March 12, 2019, 02:38:25 PM »
Hi,

This is to inform you that the file has been checked and it's not a false-positive.
Device-driver-updater.exe (SHA1: a10b4dbf36b2cab5d56f79c8cd9f02bfb782f3a0) 
If you really want to continue use this file, you can add the file to the exclusion list.

Regards,
Vlad Perju
Comodo Antivirus Lab

Offline ElenaRez

  • Comodo Member
  • **
  • Posts: 26
Re: False Positive: TweakBit Driver Updater
« Reply #2 on: March 13, 2019, 01:50:30 AM »
Hi Vlad,
Thank you for the prompt reply.
Can you please specify what exactly is considered an unwanted behavior so we can address the issue right away and eliminate the detection.
Thank you in advance,
Elena

Offline ElenaRez

  • Comodo Member
  • **
  • Posts: 26
Re: False Positive: TweakBit Driver Updater
« Reply #3 on: March 18, 2019, 08:09:10 AM »
Hi Vlad,

On March 13th, I've requested to identify the issue that causes TweakBit Driver Updater detection so we can address it right away, but haven't received any reply from you.
The program is built according to CSA requirements and was approved by AppEsteem, so it fully complies with all regulations. That is why without your input, we can't find what causes Comodo's flag and, therefore, can't fix the problem to remove your detection. Can you please provide this information.

Thank you in advance,
Elena

Offline ElenaRez

  • Comodo Member
  • **
  • Posts: 26
Re: False Positive: TweakBit Driver Updater
« Reply #4 on: March 25, 2019, 03:49:02 PM »
Hi Vlad,

It is a third request to find out what exactly is causing Comodo’s flagging in TweakBit Driver Updater. The program fully complies with CSA and AppEsteem requirements and has only 5 detections, one of which is from your antivirus. Please see VirusTotal scan: https://www.virustotal.com/gui/file/04c9e9a7cadf0075c335f2b367f704d8ed094ae03399c820290753a88529f5e4/detection
Can you please provide specifics, so we can correct it and eliminate your detection.

Thank you,
Elena

Offline EricJH

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 25512
Re: False Positive: TweakBit Driver Updater
« Reply #5 on: March 26, 2019, 11:22:59 AM »
The final verdict is that it is a PUA (Potentially Unwanted Application) as Valkyrie tells: https://valkyrie.comodo.com/get_info?sha1=a10b4dbf36b2cab5d56f79c8cd9f02bfb782f3a0 .

However the name does not reflect it and names it a malware.  :-\

Offline ElenaRez

  • Comodo Member
  • **
  • Posts: 26
Re: False Positive: TweakBit Driver Updater
« Reply #6 on: March 27, 2019, 02:15:52 PM »
Hello,

We have checked Valkyrie's review and still didn't find what exactly is causing the flag, just a statement of the verdict. Since it is Comodo File Verdict Service, can we please once again request the exact cause of TweakBit Driver Updater detection.

Thank you in advance,
Elena

Offline ElenaRez

  • Comodo Member
  • **
  • Posts: 26
Re: False Positive: TweakBit Driver Updater
« Reply #7 on: April 04, 2019, 01:30:32 PM »
Hello,
I have no other way but to request once again the exact reason for flagging TweakBit Driver Updater.
The program has only 5 detections including yours and we would like to correct the issue causing it to prevent your detection in the future as well.
Looking forward to your reply.
Elena

Offline ElenaRez

  • Comodo Member
  • **
  • Posts: 26
Re: False Positive: TweakBit Driver Updater
« Reply #8 on: April 22, 2019, 09:07:12 AM »
Hello,
It has been a while since my last message, but I still didn't receive a reply. Can you please let us know what exactly is being flagged in TweakBit Driver Updater so we can correct the issue and eliminate the detection. The program has only 5 detections including yours.

TweakBit Driver Updater download link: http://dynamicdownloads.tweakbit.com/driver/def/driver-updater-setup.exe
Detection name: Malware[at]#53cft09gjllh
VirusTotal result: https://www.virustotal.com/gui/file/04c9e9a7cadf0075c335f2b367f704d8ed094ae03399c820290753a88529f5e4/detection

I'd be happy to provide more information.
Thank you,
Elena

Offline Vlad.Pe

  • Malware Research Group
  • Newbie
  • *****
  • Posts: 14
Re: False Positive: TweakBit Driver Updater
« Reply #9 on: April 23, 2019, 02:37:38 PM »
Hi ElenaRez,

This is to inform you that the false-positive file have been fixed.
Please update to AV database version 30760 of Comodo Internet Security version 11.0.0.6744 and confirm it.

driver-updater-setup.exe (SHA1: a10b4dbf36b2cab5d56f79c8cd9f02bfb782f3a0)


Regards,
Vlad Perju

Offline ElenaRez

  • Comodo Member
  • **
  • Posts: 26
Re: False Positive: TweakBit Driver Updater
« Reply #10 on: April 23, 2019, 02:41:36 PM »
Thank you so much, Vlad, really appreciate your help!
Best regards,
Elena

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek