Author Topic: False positives and exploits which are undetected  (Read 180701 times)

Offline vadim

  • Comodo's Hero
  • *****
  • Posts: 339
Re: False positives and exploits which are undetected
« Reply #75 on: October 14, 2013, 03:13:33 AM »

My website has for a long period of time been listed on the Virustotal.com site inspection list as "malware".

Now since I am the website owner and also the owner of the software that is being sold via that website, I know the there is absolutely nothing malicious about neither the website, nor the sofware that is available from the website.

Hello

Could you please provide name of your website? We need it to research this question.
--
Vadim Lvovskiy
Development Manager
COMODO Group Inc.


Offline Slav

  • Comodo Member
  • **
  • Posts: 29
Re: False positives and exploits which are undetected
« Reply #77 on: December 12, 2013, 06:18:04 AM »
Hello, kitmub!
Thanks for your reply.  Updated report for hxxp://h4420.com/ here http://app.webinspector.com/public/reports/18859186.

Second link has adult contert  :P0l and javascript "stopper" when living page but can't be approved as malicious.

Offline kidx86

  • Newbie
  • *
  • Posts: 9
Re: False positives and exploits which are undetected
« Reply #78 on: December 22, 2013, 01:58:57 PM »

Offline Slav

  • Comodo Member
  • **
  • Posts: 29
Re: False positives and exploits which are undetected
« Reply #79 on: December 23, 2013, 04:31:19 AM »
Hello, kidx86!
Thanks for your attention, here is updated report http://app.webinspector.com/public/reports/19048220



Offline Slav

  • Comodo Member
  • **
  • Posts: 29

Offline morphiusz

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 3082
    • Suspicious file?
Re: False positives and exploits which are undetected
« Reply #83 on: January 20, 2014, 05:24:39 AM »
Just submit hosted file to Comodo AV lab.

Offline Slav

  • Comodo Member
  • **
  • Posts: 29
Re: False positives and exploits which are undetected
« Reply #84 on: January 20, 2014, 05:26:05 AM »
its already there, signatures update in progress...

Offline Pouria

  • Comodo Family Member
  • ***
  • Posts: 70
  • Flame
Re: False positives and exploits which are undetected
« Reply #85 on: January 20, 2014, 07:37:58 AM »
Hi guys .

Thank you for adding this .

This site has many viruses in it . can you add this whole site to secure dns and web inspector ?

This are the viruses that founded in in this website :

Link: hxxp://dlp.allfiles105.com/te7rIN_ols1dsMIiCA697BE8xX_SnAPttORd2KkvGpLeQzocxMgDjRe3vvOps0_GhLTeumX3LBEnH6UTcBGz4g
Link: hxxp://dlp.allfiles104.com/thH6VLoy3Lbbp6wLWr7tRXJZ4phyvJH1FrK-AsmQ_l58yEcyxQm7BkypuYsFl3k8bYnBqqnzBJAZNaC6fdZD4A
Link: hxxp://dlp.allfiles104.com/vQEOKBhs8ftc6me9hihHqCuShAQerOcC4n5Y4msT9fU6M37JFM2tWrDtKBs0DN2lV8azUN99z-l45Cb-PNlpcQ
Link: hxxp://dlp.allfiles104.com/pKKEUjyI5DwSR0_1HrBafXeyBC5_yYmcbrdPIOzYfQWuAiYgubykkHx-K8I2gkZ6U3XAUMR8deouD9q7Xe4RiA
Link: hxxp://dlp.allfiles104.com/+7V_YwdxWIN8FBgJt_Hv6mzsTkVrGXjc5Q-qv-C6ftck1ldAsBg8ElC0VvuZ_8mR8_H8F6aV8Mr6V6-KBrdSsw
Link: hxxp://dlp.allfiles100.com/1/1/ZOMG/1/1/
Link: hxxp://dlp.allfiles101.com/1/1/ZOMG/1/1/
Link: hxxp://dlp.allfiles102.com/1/1/ZOMG/1/1/
Link: hxxp://dlp.allfiles103.com/1/1/ZOMG/1/1/
Link: hxxp://dlp.allfiles104.com/1/1/ZOMG/1/1/
Link: hxxp://dlp.allfiles105.com/1/1/ZOMG/1/1/
Link: hxxp://dlp.allfiles107.com/1/1/ZOMG/1/1/
Link: hxxp://dlp.allfiles108.com/1/1/ZOMG/1/1/
Link: hxxp://dlp.allfiles109.com/1/1/ZOMG/1/1/
Link: hxxp://dlp.allfiles110.com/1/1/ZOMG/1/1/

Please add this site hxxp://www.allfiles.com to secure dns and web inspector .

Thank you .

« Last Edit: January 20, 2014, 07:45:03 AM by pouria »
Flame

Offline spywar

  • Malware Research Group
  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 9560
Re: False positives and exploits which are undetected
« Reply #86 on: January 20, 2014, 07:45:46 AM »
Thank you pouria  :)

Offline spywar

  • Malware Research Group
  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 9560

Offline morphiusz

  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 3082
    • Suspicious file?
Re: False positives and exploits which are undetected
« Reply #88 on: January 20, 2014, 12:14:12 PM »
Is it free hosting website? If yes, I don't see a reason to block a whole domain.
I can find you way more malware urls starting www.dropbox.com/...   :D

Offline Slav

  • Comodo Member
  • **
  • Posts: 29
Re: False positives and exploits which are undetected
« Reply #89 on: January 21, 2014, 03:35:51 AM »
Not sure we can do this, because hxxp://dlp.allfiles1XX.com/ and   hxxp://www.allfiles.com are total different domains. Even more, last one is for sale now. Looks like there were generated domains from 100 to 139 with the same malware links.

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek