Author Topic: False positives and exploits which are undetected  (Read 178160 times)

Offline kitmub

  • Comodo Loves me
  • ****
  • Posts: 136
Re: False positives and exploits which are undetected
« Reply #90 on: February 11, 2014, 04:31:29 AM »
possible false positive   xxx.philamfunds.com.ph

http://app.webinspector.com/public/reports/20029839?cache=true

google just recently marked it as suspicious not sure if it got attacked but its a company website  afaik

would be nice if it is a legitimate or false though

Offline Slav

  • Comodo Member
  • **
  • Posts: 29
Re: False positives and exploits which are undetected
« Reply #91 on: February 12, 2014, 04:01:29 AM »
hello kitmub!
thanks for your feedback, here's updated report http://app.webinspector.com/public/reports/20048272


Offline Slav

  • Comodo Member
  • **
  • Posts: 29
Re: False positives and exploits which are undetected
« Reply #93 on: April 28, 2014, 06:26:07 AM »

Offline kitmub

  • Comodo Loves me
  • ****
  • Posts: 136
Re: False positives and exploits which are undetected
« Reply #94 on: July 26, 2014, 01:58:49 AM »
i dont know if i should post it here also

PUP sweetpack detected by SI

https://www.virustotal.com/en/url/496b395c4370350d7c3e45145d5a40fba193f052f3068e2cb76b65dcb245c356/analysis/1406352429/

http://www.urlvoid.com/scan/sweetpacks.com/


http://app.webinspector.com/public/reports/23391011

edit added other website some already is ip 0.0.0.0 but wasnt able to filter them out and yes its a long list

https://www.virustotal.com/en/url/b4e94fedad80d46fb4edc1b4ed91f0ef04a49e96fb6dfe36984b3862fc8f5401/analysis/1406356574/

https://www.virustotal.com/en/url/46b28dc8c70cdc4f3c64dea517e32354d3602d1cf6806412bd2b9047ebaeffd5/analysis/1406356829/

https://www.virustotal.com/en/url/300dd215925f85415a0148920c8d11d108a80f79011c1a70edc3728afc08fd29/analysis/1406357137/

http://www.urlvoid.com/scan/cerpoo.com/

https://www.virustotal.com/en/url/5494d355c79cfef45482742b70a7695d1043df5db6978668a6e6b4ffa423ecef/analysis/1406357418/

http://www.urlvoid.com/scan/jorped.com/

https://www.virustotal.com/en/url/4fca9f357e204a4c67f62807a3c01b66b5edfa49d30f6ad44759d0cdfb566c30/analysis/1406357757/

http://www.urlvoid.com/scan/kevfer.com/
https://www.virustotal.com/en/url/996ed7174e5011527a3d83678ce0e2adb8962e889856b7948379e4bbcc8c419a/analysis/1406357850/

http://www.urlvoid.com/scan/naurup.com/

https://www.virustotal.com/en/url/fd4c3ed05b5cc24c4d003a8cd6582a573bc8097c9b4f972a1a03273b10dbe486/analysis/1406358076/

http://www.urlvoid.com/scan/pempoo.com/
http://app.webinspector.com/public/reports/23393422

http://www.urlvoid.com/scan/podfer.com/

https://www.virustotal.com/en/url/43bcb6e86505e73335e156a7a17c499df565f71989e49536fe168166718ccd1f/analysis/1406358369/

http://app.webinspector.com/public/reports/23393554

https://www.virustotal.com/en/url/9e143754313906eb194cf05e83cfa0dc1bf1dc3925cece133eeb786d500f7be6/analysis/1406358466/
http://app.webinspector.com/public/reports/23393558
http://www.urlvoid.com/scan/quaped.com/

http://www.urlvoid.com/scan/qutped.com/

http://www.urlvoid.com/scan/saspoo.com/
https://www.virustotal.com/en/url/1e12c44a7a66906c4749e915d091a5622f28941fb9ec592416d196bd4852431e/analysis/1406358893/
http://app.webinspector.com/public/reports/23393568

http://quttera.com/detailed_report/www.ihowandwhy.com

https://www.virustotal.com/en/url/0cf09e40e7fe8b3b56058062fe892ca29708a5d87c6e78cd4d6fa4c417437b1b/analysis/1406359112/
http://www.urlvoid.com/scan/sedpoo.com/
http://app.webinspector.com/public/reports/23393599

https://www.virustotal.com/en/url/2e509f7ea6932e1651bdf0faf173660d2e0884dd08e608410c0287155946ff85/analysis/1406359371/
http://www.urlvoid.com/scan/tivped.com

http://www.urlvoid.com/scan/verfer.com/
https://www.virustotal.com/en/url/dbbe65412d197674edb186477b02550fcd756c1ea464649ef3bfaaf0e1a442b6/analysis/1406359488/

https://www.mywot.com/en/scorecard/hugedomains.com   -possible phishing
http://quttera.com/detailed_report/www.hugedomains.com

https://www.virustotal.com/en/url/95de4856088bf36f1a63432fd5cb1fb01669e0c4edc99e3c603b7632d37fa676/analysis/1406360210/

http://www.urlvoid.com/scan/xedfer.com/

http://www.urlvoid.com/scan/xetpoo.com/

https://www.virustotal.com/en/url/37d0f5edd833e74c75704a52812a4fe10efcec22e7d09e1d563c70ab3e4cd35b/analysis/1406360337/
« Last Edit: July 26, 2014, 04:34:37 AM by kitmub »

Offline Slav

  • Comodo Member
  • **
  • Posts: 29
Re: False positives and exploits which are undetected
« Reply #95 on: July 30, 2014, 04:40:29 AM »
Hello, kitmub!
We've reviewed list you provide. As you mention, alot of sites are unresolved for now. Got some updated reports for approved sites. Thanks for your feedback.

Offline kitmub

  • Comodo Loves me
  • ****
  • Posts: 136
Re: False positives and exploits which are undetected
« Reply #96 on: September 24, 2014, 08:47:53 AM »
possible phishing site

Rnobogenie.cxx

though the Mobogenie already has bad reputation for ads

its a visual trick   rnobogenie vs mobogenie

also downloaded something (in virtual mode comodo dragon of course ) from the Rnobogenie site this is what cmas/cimas says about it

http://camas.comodo.com/cgi-bin/submit?file=342600291ed8c9f0cb4a9035bf8bb29ce85d9bc2a971ddfa61bdb4e3591cfdbd



Offline Slav

  • Comodo Member
  • **
  • Posts: 29
Re: False positives and exploits which are undetected
« Reply #97 on: September 26, 2014, 04:02:53 AM »



Offline Slav

  • Comodo Member
  • **
  • Posts: 29
Re: False positives and exploits which are undetected
« Reply #100 on: October 24, 2014, 07:32:20 AM »
thanks for feedback, guys! verdicts have been updated  :-TU

Offline malware1

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 3266
Re: False positives and exploits which are undetected
« Reply #101 on: October 24, 2014, 08:34:41 AM »
Slav, all verdicts are still the same.

Offline Slav

  • Comodo Member
  • **
  • Posts: 29
Re: False positives and exploits which are undetected
« Reply #102 on: October 24, 2014, 08:41:33 AM »
Slav, all verdicts are still the same.
not reports , but verdicts :)   Please , check this updated info for the first link from your list http://app.webinspector.com/public/reports/26187396

Offline malware1

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 3266
Re: False positives and exploits which are undetected
« Reply #103 on: October 24, 2014, 09:28:35 AM »
not reports , but verdicts :)   Please , check this updated info for the first link from your list http://app.webinspector.com/public/reports/26187396
Sorry, I didn't know I need to scan the URLs again.

Offline malware1

  • Malware Research Group
  • Comodo's Hero
  • *****
  • Posts: 3266

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek