Author Topic: Hater's scream  (Read 3732 times)

Offline jay2007tech

  • Malware Research Group
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 2309
Re: Hater's scream
« Reply #15 on: July 03, 2020, 03:28:05 PM »
Quote
2.  OpenVPN client when connected makes HIPS freeze sometimes. I have reported about that years ago. Every new version - still the problem exists. OK I will switch off HIPS when using VPN.
I love HIPS,  For me if I get issues like that,  Ill would put "HIPS"  in "Training mode" before I using the VPN.   Then when in "Traing Mode" start up VPN and use it for a couple of minutes, then put it back to "Safe Mode" That should be good until next update.  Also For the New VPN updates or Installation, I also put it in "Training mode" First before starting  after that it goes right back to "Safe Mode".

Also when your VPN or anything that HIP's keeps popping up on for whatever reason when is running,  Run "Rating Scan"  Can the ones that says "unrecognized" to "Trusted".    I generally run any new program before using "RatingScan". 

It prevents lot of potential issues with HIPS. 

For some reason, Most computers work fine with a (Few to No) issues.  There's a few computers that seem to run into issues for some reason.  I don't know why.  Luckily its only a very small percentage. 
Quote
6. False positives will never be proceeded when you hit "False positive" in AV warning message. Believe me - it's better to add exclusion from the very beginning.
I agree,  although some programs like legit(non-infected ones) keygens, patchs, and piracy stuff or certain adware.  It might be fine for consumers,  it wont do anything malicious (except for the laws that prohibit it  (Like no bad effects even thought it gets flagged)  But for business computers that is a big issue and that's why certain "Flase Flags" won't get removed

Then again, there are some false positives that haven't got fix for whatever reasons it maybe

Quote
7. ?????.........
LOL..  >:-D



It's hard being a crooked Admin when the files won't pass an md5checksum test.  But like any other good crooked Admin it can be done, it just takes time(and lots of it) and a few aspirins

Offline gjf

  • Comodo Loves me
  • ****
  • Posts: 114
  • Fuimus - non sumus... Carpe diem!
Re: Hater's scream
« Reply #16 on: July 04, 2020, 05:55:33 AM »
Thanks for getting my point.

There are different ways to make HIPS working with VPN issue - but it certainly should be fixed by design, but not by "ways'.
As for detects - I know about Themida, stolen certificates and others - but it should be definitely marked not like "ApplicUnwnt[at]0", "Malware[at]0", or "Unknown". Why other vendors use a strict terms for that - but not Comodo? Why I cannot add an exclusion for those detects using a strict name of threat?

 

Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek