Does enabling ADS change the “File Modification Time stamps” when a file is copied? has anyone tested? Because without ADS if a file is copied in NTFS to NTFS the “File creation datetime is modified” , but not the file modification time. according to link.
Thanks
Regards.
AB
Malware Research Group is a group of end users who love to hunt malware. Moderators are end users like everybody else. Our only affiliation with Comodo is that we love Comodo products and want to help to keep the forums a pleasant place to be.
Only users with the Comodo Staff avatar are representatives of Comodo and they come with different tasks and responsibilities.
I thought reply from "comodo staff" is an authenticated reply hence reported to "comodo staff"It is good custom to submit a likely false positive to the av vendor that makes the false positive detection. With the digital signature intact it is very unlikely for the executable to be compromised hence why we think it is highly unlikely to be malicious. That’s why yigido submitted it to CMC.“Please submit this to CMS as a false positive so they can fix it”. I thought comodo are suppose to do that not the end user. I thought comodo and cmc are suppose to handle that.
There is no use in talking to VT about this as VT only shows the opinion of various scanners. When a possible false positive shows up it’s good custom to report to the av vendor making the false positive detection.
ok…thanks for clarification…then does it mean “comodo staff” does not take this into account? in replying to our queries atleast that they are acting on it or is not a virus etc, and only “global moderators” or others reply? and that we should send mails to vt/cmc etc that comodo is perfect?
May be the customs are different. I thought I am helping comodo know that some antivirus is reporting cmdagent.exe as a virus. Is that not a good custom? if need be I can send a mail to cmc or others but comodo staff should let us know about it…as an authenticated source. else any user will say any virus is not a virus to the antivirus concerned. I am not saying comodo is a virus I am just asking them to check or may be its bug which can be corrected in the next release etc and I thought its a good for “comodo staff” to reply.
Thanks .
Regards,
AB
I am afraid this always lies with the end user, as Eric has point out it is good custom to report to the av vendor.
The only FP that do concern Comodo Staff are those caused by there own antivirus.
Thank you
Dennis
It is not needed for Comodo staff to contact CMC as a reputable source.
Production of signatures is highly automated and may incidentally produces false positives. In that case a human analyst will look at the file in depth and decide whether it is malicious or not.
Well, I’m getting more confused. Why does the date change when I download with a browser, but doesn’t change when I use a separate, independent downloader (DownThemAll)?
Probably CIS doesn’t recognize it. Is it listed in Download Managers group in Files Group in Advanced Settings(under File rating)?
No. DownThemAll isn’t in the list (that’s a good thing for me). If I need to retain a file date I’ll use it instead of the browser downloader.
Not too good for Comodo 
That means not all sources are covered.
Hi L.A.R. Grizzly,
I am inclined to think this would have something to do with the ‘Multipart’ architecture that DownThemAll uses.
AFAIK if a downloaded file is in a Zipped folder or some other certain compression formats, then the original creation date may remain. (Not sure why)
I have just downloaded a file on a system without CIS installed and the creation date is the current day/time, the modified time is a few minutes after when the download completed.
I agree with the quote posted below by Sanya.
Kind regards.
Thanks for looking into this matter. I’m satisfied that CIS isn’t the culprit in the date changes.
This is normal behavior of downthemall.
There is an option in advanced settings of downthemall (enabled by default) who tell to keep original date/time of file coming from download server.
All browsers instead set the creation date to download start and modification date to download end.
That is why i always use DTA to download files.
I don’t know if there are other download managers with this feature
Hello everyone!
I apologize if this topic is not that I can report problems!
I use the version 8.1.0.4426.
I tried to update to version 8.2.0.4508 and appeared the error below, how to solve this problem in the update?
Thank you!
Hugs!
[attachment deleted by admin]
Thanks. I’ll continue to use DTA as well.
Try a clean install following Most Effective Way to Reinstall CIS to Avoid/Fix Problems by my colleague Chiron. When you want to keep your settings make sure to export the active configuration to a folder that is not part of the CIS installation folder.
When the above does not help please start a topic about in the help board.
There seems to be a conflict with PowerDVD 11 - when I try to play a Blu-ray disc it fails with “Cyberlink PowerDVD cannot access the storage device” error. I tried to disable all CIS components and the Enhanced protection mode, but the only solution appears to be to completely uninstall CIS - after that the playback works.
Did you try adding the PDVD executable(s) or installation folder to the Exclusions of “Detect shellcode injections (i.e. Buffer overflow protection)”?
Thank You, EricJH!
I’ll try to do a clean install because the above method did not work!
Hugs!
If you are using windows 8.1 x64, always uninstall CIS with add/remove programs. Dont use a uninstaller like revo or iobit and so on.
It always work for me when use windows own uninstall method and reboot the computer when CIS says so. Good luck!
It is best to first use the uninstaller. After that you can use the clean up tool for CIS. Or when the uninstaller fails it is best to use the clean up tool in Safe Mode.