FP's

Comodo Internet Security - CIS AV False Positive/Negative Detection Reporting
1

CIS database number: 1060
heuristics: high

C:\hp\bin\KillWind.exe
(KillWind.exe is a utility program that HP includes in their software packages)
http://www.virustotal.com/analisis/16a58a6bd068bac6e29a9386874c5841
http://camas.comodo.com/cgi-bin/submit?file=36fd9805f51ade56df0c5ecfeb1919ccaa25fc552e375e3799fb6450e25a2bc7

D:\Info.exe
(The D:\ drive is a Recovery Partition on a preinstalled HP computer)
http://www.virustotal.com/analisis/ef3e6a6742c1c328d2946d8a2d3ba476
http://camas.comodo.com/cgi-bin/submit?file=ee578cb48d8d03e74f1188fbecd68badc6088f5adf61a2feffa352c152c216e1

(I have no idea what thoose other files are…)

C:\Documents and Settings\All Users\DRM\IndivBox.key
http://www.virustotal.com/analisis/9253d8220b6be50c4718d29aa87d9016
http://camas.comodo.com/cgi-bin/submit?file=9454052af8625175fdf0cbd279b5a3edbf58af67d4103eb7e0b0495738901e77

C:\Documents and Settings\All Users\DRM\Cache\Indiv01.key
http://www.virustotal.com/analisis/93a2914f6933fbfa5b026c4bf1b026cb
http://camas.comodo.com/cgi-bin/submit?file=9454052af8625175fdf0cbd279b5a3edbf58af67d4103eb7e0b0495738901e77

C:\Documents and Settings\Username\cbt\lib\cbtsysinfo-0.dll
http://www.virustotal.com/analisis/765a4d6e7774d41127d539c25b9f3967
http://camas.comodo.com/cgi-bin/submit?file=e4db0b4ff21e15a7db90d2a813d2218e9bb9ec7bc4d4b8e8c495dd429140b759

C:\Documents and Settings\Username\cbt\lib\cbtsysinfo-1.dll
http://www.virustotal.com/analisis/c05fe5635b26649d91576e6d7f8f8d51
http://camas.comodo.com/cgi-bin/submit?file=e4db0b4ff21e15a7db90d2a813d2218e9bb9ec7bc4d4b8e8c495dd429140b759

[attachment deleted by admin]

2

Hi Lasse88,

FYI: Application/Applicunsaf/AppliUnwnt are detection name used to term files as Potentially unwanted/dangerous applications.
You can add this file in Exclusion list.

We fixed FP’s on Info.exe,Indiv01.key.

cbtsysinfo-1.dll,cbtsysinfo-0.dll are Very suspicious. You can verify the Virustotal link you posted here.

Thanks for reporting.Much appreciated.

Thanks and Regards,
Suresh.

3

Thx, it only detecs the 2 suspicious files now. :slight_smile:

4

I uploaded both of those suspicious files to Avira, and they say both files are false positives…

[attachment deleted by admin]