maybe here is a fp


and here is the link from virustotal of this file:

Hi sdfsadfdfs,

Thank you for reporting this.
We’ll check it and get back to you soon.

Yuvaraj M


This is to inform you that false-positive has been fixed.
You can update to AV database Version <18494> and confirm it.

Kind Regards,
Erik M.

NOT FIXED ! I have vdb 19117 and today a same detection occured. It found it in a cheating protection software that comes with the Vindictus pc game… the software is called HackShield. The path of the file is “C:\Nexon\Vindictus EU\en-EU\HShield\Update\patch\39\update” and the file name is “hsupdate.ex-”.

Hi Victor Popescu,
About Sha1:3afe911694ec8bd4b768dc5f7c6bfc5fc49adecb that false-positive has been fixed.
You can update to AV database Version <19119> of Comodo Internet Security Version<7.0.317799.4142> and confirm it.

Have anyother FP Could you please submit the detected file at Comodo Firewall | Get Best Personal Firewall Software for $29.99 A Year.

Best regards

Hi ! Thanks for responding. The update did not fix it, it’s still being detected. I’ve submitted the file at the link you gave me. What’s suspicious is that the original user that made this thread got a detection of this suspicious malware/fp in an executable of a different program but in my case it was detected in some file that is not an .exe, the extension is .ex- which is weird. I’m confident that you guys will solve this mystery.

Thank you.

I have vdb 19128 and it’s FIXED. Thanks guys !