no uknown processes
good work comodo
[attachment deleted by admin]
no uknown processes
good work comodo
[attachment deleted by admin]
Niceā¦No alerts for you sir
Melih
This is a tool to unlock the office 2010.
[attachment deleted by admin]
So, illegal?
Keygens, cracks etc. are also detected as malwares.
Some Keygens will exploit your machine tricking software into thinking its a activated copyā¦ So yeah it would be a unsafe app.
I donāt think itās running under srvany for the fun of it
HaHaā¦ agreed! :-TU
hope that there will be chinese simplified versionā¦ā¦
[attachment deleted by admin]
Clean as a whistle
Jake
[attachment deleted by admin]
There are still false positivesā¦
Whatās the reason of submitting them to Comodo if theyāre not solvedā¦
Another frustrating answer from the virus analystsā¦
[attachment deleted by admin]
Hi Tech, you are talking about ātheseā false-positives?
I only see FLS unknown, I donāt think thatās an FP.
A DACS result from an other vendor, donāt think Comodo can fix that.
And a UnclassifiedMalware that does look like a FP, can you post a shot from the verdict tab to see which part flagged it malware (probably CIMA). and preferably also the SHA1 hash of the file.
What is FLS then?
I see. Itās a ClamAV detectionā¦
Verdict screenshot. Iām absolutely sure that it is a false positive. Itās a local application (paid).
http://www.virustotal.com/file-scan/report.html?id=fbf44719bed4537a7e5601913d04703df1cb59014427bf441fbef4bbce95fa56-1296076344
MD5: 7de40a52b993b21a7c2dfba1371a8057
SHA1: dbb78096d48288846a251498a59d808c130bec2b
SHA256: fbf44719bed4537a7e5601913d04703df1cb59014427bf441fbef4bbce95fa56
[attachment deleted by admin]
Hi Tech,
FLS = File Lookup Service.
CIS/CCE/KS send out the HASH of the file to the FLS, if the HASH is found malicious itās marked.
If the HASH is not in the database it returns āFLS.Unknownā.
Did you report the FP here? Normally they respond within a day with a āfixā so it shouldnāt take to long to fix.
I think forum FPās are faster processed then the oneās submitted trough the web submission form, but thatās just a feeling.
No, I didnāt know I should do it there. Iāve done there.
https://forums.comodo.com/av-false-positivenegative-detection-reporting/false-positive-of-killswitch-t68658.0.html;new#new
Hello everyone, hereās my screenshot.
Btw. I reported mcshield last year for trusted application
http://forums.Comodo.com/news-announcements-feedback-cis/submit-applications-you-want-to-be-made-trusted-here-t46391.0.html;msg451583#msg451583
[attachment deleted by admin]
Ok, thanks.
Would be interesting to see Properties > Verdict for MCShieldRTM.exe.
Here is it!
Itās not rogue/fake program, itās really excellent program for protecting from infected usb storages!
[attachment deleted by admin]
Thanks. Detected by ClamAV.