Should’t it not only take about 15min before we got result if a file is safe or malicious?
Keepass is still running in the sandbox here, and have done so for almost 24 hours so far, and “Perform cloud based behavior analysis of unrecognized files” is enabled
If files also gets analysed if “Enable Cloud Scanning” is enabled in manual scanning, then i have waited since CIS V5 was released, because i did a scan right after i installed CIS.
(or is that only the av database thats used in the cloud there?)
Two remarks to this. The promised 15 minutes is not met. Comnodo is aware and working on it according to umesh:
Deeming a file safe is done by human analysts. It can never be done in a short time. That has not been clear from what was told in the period before the final release. Deeming unsafe can be done automatically and should become quicker in time.
wasgij6 following is the way i see it.
when the file is submitted to comodo for analysis even though its seems to be safe file (at times its not safe) also when the file is submitted to comodo and they do not find malware in it, it helps other users as welll because when they also checking for that same file, CIS with its cloud computing and threatcast already knows its malware or not. so it helps other users too and also us.
If by chance the file which was thought to be “Safe” file was “malicious” then its not good idea to add it as “trusted file”.
Yep, not submitting the file to Comodo because we know it’s safe isn’t a valid argument. Most users won’t know that. I didn’t know they were analysing the files manually, it certainly would be faster if it was automated (but maybe they have a virtual system which do that at first).
A user can know that the file he installs is safe. For example some parts of my ATI catalyst were sandboxed, so i put them into trusted manually. Or if it’s some parts of the game or other 100% safe program you used before. If you’re not sure 100% leave it partially limited. It still will be functional but never can hurt your system. And to wait even 5 days is not a big deal to my mind knowing that you’re still protected
Umesh I want to ask one thing. I know it takes time to mark files safe. Today 1 of my app Broadcom in Unrecognized was marked safe & shifted to trusted lists.
I want to know is MS office still not marked safe. Powerpoint & Excel are in trusted lists but Word & Access are still in unrecognized. Tried online lookup but Unknown. Outlook is still Unknown. Wot say…
All files from Windows which have Windows signature, are auto treated safe. If they don’t it simply ends up like any other product and needs to be whitelisted selectively.
Can you please tell us version of Microsoft Office you are using?
In the screenshot you will see amcap.exe (Webcam), its from iball but the name is shown Microsoft. Is iball a Microsoft Co. or a mistake in naming here??