WinRAR - Everest - SysInternals

Comodo Internet Security - CIS AV False Positive/Negative Detection Reporting
#1

False Positives, CIS v507 - DB 1160:

1) From latest stable WinRAR: http://rarlabs.com/rar/wrar390b1pt.exe

Default.SFX
http://www.virustotal.com/pt/analisis/755b64d0f6bc873732c94dd316773786

WinCon.SFX
http://www.virustotal.com/pt/analisis/c3bb25493a0f71cd4e2f9c6bd3758907

Zip.SFX
http://www.virustotal.com/pt/analisis/fc649fbefb3fa4f3e1b0df326fe2e9a2

2) From SysInternals Suite: http://download.sysinternals.com/Files/SysinternalsSuite.zip

pskill.exe
http://www.virustotal.com/pt/analisis/91ef80b2c52b140e4a56c46cd25a7348

3) From Everest Ultimate v5: www.lavalys.com

everest_icons.dll
http://www.virustotal.com/pt/analisis/465ef566449ac4c2aa56a415a3ee73aa

everest_xpicons.dll
http://www.virustotal.com/pt/analisis/f8e1dc5a65abf7d08240153e4cb14336


http://img17.imageshack.us/img17/8366/fpsjlp.th.png

THANK’s. (:WIN)

edit: sending now to avlab.

#2

Hi AeoniAn,

The reported False detections are under analysis.

Regards,
-Chandra Mohan

#3

We could not find any detection with the installer found here. Can you please submit the file to us.
Please follow the procedure
https://forums.comodo.com/false_positivenegative_reporting_is_this_a_malware_that_cis_hasnot_detected/how_to_report_false_positivessuspicious_files_how_to_submit_them-t36051.0.html
on submission of files.

[b]2) From SysInternals Suite[/b]: http://download.sysinternals.com/Files/SysinternalsSuite.zip

pskill.exe
http://www.virustotal.com/pt/analisis/91ef80b2c52b140e4a56c46cd25a7348

The reported application is a potentially dangerous application and if you really want to continue using this, please add the executable to the exclusion lists.

[b]3) From Everest Ultimate v5[/b]: www.lavalys.com

everest_icons.dll
http://www.virustotal.com/pt/analisis/465ef566449ac4c2aa56a415a3ee73aa

everest_xpicons.dll
http://www.virustotal.com/pt/analisis/f8e1dc5a65abf7d08240153e4cb14336

These FP’s have been fixed in Database version 1164. Please update your antivirus and confirm this.

Thanks and regards,
Sriram.P

#4

Hi AeoniAn,

All mentioned FPs were Fixed in DB 1170.
Please confirm

Regards,
-Chandra Mohan