Author Topic: ===> False Positives <=== (Read 351484 times)

Mops21 · « **Reply #315 on:** February 06, 2019, 03:33:55 PM »

Hi

I have 2 False Positives for you

iexplore.exe

https://www.virustotal.com/#/file/8cdc4cd6c75acff9744937efd1e286ad9e6ee9aff6a3049fd482f9a547f3498b/detection

DeepAV.exe

https://www.virustotal.com/#/file/4d20ff0e8ca634f9fa7d6b46e82118690654369e51c6b22e149fae2569d54cfe/detection

And I have some questions for you

1. Why stand by VT score not scanned what can I do

2. And can you check this Crashdump please

https://www.sendspace.com/file/kjuosl

With best Regards
Mops21

Curson · « **Reply #316 on:** February 06, 2019, 08:23:05 PM »

Hi Mops21,

Welcome to Adlice.com forum.
Thanks for your feedback. We will fix them as soon as possible.

What do you mean by "VT score not scanned" ? Do you have an idea at which point RogueKiller crashed ?

Regards.

Mops21 · « **Reply #317 on:** February 07, 2019, 12:12:46 PM »

Hi Curson

Thank you very much for your Infos

Need you the Files when yes here can you download the Files

https://www.sendspace.com/file/xospek

For my second question see my 2 screenshots please

For my other question with the Crashdump i have make it manually for you to check and analyze

Can you add the right click scanning please

With best Regards
Mops21

Curson · « **Reply #318 on:** February 07, 2019, 02:02:35 PM »

Hi Mops21,

This is not a bug.
RogueKiller only send specific files to VirusTotal for analysis and those two processes were not included.

We will add a "Send to VirusTotal" right click option, but only on Adlice Diag (the Expert version of RogueKiller).
RogueKiller is used by beginners, so we intent to keep it simple.

Regards.

Mops21 · « **Reply #319 on:** February 07, 2019, 02:08:54 PM »

Hi Curson

Thank you very much for your Infos

RogueKiller only send specific files to VirusTotal for analysis and those two processes were not included How can I changed that to scan with VT can you explain me this please or what can I do or you

I mean with the right click scanning to scan Files and Folders with Rogue Anti-Malware and Virustotal

With best Regards
Mops21

Curson · « **Reply #320 on:** February 07, 2019, 02:27:22 PM »

Hi Mops21,

Quote

How can I changed that to scan with VT

Sorry, but it's not possible to change this behaviour.

Quote

I mean with the right click scanning to scan Files and Folders with Rogue Anti-Malware and Virustotal

We will put this suggestion on our roadmap. In the meantime, you can use VirusTotal Windows Uploader third-party tool to do this.

Regards.

Mops21 · « **Reply #321 on:** February 07, 2019, 04:17:13 PM »

Hi Curson

Thank you very much for your Infos

With best Regards
Mops21

Mops21 · « **Reply #322 on:** February 07, 2019, 06:18:38 PM »

Hi Curson

Here are some more FPs from me see my screenshot

APEXlib.dll

https://www.virustotal.com/#/file/28319c93645908987a8fbf7d4c966087650038f254b6afc883ea0b8b28618724/details

APEX.exe

https://www.virustotal.com/#/file/4d20ff0e8ca634f9fa7d6b46e82118690654369e51c6b22e149fae2569d54cfe/details

And here can you download the Files

https://www.sendspace.com/file/dxtyoz

With best Regards
Mops21

Curson · « **Reply #323 on:** February 09, 2019, 12:46:50 AM »

Hi Mops21,

These should be fixed in the latest signatures database.
Could you please confirm ?

Regards.

Mops21 · « **Reply #324 on:** February 09, 2019, 12:20:56 PM »

Hi Curson

That is fixed now

Here is a new FP for you see my screenshot and my scanlog

iexplore.exe

https://www.virustotal.com/#/file/1df7b65df78e96e595def9b98a84cbf695233f9275010d684a65eec9beaf7f15/detection

And here can you download the File

https://www.sendspace.com/file/we822n

With best Regards
Mops21

Mops21 · « **Reply #325 on:** February 11, 2019, 01:48:25 PM »

Hi Curson

Here are some new FPs for you see my screenshot

iexplore.exe

https://www.virustotal.com/#/file/8cdc4cd6c75acff9744937efd1e286ad9e6ee9aff6a3049fd482f9a547f3498b/detection

And here can you download the File

https://www.sendspace.com/file/551d7p

With best Regards
Mops21

Mops21 · « **Reply #326 on:** February 12, 2019, 12:47:39 PM »

Hi Curson

Here is a new FPs for you see my screenshot

Please check and fix it please

iexplore.exe

https://www.virustotal.com/#/file/8cdc4cd6c75acff9744937efd1e286ad9e6ee9aff6a3049fd482f9a547f3498b/detection

And here can you download the File

https://www.sendspace.com/file/mvhcye

And here can you download some more logs

https://www.sendspace.com/file/aymve8

With best Regards
Mops21

Curson · « **Reply #327 on:** February 12, 2019, 07:47:10 PM »

Hi Mops21,

There is no need for you te report all [Hj.Shortcut] detections.

For the time being, every URL which is not explicitly whitelisted will be reported as such.
We are in the process to change this behaviour, so only malicious websites will be reported as [Hj.Shortcut] in the future.

Regards.

Mops21 · « **Reply #328 on:** February 13, 2019, 11:55:48 AM »

Hi Curson

Thank you very much for your Infos

Here are some Logs for you

https://www.sendspace.com/file/gxrmu9

And here is the anotherone Folder with a Logfile you must be enter this Password for it infected

https://www.sendspace.com/file/ntfgbn

With best Regards
Mops21

Mops21 · « **Reply #329 on:** February 14, 2019, 12:12:48 PM »

Hi Curson

Can you check this please

With best Regards
Mops21

Author Topic: ===> False Positives <=== (Read 351484 times)

Mops21

Re: ===> False Positives <===

Curson

Re: ===> False Positives <===

Mops21

Re: ===> False Positives <===

Curson

Re: ===> False Positives <===

Mops21

Re: ===> False Positives <===

Curson

Re: ===> False Positives <===

Mops21

Re: ===> False Positives <===

Mops21

Re: ===> False Positives <===

Curson

Re: ===> False Positives <===

Mops21

Re: ===> False Positives <===

Mops21

Re: ===> False Positives <===

Mops21

Re: ===> False Positives <===

Curson

Re: ===> False Positives <===

Mops21

Re: ===> False Positives <===

Mops21

Re: ===> False Positives <===