Another false positive TDS-3.21 (latest database)

Discussion in 'Trojan Defence Suite' started by halcyon, Feb 9, 2004.

Thread Status:
Not open for further replies.
  1. halcyon

    halcyon Registered Member

    Joined:
    May 14, 2003
    Posts:
    373
    Ok, you may remember that I reported Desert Combat 0.5L as being improperly tagged with "Positive identication" by TDS 3.21.

    Well, past weekend Desert Combat 0.7 was released.

    Can you already guess what happens with it? :)

    Yes, exact same false positive identification:

    Alarm: Positive Identification
    Name: (empty)
    File: desert_combat_full-0.7.exe

    You can download the 605 MBYTE DC 0.7 file from:

    http://www.gamershell.com/news_BF1942BDesertCombatBv0.7.shtml

    ...and verify it for yourself.

    Again, if I disable exec protection, disable tds, install DC 0.7, re-start TDS, re-start exec protection, re-scan the folder where I installed DC 0.7, then I get nothing. Not even a single warning.

    Best regards,
    Halcyon
     
  2. Jooske

    Jooske Registered Member

    Joined:
    Feb 12, 2002
    Posts:
    9,713
    Location:
    Netherlands, EU near the sea
    Looks like the explanation Gavin gave, so large!
    How do your other scanners react on this one?
     
  3. halcyon

    halcyon Registered Member

    Joined:
    May 14, 2003
    Posts:
    373
    None of my other scanners react to the aforementioned Desert Combat install files.


    I also agree that it could be due to size.
     
Thread Status:
Not open for further replies.