Malwares (not detected)

[Guest]

[hailong.wang]

Which setting of the Heuristics Scanning/Level menu do you mean?  Off, low, medium or high?My understanding of heuristics, at least from other companies, is that it helps catch new malware when a signature doesn't exist.  Please explain why it is that Comodo has added a signature for the sample, yet the sample is only detected with heuristics.

Since you have the statistics for Comodo's AV, what is the probability of false positives for Heuristics Scanning/Level set to:
Off?
Low?
Medium?
High?

Thanks

Hi SilentMusic7,

Pls set the heur with low,that is the default setting.As u said,u can scanned it with heur;when turn off the heur,it can't be scanned.The AV scaning include common scanning and heur scanning,when any of them scan it,for exam,"Heur.Suspicious[at]68934715",we should pay attion to it,as it means a malware.And if u don't think it's a malware,u can post a new FP topic about it,we will have a look at it and will get back to you after investigation.

Thanks and Regards,
hailong.wang

[Nikwan3]

Hi,
yesterday I found a virus which is not detected by comodo.

have uploaded the same here

http://camas.comodo.com/cgi-bin/submit?file=88805f4a653cd657e6e48d9d59e13a7639dab11763cb9b5d63278df902413963

[shaogang.he]

Hi,
yesterday I found a virus which is not detected by comodo.

have uploaded the same here

http://camas.comodo.com/cgi-bin/submit?file=88805f4a653cd657e6e48d9d59e13a7639dab11763cb9b5d63278df902413963

Hi,Nikwan3
Detection has been added in Comodo Antivirus database,you can virify with the lastest DB base,currently is 2866
Thanks a lot.
Shaogang

[Nikwan3]

Thanks shaogang.he,
Will verify that..

Have uploaded a few more!


http://camas.comodo.com/cgi-bin/submit?file=4ba58feb003452b069d0c9322d0aea3535d7c8735e08d5c6e12995499d5bda48

http://camas.comodo.com/cgi-bin/submit?file=4ba58feb003452b069d0c9322d0aea3535d7c8735e08d5c6e12995499d5bda48
(Not sure, may be the virus is the same!)

[hailong.wang]

Thanks shaogang.he,
Will verify that..

Have uploaded a few more!


http://camas.comodo.com/cgi-bin/submit?file=4ba58feb003452b069d0c9322d0aea3535d7c8735e08d5c6e12995499d5bda48

http://camas.comodo.com/cgi-bin/submit?file=4ba58feb003452b069d0c9322d0aea3535d7c8735e08d5c6e12995499d5bda48
(Not sure, may be the virus is the same!)

Hi  Nikwan3,

Thanks for malware submission. We are going to check this out and if found malware,detection will be added.

Thanks and Regards,
hailong.wang

[Chiron494]

Hi, I submitted this over two days ago and it still isn't detected. Is it malware or do the other AV's have FP? I don't believe that is possible. I've submitted many of these toolbars to be checked.

http://www.virustotal.com/analisis/1ddf8266bbe1ff40fd794455990837a6b923a4321368661f6e75fe6bfa2efee6-1257956771

http://camas.comodo.com/cgi-bin/submit?file=1ddf8266bbe1ff40fd794455990837a6b923a4321368661f6e75fe6bfa2efee6

[ionelp]

Hi Chiron494,

Hi, I submitted this over two days ago and it still isn't detected. Is it malware or do the other AV's have FP? I don't believe that is possible. I've submitted many of these toolbars to be checked.

http://www.virustotal.com/analisis/1ddf8266bbe1ff40fd794455990837a6b923a4321368661f6e75fe6bfa2efee6-1257956771

http://camas.comodo.com/cgi-bin/submit?file=1ddf8266bbe1ff40fd794455990837a6b923a4321368661f6e75fe6bfa2efee6

Detection will be available in next few updates.

Thanks,
Ionel

[Chiron494]

Thank you, did you get the email I sent that had a link to megaupload that had over a hundred of these variants? If not I can PM it to you. Sorry, I forgot to mention this in my last post.

[bequick]

Not detected:

http://www.virustotal.com/analisis/14a59b4cf6039d9f10503b4c57156e88b8988a6780a64f44ba0b422ac7440dad-1258202185

Another one->> http://www.virustotal.com/analisis/0f2d976af6f870b868733fe2e76da6eda43092b77adb0eac993632b8dbddb3bd-1258203684

and another one->>>  http://www.virustotal.com/analisis/f2768a72d68da11fc63f56eb8098e82e8241708b4c652e8cda24b5af4e5a8bcd-1258203922


and another TWO->> http://www.virustotal.com/analisis/aac24eb053edca278951759d96f6f5e5ab44564ffae64a07e39f4d0ed93dd61a-1258204253

http://www.virustotal.com/analisis/1e6f8e309fa3574feda03179bf600cfcd307131ad96512a1c286513a31fc2b5c-1258204394

[hailong.wang]

Not detected:

http://www.virustotal.com/analisis/14a59b4cf6039d9f10503b4c57156e88b8988a6780a64f44ba0b422ac7440dad-1258202185

Another one->> http://www.virustotal.com/analisis/0f2d976af6f870b868733fe2e76da6eda43092b77adb0eac993632b8dbddb3bd-1258203684

and another one->>>  http://www.virustotal.com/analisis/f2768a72d68da11fc63f56eb8098e82e8241708b4c652e8cda24b5af4e5a8bcd-1258203922


and another TWO->> http://www.virustotal.com/analisis/aac24eb053edca278951759d96f6f5e5ab44564ffae64a07e39f4d0ed93dd61a-1258204253

http://www.virustotal.com/analisis/1e6f8e309fa3574feda03179bf600cfcd307131ad96512a1c286513a31fc2b5c-1258204394

Hi  bequick,

Thanks for malware submission. We are going to check this out and if found malware,detection will be added.

Thanks and Regards,
hailong.wang

[bequick]

Some of them are already detected, others-no.

[bequick]

2 more

http://www.virustotal.com/analisis/a8e6786d5ed5a7c8b0c6017637f8bb829b3b31f0c6e12ffc53fe7880597680b9-1258291542

http://www.virustotal.com/analisis/d0be0427fbe25eb46c4eae3c7fdff3ea6c4cbc7cb47d2a18d51d2b8a28d44083-1258291645

[meidan]

2 more

http://www.virustotal.com/analisis/a8e6786d5ed5a7c8b0c6017637f8bb829b3b31f0c6e12ffc53fe7880597680b9-1258291542

http://www.virustotal.com/analisis/d0be0427fbe25eb46c4eae3c7fdff3ea6c4cbc7cb47d2a18d51d2b8a28d44083-1258291645

Hi,

The submitted sample will be checked and detection added if found malware.

Thanks.
Regards,
Erik M.

[bequick]

+1

http://www.virustotal.com/analisis/4dacada1b867062dd34c79cc51d0a212eca33b0d6a3837840cf2b1c7a4c78893-1258293095

[meidan]

+1

http://www.virustotal.com/analisis/4dacada1b867062dd34c79cc51d0a212eca33b0d6a3837840cf2b1c7a4c78893-1258293095

Hi,

The submitted sample will be checked and detection added if found malware.

Thanks.
Regards,
Erik M.

[Tags:]