1
Comodo AntiSpam Gateway - Hosted Anti Spam Service / Re: Delivery delay alerts
« Last post by Willard-UK on Today at 06:07:08 PM »I can confirm the alerts are now working.
Thank You
Thank You
Recent Posts
2
News / Announcements / Feedback - CCAV / Re: Comodo Cloud Antivirus v1.12.420066.533 RC
« Last post by BlueTesta on Today at 06:02:39 PM »Seems a bug.Nope, neither my pc or the home theater pc dont have that bug.
Any one else with same problem?
3
AV False Positive/Negative Detection Reporting / Re: Report trusted and whitelisted malware here- 2017 (NO LIVE MALWARE!)
« Last post by pio on Today at 05:59:38 PM »Trojan.Variant.Kryptik - Certificate "issued" by Comodo
Valkyrie is currently not able to receive files ! So please download the Sample from here >>> http://www33.zippyshare.com/v/94Wu4fi5/file.html ( NO PW - Upload is set to private )
https://www.virustotal.com/de/file/937bad14675217e0527a8c03194f6c976d05f8756f788ae955feae4ae193079b/analysis/
Some suspicious/malicious Indicators : Matched Compiler/Packer signature ( Borland Delphi 6.0 ) , The first section (.text) is writable , File calls a TLS callback at "0x449020" , File Code is obfuscated and packed , File Code is self modifying , Reads the active computer name , Reads the cryptographic machine GUID , Interacts with the primary disk partition , Queries kernel debugger information , Opens the Kernel Security Device Driver , Modifies proxy settings , Queries sensitive IE security settings , Runs shell commands ( "/C timeout 3 > Nul & Del "C:\937bad14675217e0527a8c03194f6c976d05f8756f788ae955feae4ae193079b.exe ) , Contacts 2 domains and 2 hosts , HTTP request contains Base64 encoded artifacts , Found malicious artifacts related to "34.225.189.247" & Found malicious artifacts related to "91.217.84.57" (ASN: 49313, Owner: Seva-Host Ltd)
Certificate Details :
Algorithm: rsaEncryption
Version: 3
Issuer: /C=GB/ST=Greater Manchester/L=Salford/O=COMODO CA Limited/CN=COMODO RSA Code Signing CA
Serial: 188410496326828071096717434424973797041
Serial (Hex): 8dbe8aaaf7e59d54b14c3dd2a21326b1
Valid from: Jun 13 00:00:00 2017 GMT
Valid until: Jun 13 23:59:59 2018 GMT
C (countryName): RU [5255]
CN (commonName): RILAIN, OOO [52494C41494E2C204F4F4F]
L (localityName): Ivanovo [4976616E6F766F]
O (organizationName): RILAIN, OOO [52494C41494E2C204F4F4F]
ST (stateOrProvinceName): RU [5255]
postalCode (postalCode): 153006 [313533303036]
street (streetAddress): 4 proezd 15-I [342070726F657A642031352D49]
Valkyrie is currently not able to receive files ! So please download the Sample from here >>> http://www33.zippyshare.com/v/94Wu4fi5/file.html ( NO PW - Upload is set to private )
https://www.virustotal.com/de/file/937bad14675217e0527a8c03194f6c976d05f8756f788ae955feae4ae193079b/analysis/
Some suspicious/malicious Indicators : Matched Compiler/Packer signature ( Borland Delphi 6.0 ) , The first section (.text) is writable , File calls a TLS callback at "0x449020" , File Code is obfuscated and packed , File Code is self modifying , Reads the active computer name , Reads the cryptographic machine GUID , Interacts with the primary disk partition , Queries kernel debugger information , Opens the Kernel Security Device Driver , Modifies proxy settings , Queries sensitive IE security settings , Runs shell commands ( "/C timeout 3 > Nul & Del "C:\937bad14675217e0527a8c03194f6c976d05f8756f788ae955feae4ae193079b.exe ) , Contacts 2 domains and 2 hosts , HTTP request contains Base64 encoded artifacts , Found malicious artifacts related to "34.225.189.247" & Found malicious artifacts related to "91.217.84.57" (ASN: 49313, Owner: Seva-Host Ltd)
Certificate Details :
Algorithm: rsaEncryption
Version: 3
Issuer: /C=GB/ST=Greater Manchester/L=Salford/O=COMODO CA Limited/CN=COMODO RSA Code Signing CA
Serial: 188410496326828071096717434424973797041
Serial (Hex): 8dbe8aaaf7e59d54b14c3dd2a21326b1
Valid from: Jun 13 00:00:00 2017 GMT
Valid until: Jun 13 23:59:59 2018 GMT
C (countryName): RU [5255]
CN (commonName): RILAIN, OOO [52494C41494E2C204F4F4F]
L (localityName): Ivanovo [4976616E6F766F]
O (organizationName): RILAIN, OOO [52494C41494E2C204F4F4F]
ST (stateOrProvinceName): RU [5255]
postalCode (postalCode): 153006 [313533303036]
street (streetAddress): 4 proezd 15-I [342070726F657A642031352D49]
4
Firewall Help - CIS / Re: Firewall blocking TP-Link Print Server Utility
« Last post by j231454 on Today at 05:41:41 PM »Ok, i will try it.
5
Firewall Help - CIS / Re: Firewall blocking TP-Link Print Server Utility
« Last post by Ploget on Today at 05:35:20 PM »To be honest, I have no idea on that! The Firewall should have no effect on the Printer at all . . it's hard-wired to the Router
http://www.tp-link.com/lk/faq-779.html
http://www.tp-link.com/us/faq-415.html
I would remove any particular Firewall rules, or set to default and try a re-install as above
http://www.tp-link.com/lk/faq-779.html
http://www.tp-link.com/us/faq-415.html
I would remove any particular Firewall rules, or set to default and try a re-install as above
6
Firewall Help - CIS / Re: Firewall blocking TP-Link Print Server Utility
« Last post by j231454 on Today at 05:04:52 PM »Yes same setup, but if I turn off just the firewall portion of CIS the utility sees the printer, if it is on the utility is blank.
7
News / Announcements / Feedback - CCAV / Re: Comodo Cloud Antivirus v1.12.420066.533 RC
« Last post by umesh on Today at 04:41:30 PM »Seems a bug.
Any one else with same problem?
Any one else with same problem?
Is it normal that the Valkyrie screen shows another amount of files being analyzed (28 vs 1) than the main window? (see screenshot)
8
News / Announcements / Feedback - CCAV / Re: Comodo Cloud Antivirus v1.12.420066.533 RC
« Last post by mad on Today at 04:38:55 PM »Is it normal that the Valkyrie screen shows another amount of files being analyzed (28 vs 1) than the main window? (see screenshot)
9
Comodo WebInspector - CWI / Re: False positives and exploits which are undetected
« Last post by pio on Today at 03:39:41 PM »affirmative .... 
10
Install / Setup / Configuration Help - CIS / Re: Most Effective Way to Reinstall/Update CIS to Avoid/Fix Problems
« Last post by umesh on Today at 03:28:19 PM »Hi All,
Anyone facing un-installation problem, please read following:
https://forums.comodo.com/install-setup-configuration-help-cis/if-you-can-not-uninstall-comodo-read-this-t120194.0.html
Thanks
-umesh
Anyone facing un-installation problem, please read following:
https://forums.comodo.com/install-setup-configuration-help-cis/if-you-can-not-uninstall-comodo-read-this-t120194.0.html
Thanks
-umesh