I have run McAfee Stinger64 and has considered ccekrnl.xp.dat (Artemis!68F32F1B4847) as a trojan.
Hi User Name,
Could you please share the file ccekrnl.xp.dat to us for analysis.
Thanks,
Mathi R
OK; NP Mathi R,
btw the ccekrnl.xp.dat file is located in c:program/comodo/comodo internet security.
Update I let McAfee Stinger run again… now it found another trojan :
C:\Program Files\COMODO\COMODO Internet Security\ccekrnl.dat [MD5:a2514e9e51e6ea08b943da241993dc4a] is infected with Artemis!A2514E9E51E6
Hi User Name,
Thanks for sharing the file, our developers are checking it. I’ll update its status soon. :-TU
Hi Mathi R;
are there now some new infos from the developers? After Stinger put the files in quarantine; I let comodo run the support diagnostic scan, it found no errors but after hitting the update button comodo has redownloaded the same version which already runs on my system.
Best regards
User Name
It is a false positive, I’m not sure why anyone would think Comodo would ship malware. Those files are the kernel mode driver for Comodo Cleaning Essentials.
TY for your answer, well but it wouldnt be the 1st time that big IT companies was hacked and files hijacked- we saw that in the past with VLC-player and CCleaner. And if a Antimalware detects/consider a file/data as some kind of malware it should be always good to check that file/data.
very common that some avs flags other avs as malware/dangerous
Hi User Name,
It is a false positive. The issue has been reported to Macfee, soon the verdict will be changed for those files.