First, Hello and greetings to the comodo team.
My idea is to make, the antivirus to analyse the code of batch files.
Why?!
Simply, the most of the batch codes are very destructive for the computer system.
The batch codes are more powerfull that everyone think. The cracker can take full control of you without to even know about it and the antivirus will not alert the user for it, why?!
Simply the program dont analyse the code.
My idea is to make the scaning to fragment the file and to analyse it profoundly.
Its not only for the batch files, becouse for the web administrators can be infected by shell code.
Will explain.
When the cracker steal the data from the administrator, he can upload a shell code, and with this code he can to take full control over the site data - folders/files/passwords/database/etc…
Some of the sites are deny the uploading of files - .php
But the cracker can bypass it when he make the file like - shellcode.php.jpeg.
so the system will think that file is some picture and BAM, the site is pwned.
It will taking much time for scanning, but the user will be sure that he is protected and clean.
Thank you for attention.
Pengo.