Generic Recognizer v1.0.0.18 for Comodo Cloud Antivirus (RC)

umesh · December 5, 2017, 6:53pm

Hi All,

We have made a new additional recognizer v1.0.0.18 available via test server for CCAV.:

This is generic purpose recognizer capable of learning malware behavior from vast variety of malware families.

Steps to test:
1.
Have following entries in Windows hosts file(c:/windows/system32/drivers/etc/hosts)

91.209.196.83 download.comodo.com
91.209.196.83 www.download.comodo.com

Run manual updater, in case you are using latest CCAV version, although it would say “no updates available”, it will still update recognizers as that’s in auto update and also updated whenever you run manual updater. We need to improvise like CIS to explicitly show as what all is updated. Once updated, you will see recognizer version via About interface as shown in enclosed recognizerGeneric.png

Looking for product stability while using this recognizer.
Please run applications in Sandbox and report if you see anything abnormal.

Any feedback is highly appreciated.

Thanks
-umesh

Ploget · December 5, 2017, 10:26pm

Got the Beta update and Recognizer at the same time. All well so far

umesh · December 5, 2017, 10:28pm

Much appreciated for checking out!

miloszcz · December 6, 2017, 12:17pm

Could we have more details how the learning process is done and how it works in overall?

umesh · December 6, 2017, 3:13pm

This recognizer is covering many aspects of malware including network activity and it will be in learning mode initially.
In back-end, after we have reviewed it’s findings and can trust, based on server side configuration, either this will start detecting or we will improvise it newer version.

Ploget · December 7, 2017, 2:12pm

The Recognizer vanishes once the hosts file entries are removed again and another normal update done the next day . . . . is this normal?

umesh · December 7, 2017, 2:18pm

Yes, it always gets latest from server.

Ploget · December 7, 2017, 2:47pm

Ok - I’ll leave the hosts file entries until you’re satisfied with the testing results

umesh · December 12, 2017, 3:20pm

This is released in production today.

Thank you for checking out.
-umesh

umesh · January 22, 2018, 5:12pm

Hi Guys,
Please check latest recognizer v1.11.0.128 and share your feedback:

https://forums.comodo.com/beta-corner-ccav/recognizer-v1110128-for-comodo-cloud-antivirus-rc-t121423.0.html

Thanks
-umesh