This is a continuation of my first reporting. I sent the sample files to the online submission, but got an email back saying the packed sample files weren’t detected (I don’t think they unpacked them).
Hi,( (SHA1: <50776daa6d1536dd83c891fc47c1f0edb4907224>))
(<Quarantine.zip> (SHA1: ))The samples u submitted as false-positive is not detected by Comodo Internet Security version <6.2.285401.2860> with database version <16841>. Please make sure the Antivirus database is updated and check again.
If detection is still present, please submit the file on Comodo forums at https://forums.comodo.com/false_positivenegative_reporting_is_this_a_malware_that_cis_hasnot_detecte-b154.0/ along with details about the environment on which this event occurred.Regards,
Qiuhui.■■■■
Comodo Antivirus lab
2013-8-29
I did manage to get CIS to quarantine one of the pesky temp files. I’ve attached a copy of my Quarantine directory and my log file (please unpack).
With heuristics set on high, right click Quarantine.zip and choose Scan with Comodo AntiVirus, produces an alert. It detects the FP file inside the .zip file.
[attachment deleted by admin]