The detection is a false positive (which I submitted to Comodo). But my question is: why does Comodo detect the file as a different threat depending on whether heuristics is set to low or medium/high. If a file is detected as a threat, shouldn’t it always be detected as the same threat? Is this a bug and should it be reported in the bug section?
Regarding the file from the previous post (C:\ERDNT\ERDNTWIN.OVL): I dragged and dropped it onto the Boclean window and got the warning below (I know that the drag and drop feature in boclean was mainly intended for developer use).
Anyhow, CIS heuristic detects the file as 2 types of malware (see previous post), and Boclean detects it as a 3rd type (spy-banker.ahf).
No response in over 1 week…are the developers checking this thread?
Egemen has not responded to my PM’s (maybe he/she is on vacation?).
I just want to make sure that the right people are aware of this issue.
If anyone can think of another way to contact the AV developers, please let me know.