Hi All,
We have made recognizers v1.11.0.128 available via test server for CCAV.:
Changes:
On top of previously released recognizers v1.10.0.105, following are additional variants related to different malware families covered:
[ol]- Worm.Win32.Agent.~NKD
- Worm.VBS.Agent.~NLI
- Worm.MSIL.Agent.~AR
- Trojan.Win32.Zeleffo.~C
- Trojan.Win32.Kryptik.~CSRA
- Trojan.Win32.Injector.~DRRR
- Trojan.Win32.IRCBot.~NHR
- Trojan.MSIL.NanoCore.~E
- Trojan.MSIL.Kryptik.~JKY
- Trojan.MSIL.NanoCore.~K
- Trojan.MSIL.Kryptik.~LAJ
- Trojan.MSIL.Injector.~PG
- Trojan.MSIL.Injector.~SVU
- Trojan.MSIL.Injector.~SZB
- Trojan-Downloader.Win32.Banload.~WGK[/ol]
We made same update available for Comodo Internet Security as well earlier.
Steps to test:
1.
Have following entries in Windows hosts file(c:/windows/system32/drivers/etc/hosts)
91.209.196.83 download.comodo.com
91.209.196.83 www.download.comodo.com
Run manual updater, in case you are using latest CCAV version, although it would say “no updates available”, it will still update recognizers as that’s in auto update and also updated whenever you run manual updater. We need to improvise like CIS to explicitly show as what all is updated. Once updated, you will see recognizer version via About interface as shown in enclosed CCAV_Recognizer_v1.11.0.128.png
Looking for product stability while using this recognizer.
Please run applications in Sandbox and report if you see anything abnormal.
Any feedback is highly appreciated.
Thanks
-umesh