I came across this embedded malware a few days ago. Hardly any of the (Jotti) scanners detected it, so it seems to be quite new (already submitted it to Comodo, of course). At almost 500kb it’s much bigger than the usual embeded junk.
This is the report by Avira\Antivir:
The file ‘SpywareGuard2008.exe’ has been determined to be ‘MALWARE’. Our analysts named the threat TR/Dldr.Fakealer.AU. The term “TR/” denotes a trojan horse that is able to spy out data, to violate your privacy or carry out unwanted modifications to the system.Detection will be added to our virus definition file (VDF) with one of the next updates.
Some people here collect malware. Does anyone want a copy?
I haw send about 45000-50000 samples in last 2 weeks to Comodo and many users haw sended samples to Comodo. I think you can wait a little bit let them sort their stuff out. Almost all samples what I sended them are detected now. CIS is still in beta.
I hardly think the beta status has anything to do with the speed of processing samples. Anyway, it seemed safe to assume there was a working system in place for adding samples, since cavs 2 has been available for a long time. Apparently that assumption was incorrect.