Virus.Win32.Virut.CE@1

Hi guys!
There is an anticheat software called UAC3 (Universal Anti-cheat 3).Some days ago they released a new update and comodo found the main .exe file infected by Virus.Win32.Virut.CE@1.Could you check it please if there is really a virus or just a false detection?This is the download link of the program http://www.uac3.com/install3.exe , after installing you should check the DExUS/UAC3/UAC.exe file.
Thank you!

Hey and warm welcome to comodo forums!

this the wrong sector so I will report it as a mod will move it to the right sector of the forum.

Regards,
Valentin N

Moving it to the false positives board.

Hello Tomi98765,

Thank you for your submission. We’ll check this and get back to you shortly.

Best regards,
FlorinG

Hi,Tomi98765

This is to inform you that false-positive with
(File name:<install3.exe > SHA1: <98bf8c044a9815830610378efa9a004cc55dd854>)
has been fixed.
You can update to AV database Version <8261> of Comodo Internet Security Version<5.0.181415.1237> and confirm it.

Best regards
Chunli.chen

Thanks problem fixed

Thanks eric :slight_smile: :-TU

Hi Guys!

It seems I have a problem of the same rootcause.

There is architects/designers software called KitchenDraw 6.0 (http://kitchendraw.com). Yeasterday I installed it, and everything looked OK. When I launched the application at first time COMODO said that file “…/KD/kd_app.exe” is infected with the “Virus.Win32.Virut.CE@1”. I scanned the executable with an up-to-date version of Kaspersky Antivirus, but it didn’t find any viruses.

Could you check it please if there is really a virus or just a false detection?

This is the download link of the program Download KitchenDraw. Before download you should put some e-mail address and accept the license agreement. There is no any activation via e-mail needed. After installing you should check the “KD/kd_app.exe” file.

Thanks in advance!

Hi Wind2,

Thanks for reporting.We will check this and get back you soon.

Regards,
Ponmalar.S

Hi Wind2,

This is to inform you that false-positive has been fixed.
You can update to AV database Version <11461> of Comodo Internet Security Version<5.9.221665.2197> and confirm it.

Regards,
Ponmalar.S

Hi Ponmalar.

Thanks for the fast reply!

Could you please tell me how can I run this AV database update? I have only COMODO Firewall installed and didn’t find any functions relate to AV database update in it.

Perhaps I used wrong words to describe COMODO alert. I’m sorry about that. I made a screenshot of the alert for you. Please find it attached.

This alert had disappeared when I clicked “Ignore → report to COMODO as false alert”.

[attachment deleted by admin]

This message comes from the Comodo Cloud AV. In your case you cannot update the AV database because you did not install the AV.

Ponmalar can you check why the Cloud AV still reports this?