VPS 110514-1 False positives

False positives.

  1. C:\Windows\System32\wdi\LogFiles\BootCKCL.etl (very strange). Win32:Tiny-AFE.
    http://www.virustotal.com/file-scan/report.html?id=3086a37898fdb001018d264299f99fb782992a698c7d9666d49fd8a9e3ae64be-1305407603

  2. Comodo KillSwitch processes. Is there anything to do?

  3. cmdagent.exe from Comodo, see https://forums.comodo.com/defense-sandbox-help-cis/avast-6-shows-cmdagentexe-as-a-virus-t72680.0.html

The Tiny-AFE detection has been there for more than a year…

@ Tech
Your note 3. There is no mention that the OP in that topic was running a memory scan and far from it finding cmdagent.exe as a virus, it is finding virus signatures loaded into memory by that process. So after asking avast to scan memory for virus signatures don’t be surprised when it finds unencrypted signatures in memory. This needs to be made clare in the comodo topic.

I believe that OP has posted here, http://forum.avast.com/index.php?topic=78142.0 and I have commented in that topic, so far he hasn’t responded to if he ran a custom scan with memory to be scanned.

Well Igor, something is wrong…
I run this scan every day at lunch time.
The file was never flagged as being infected.