wow Comodo found something Avast! did not...

So I’ve always been a fan of the Comodo Firewall and I use it in conjunction with Avast! … when a new release came out, I promptly reinstalled it and not thinking let Comodo install the antivirus component of their firewall.

So basically… Comodo started up and updated a definitions database. I thought to myself… what the hell is this thing doing? Anyway it did a complete system scan and found:

Unclassified Malware@8351713 in an executable “A0036382.exe” in my C:\System Volume Information

so… seeing as I didn’t trust Comodo’s antivirus, I ignored the infection and ran a full system scan of Avast! as well as a boot-time scan. Avast! did not find this infection at all.

I am quite disturbed by this. I have always trusted Avast! to keep my system clean and it misses an infected file in my System restore points? That’s not good in my book.

If you have Comodo, I’d highly reccomend using the antivirus component (resident scanning turned off, of course) and run scans with it. It might find things Avast! won’t.

Did you run the file against Virus Total? http://www.virustotal.com/ Comodo still reports a lot of False Positives, and this is an area where they are often found by heuristics because of their uniqueness. But AVs aren’t 100% and don’t use common databases or time frames, so even VT will show you a distribution of hits and misses for real viruses that will shift between the AVs for different threats.

I wouldn’t rely on anything that is classified as Unclassified Malware by Comodo.
I’ve seen it detecting loads of harmless stuff by that name. Looks like those detections are machine generated and are often wrong.

Comodo antivirus is far from being a good one…