This mallware passed: VirusTotal
while using default settings on Comodo 184.108.40.206739.471 with vir. db. v. 992. That file was downloaded in Windows folder, Defense+ didn’t prompted me.
I got to it while testing CIS by accessing a link in IE6. It was disguised as a codec. The mallware modified IEs Proxy server for LAN, as a result IE was useless (and all apps that use IE’s setting for proxy srv.). I’ve submitted the file to Comodo. I hope the AV part of CIS will improve soon, as I really like this product.