Hi! I found this while searching for Heur.Packed.Unknown because I’ve had to quarantine files from at least four programs. Okay, so I’ve quarantined them, and I figured out how to restore them so I can rar them up, but there’s one problem: one of the programs it triggers on is winrar! I tried restoring the “offending” file from Winrar, but as soon as I fire up Winrar, it triggers the darned Heur.Packed.Unknown again.
I’m recovering my computer from what apparently was virut. I started fresh with a hard format (fully zeroed my boot drive), then deleted all .exe, .htm, and .html files (the virus will inject code into htm* files) on my accessory drives, along with programs that used them.
Okay, so I’m redoing my setup and even with Comodo set to all but paranoia mode for downloads, and when I am ready to install a file, I scan with Comodo again, followed by Malwarebytes. Up to that point, nothing was detected. However, as soon as I run Malwarebytes, when it runs across the aforementioned “offending” files in Winrar, Splitfile, and Calendar, (all of which were downloaded from CNet), boom, there goes the red pop-up from Comodo, saying that I have Heur.Packed.Uknown in certain files.
So, I tried to restore one .dll and two .exe files from Comodo’s quarantine, so that I may put each file into a rar file (with the password “infected”) and send off to Comodo. That’s when more problems occur. The .dll file from one of the programs, after restoring, becomes stubborn. Not only am I unable to add it to a .rar or .zip file, it won’t let me delete it again, and Comodo doesn’t do the “hey, you’ve got Heur.Packed.Uknown” thing on the file. At that point, I’m WTF? It won’t tell me that the file is infected, AND now I can’t delete it? Thankfully, the File Assassin that is built into Malwarebytes will delete it. With that many problems on a freeware program, I give up.
Back to the Winrar thing. I don’t understand why Comodo will allow me to use Winrar, but while I’m doing something else, suddenly tell me that my Winrar is infected. This is getting really annoying. Up to this point, I have really grown to love Comodo and the killer firewall that comes with it, but now I’m ready to dump it and switch back to AVG. Yeah, I know that probably is a dirty word around here, but come on, during the six years I used AVG, not once did I receive a false positive.
So, to you gurus who work for Comodo, please tell me what I should do here. I nuked the Winrar I had, downloaded the free (evaluation) copy and installed it and as soon as I went to use it, Comodo tells me it’s infected with - you guessed it - Heur.Packed.Unknown. Not only that, if I tell it to ignore, it keeps popping back up, not obeying my ignore command. How in the heck am I supposed to send a rar file of the “offending” file to you guys if Comodo won’t let me use the damned program?
kat, going from O0 to (about to pull my hair out)