I have the Comodo firewall installed, and I ran a scan today with it (the Defense + module, which is a rudimentary HIPS, has an on-demand virus scanning capability), and it showed six detections.
Four of them, according to the people on the Comodo forum, are false positives. They are simply Windows time zone routines.
But there are two that I'm a little concerned about, and they are both associated with CrossLoop:
The reason I'm asking about them here instead of the Comodo forum is because the Geek has written a piece about CrossLoop, and I know ScottW has used it (with me and I thank him for that), and the Comodo people seem to not be too aware of what CrossLoop is.
I know CrossLoop uses the TightVNC open source module, and it is a Remote Assistance type of software. Hence, it likely uses something similar to a trojan to manipulate someone else's desktop.
My AntiVir virus scan DID NOT detect anything on this, which makes me believe more that this is a false positive.
I Googled these detections, and all I got was removal techniques. I'm reluctant to remove these things because I don't want to disable Crossloop if indeed they are false positives and CrossLoop needs them.
(Whoops . . . I see I posted this thing in the Vista forum, and I should have done it in another forum.)