Introduction to Comodo Unknown File Hunter
Comodo Unknown File Hunter (UFH) is a lightweight scanner which identifies unknown, and potentially malicious files, on your network. After scanning your systems, it will classify all audited files as 'Safe', 'Malicious' or 'Unknown'.
While ‘Safe’ files are ok to run, and ‘Malicious’ files are dangers you should remove, it is in the 'Unknown' category where most zero-day threats are found. Traditional antivirus systems allow unknown files to run simply because they haven’t yet been ‘proven bad’.
Antivirus companies need to first observe the malware in action before they can classify it as malicious. Until this happens, the malware will have a rating of ‘unknown’ and is free to run undetected. ‘Innocent until proven guilty’ might be the defining characteristic of a healthy criminal justice system, but it certainly won’t keep your network secure.
UFH allows you to upload unknown files to our Valkyrie servers where they will undergo a battery of tests to discover whether or not they are harmful. You can view the results of these tests in the UFH interface.
Features
- No installation required. You can run UFH direct from a USB stick
- Capable of scanning computers from Active Directory, Workgroup and by Network Address
- Unknown files can be automatically uploaded to Comodo Valkyrie and tested for malicious behavior
- Detailed reports provide invaluable insights into the trust level of files on your network
This guide is intended to take you through the use of Comodo UFH and is broken down into the following main sections.