What is Heur.Packed.Unknown on website?

[polonus]

Only Comodo to detect this: https://www.virustotal.com/nl/url/a87ee8678e62d6dd8aca8d834c3e9dbc35b68731ed9268360a582deb1e99a079/analysis/1432756728/
Website is flagged by DrWeb's URL checker as on their malicious website list, for this consider: https://www.virustotal.com/nl/ip-address/212.227.132.167/information/
See wepawet scan results: https://wepawet.iseclab.org/view.php?hash=345a5aba299aeeec0db1432eef126b3c&t=1432756878&type=js
and the accompanying Anubis report: https://anubis.iseclab.org/?action=result&task_id=127fd27965d5413048593985961c4452b&format=html
Could be a virus in rar: RarSFX0\__tmp_rar_sfx_access_check_436546 (suspicious)
for cadkasdeinst01e.exe,
see: https://www.reasoncoresecurity.com/cadkasdeinst01e.exe-727e274046e223733695f371b199371c46b50707.aspx
denoting trojan activity: CTF.TimListCache.FMPDefaultS-​1-​5-​21-​842925246-​1425521274-​308236825-​500MUTEX.DefaultS-​1-​5-​21-​842925246-​1425521274-​308236825-​500

polonus

[Pondus]

First submission 2015-02-01 09:45:37 UTC ( 3 months, 3 weeks ago )

Publisher CAD-KAS Kassler Computersoftware GbR
Signature verification  Signed file, verified signature
Signing date 10:34 AM 1/30/2015
Signers   

• CAD-KAS Kassler Computersoftware GbR
• COMODO Code Signing CA 2
  
• UTN-USERFirst-Object
• USERTrust

Counter signers   

• COMODO Time Stamping Signer
  
• UTN-USERFirst-Object
• USERTrust

  Packers identified
F-PROT appended, RAR, Unicode   

[polonus]

Hej Pondus,

But this is weird, first they sign it, Comodo's that is, and then they detect it.
I wouldn't let that fact decide, but it is also downloaded from a known to be malicious domain (at least according to the DrWeb malicious domains list). Is this just Comodo admitting they could not scan that packer properly?
More questions than answers, you see,

pol