I'm not sure if this is relevant, but over the years these are the UAs I've seen for Comodo's SSL certificate services:

(first seen in 2000)
Comodo HTTP(S) Crawler - [instantssl.com...]

(first seen in 2004)
Comodo HTTP(S) Crawler - [instantssl.com...] [whichssl.com...]

(first seen in 2009)
Comodo SSL Checker

I wondered about the cert service angle, but the site it hit doesn't have anything related to a cert, or e-commerce, or https, etc. Will be interesting to see if it becomes a routine visitor, w/ or w/o UA.

Here's a 2003 link [webmasterworld.com] from Jan's old reference file.

Comodo do firewall and AV software - could be a user - but they also have a search site.

I'm seeing 3 UA's

example.com "curl/7.19.4 (x86_64-pc-linux-gnu) libcurl/7.19.4 OpenSSL/0.9.8k zlib/1.2.3 libidn/0.6.5"
widget.com "GET /robots.txt HTTP/1.0" 200 25 "-" "PHPCrawl"

secure.example.com 91.209.196.nn - - [17/Nov/2009:99:99:99 -9999] "quit" 500 1376 "-" "-"

The IP address resolves to search . comodo . com
robots.txt was hit with 9-10 second intervals on a dozen hosts.

No longer a blank UA at this end, but search.comodo.com is still cloaked:

search.comodo.com
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)

robots.txt? NO

search.comodo.com
Mozilla/4.0(compatible;MSIE 5.00;Windows 98)

robots.txt? Yes

(Denied anyway because of that stupidly bogus UA.)

rDNS: search.comodo.com

91.209.196.** - - [11/Dec/2009:12:43:40 -0700] "GET www.example.com/robots.txt HTTP/1.1" 403 938 "-" "msnbot-media/1.0 (+http://search.msn.com/msnbot.htm)"

This just in -- another comodo-related UA:

search.comodo.com
Comodo-Certificates-Spider

robots.txt? Yes

A little identity confusion at comodo.com? Yet another UA:

search.comodo.com
COMODOspider/Nutch-1.0

robots.txt? Yes

This time, the same UA -- but via a 'bare' (no rDNS) IP:

114.255.52.163
COMODOspider/Nutch-1.0

robots.txt? Yes

114.255.52.163 => China Beijing Comodo
(114.255.52.160 - 114.255.52.175)

Internet security/firewall/antivirus/SS/whatever company spidering from China? Oh, the irony!

This bot has hit my server several times looking at SSL certs that are linked to validation scripts that show when the SSL cert expires. I have also been sent several emails about 90-days before my SSL cert expires offering to renew it with them. Once these folks even sent me an email warning me that there was a security issue related to my cert/server configuration and even though the server had been upgraded over a month before that they still claimed it was vulnerable.

Personally I find this type of spamming much like ambulance chasing lawyers and I for one will NEVER use their certs because of it...and now I block them from my server as well and like magic, no more spam from them either..Go figure!