Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Video Reviews - Security and Privacy
Comodo Firewall 10 Setup
Message
<blockquote data-quote="cruelsister" data-source="post: 633133" data-attributes="member: 7463"><p>When I ran the malware on an UNPROTECTED system I initially didn't notice one of the drops (into System32) which gave led to the OutBound connections.</p><p></p><p>As far as CF is concerned, the malware was contained. Actually when the drops were prevented (in the first second or two) the malware just shut down. Now if you turned off the firewall and sandbox (obviously the Cloud AV has to be disabled since Comodo now has a definition for it) and just use the HIPS (safe mode), the malware would keep running and there would be 9 HIPS alerts for various things in the first minute.</p><p></p><p>With HIPS at safe Mode AND the sandbox at my settings there would have been just the initial HIPS alert that a file was being run. After that there would have been nothing for the HIPS do as the malware was prevented from doing anything other than dying.</p><p></p><p>But in either case nothing changed on reboot.</p></blockquote><p></p>
[QUOTE="cruelsister, post: 633133, member: 7463"] When I ran the malware on an UNPROTECTED system I initially didn't notice one of the drops (into System32) which gave led to the OutBound connections. As far as CF is concerned, the malware was contained. Actually when the drops were prevented (in the first second or two) the malware just shut down. Now if you turned off the firewall and sandbox (obviously the Cloud AV has to be disabled since Comodo now has a definition for it) and just use the HIPS (safe mode), the malware would keep running and there would be 9 HIPS alerts for various things in the first minute. With HIPS at safe Mode AND the sandbox at my settings there would have been just the initial HIPS alert that a file was being run. After that there would have been nothing for the HIPS do as the malware was prevented from doing anything other than dying. But in either case nothing changed on reboot. [/QUOTE]
Insert quotes…
Verification
Post reply
Top