App Review Comodo Firewall 8 4 vs Malware

[cruelsister]

This is in response to a Wilders discussion. Not my finest effort as I'm STILL packing, but you'll get the point.

Just what everyone needs- another Comodo video!

 

[Av Gurus]

This is the same malware pack that I tested CIS but with EfficacyTest.
Here is my test:



I'm sorry Cruelsister if it is wrong to put my link here.
If you (or anybody else) think is wrong I will delete this post.

 

[hjlbx]

LOL... Untrusted sandbox setting does not work on W10. It's only been what - a year since the official release of W10 ?

 

[hjlbx]

I read on another security forum about a COMODO (CIS 8) user's experience.

He downloaded an untrusted\unrecognized file and executed it.

COMODO auto-sandboxed the file and it executed in the sandbox and let it run for a while, but nothing happened.

So the user thought the file was safe and changed the file rating in CIS from Unrecognized to Trusted so as to prevent it being auto-sandboxed upon next execution.

He then re-executed the file and it encrypted his file system.

LOL... that's the problem with sandboxing -- it tells a user nothing about the safety of a file.

 

[Deleted member 2913]

Post this on Comodo forum & Melih will say our patent pending innovative Valkyrie is to let the user know a file is safe or not

One of the current posts of Melih describe CCAV with Valkyrie as Default Deny Security with Default Allow Usability

 

[hjlbx]

One of the current posts of Melih describe CCAV with Valkyrie as Default Deny Security with Default Allow Usability

LOL... what a crock of *.

 

[Coder]

Thanks for a nice video again CS, and best of all both are for free(Gratis)

 

[spaceoctopus]

This is the same malware pack that I tested CIS but with EfficacyTest.
Here is my test:



I'm sorry Cruelsister if it is wrong to put my link here.
If you (or anybody else) think is wrong I will delete this post.

Thnx for this video. COMODO is bad, very bad.

 

[spaceoctopus]

This is in response to a Wilders discussion. Not my finest effort as I'm STILL packing, but you'll get the point.

Just what everyone needs- another Comodo video!

thnx for this video!

 

[SHvFl]

Nice video. Difference from @cruelsister and @Av Gurus test is the efficiency test. Apparently that is trusted so then it allows all files it spawns that don't have detections.

 

[military]

@Av Gurus Sorry, system it was not necessary to reboot or clear a sandbox?

 

[cruelsister]

SHaFI- Exactly right. I didn't realize what they were doing with this EfficacyTest thingy. It may be a cool thing to use when testing pure AV's, but not something that is applicable to testing sandboxes (set an application to Trust then have it spawn malware?)

Anyway, this morning I went through the pack and it contained fairly standard malware, nothing especially nasty. Just putting Comodo's sandbox on the default setting of Partially Limited stopped all the malware and just allowed one CTBlocker file to change the Desktop Wallpaper (easy to change back). But this is known, not an issue, and has been covered my me last year in some CF video or other. Also, putting the HIPS on Safe Mode would have yielded the malware being blocked in the manner that could be seen in my last RAT video.

So although I am positively certain that no malicious intent was involved, the testing methodology from the original "Breach" video was flawed for the product tested.

 

[Solarlynx]

Nice video. Difference from @cruelsister and @Av Gurus test is the efficiency test. Apparently that is trusted so then it allows all files it spawns that don't have detections.

Thank you for clarification. So @Av Gurus made a "breach" in CIS because the "Efficiency test" app was trusted.

@SHvFl I'm proud of been the same feline kinship with you!

 

[Av Gurus]

@Av Gurus Sorry, system it was not necessary to reboot or clear a sandbox?

Why?
System is infected, files are encrypted, no files in Sandbox (check widget for that).

 

[Andytay70]

We need someone from comodo to remove their head from the sand and join this forum and let us know what they think

 

[hjlbx]

We need someone from comodo to remove their head from the sand and join this forum and let us know what they think

Melih will say "Software is released and it gets better..."

Just sayin' - that's his pat answer regarding COMODO bugs.

 

[Av Gurus]

We need someone from comodo to remove their head from the sand and join this forum and let us know what they think

Maybe they will tell - "use VS"...

 

[Deleted member 2913]

We need someone from comodo to remove their head from the sand and join this forum and let us know what they think

Do you mean the test?

 

[hjlbx]

Do you mean the test?

Yes. That's what he means.

COMODO Tech: Oh look Diddy - it's broken. You think we should fix it ?

Diddy (Melih): Nah... let's leave it.

 

[SHvFl]

Yes. That's what he means.

COMODO Tech: Oh look Diddy - it's broken. You think we should fix it ?

Diddy (Melih): Nah... let's leave it.

Nah it will go like this.
-Here is a link to the bug report format in order our developers to fix the problem. Remember the more info you give the more chance of fixing the program
-Cool i filled the report and added all info
-Nice it should be fixed in no time
Meanwhile in a far far away place a comodo dev is at the beach and drinking mojito.
Dev gets his phone to see wtf is going on the forums. Sees the report and laughs of the ignorance of the user thinking a bug will be fixed if it requires more than 2 minutes of time to reproduce and fix.
-So devs checked the report and you need to provide more info. Unfortunately all 20 seconds we put into checking the bug didn't give any results so it's basically not a problem. It's 100% your issue and not Comodo because not many reported this. Only a few pages of complains. You really shouldn't change any setting.
-Hmmm so do we expect a fix or no
-If you provide more info i suspect in 2-5 years we will provide a beta that fixes this problem and adds 10 more issues. I am sure you are satisfied with the great free protection we provide. Remember to buy the pro so you can be extra protected while buying xanax.