- Dec 23, 2014
- 8,817
Comodo Internet Security 2025 does not contain RANSOMWARE (bypass, infection and lost of files)
- Thread starter vitao
- Start date
- Oct 17, 2023
- 186
ok thanks, yes I have seen all of thoseglad there are other sandbox analyzer sites that work
Uploaded this file 2 days ago and its Malicious according to Xcitium and there is behaviour info and Kill Chain Report the red circle right up
- Oct 17, 2023
- 186
True alot of people upload files to the Valkyrie Verdict website and thats why you get the 500 Oops error
- Oct 17, 2023
- 186
Uploaded 5 files from Valkyrie Verdict and no errors so Valkyrie sometimes is overloaded
Last edited:
- Oct 17, 2023
- 186
- Apr 16, 2017
- 2,932
@ErzCrz Thanks for valkyrie screen shots. I'm running win10_VM with CF 12.3.4.8162. Using firefox I went to valkyrie, and input sha1 and it immediately returned "unknown" ok... then I uploaded the file (1.2mb) and screen says "file not found." ok that's why I uploaded it. No indication that valkyrie is now (will be) analyzing it... (will try any.run)
EDIT correct @Nikola Milanovic -- thanks for screen shots. Hard to tell at first glance, are these "sample" screens showing Valkyrie works, or screens related to file I mentioned & submitted.
(will try any.run)EDIT correct @Nikola Milanovic -- thanks for screen shots. Hard to tell at first glance, are these "sample" screens showing Valkyrie works, or screens related to file I mentioned & submitted.
Attachments
Last edited:
- Mar 12, 2024
- 181
sorry man but what test?
im kinda lost here as im working like crazy. barely have time to do house stuffs but bring the request and ill do the testings this week (i have some videos to produce but i can gain time for cis testings too)ps.: i posted in the forum you mentioned saying that crulsister is not being honest as she/he is trying to avoid the flaws showed on the videos. i said that if anyone want they could watch the videos on my channel but i didnt mentioned the channel link (to avoid spam and things like that) but sudenly i tried to enter the forum a few seconds ago and i just find out that im banned with the reason "youve being banned for spam". it seems people there wants to avoid at any cost anything bad related to cis... and cruelsister is kinda trying to make feel like the testings was not true or something... funny... i remember some years ago some users saying that she was in fact someone else (who works for comodo) and people even showed some kind of proves of it with prints and things like that. the topic and the posts where removed, everyone who was participating on this conversation got banned and the subject just fade away... dont know if its true or not (well, that really doesnt even matter) but its funny to see how they react to this kind of thing. if anyone knows some adm from that forum, if possible, please contact him and say that i didnt spam, i didnt even posted link to my channel. that was just to point the place to see the testings. anyway... its almost cristhmas
- Dec 23, 2014
- 8,817
- Mar 12, 2024
- 181
ah. ok. noted here. ill do this testing and another one with my suggestions too. in this video ill show your request, just to have some meaning for the video as the channel is now full of cis testing and there are people claiming im receivind money from comodo for all these videos hahaahaha
edit.: so... the setup would be installing only comodo firewall? im preparing the setup with now so i can test it this week.
Last edited:
- Dec 23, 2014
- 8,817
It would be good to find the settings that could improve the protection against DLL hijacking.
- Mar 12, 2024
- 181
- Dec 23, 2014
- 8,817
- Mar 12, 2024
- 181
but then ill be doing comodo's job. thats not the point and i have no desire doing so
they should be the ones figuring out how to solve their problems
- Mar 12, 2024
- 181
with default config or with proactive and restricted sandbox?
- Dec 23, 2014
- 8,817
but then ill be doing comodo's job. thats not the point and i have no desire doing so
Those settings will not be proposed by Comodo because they are too restrictive. Such settings can help users to understand what is happening.
- Dec 23, 2014
- 8,817
- Mar 12, 2024
- 181
proactive will turn hips on. may i turn it off as its in default config for cis?
- Mar 12, 2024
- 181
well.. i was loooking and it seems that changing cis to proactive or keeping default internet security will change nothing regardless dll hijacking. so i was thinking on changing the settings you said but keeping in internet security on, and everything else default. what do you think?
edit.: nvm. doesnt matter what config i do. the point is the cloud lookup and the things you printed. ill do some configs and change what you asked and try it against the poc. ill do some testings here...
- Oct 17, 2023
- 186
These samples are indicating Valkyrie is working and as well these samples were Unknown and Valkyrie Automatic Analysis caught them as Malware@ErzCrz Thanks for valkyrie screen shots. I'm running win10_VM with CF 12.3.4.8162. Using firefox I went to valkyrie, and input sha1 and it immediately returned "unknown" ok... then I uploaded the file (1.2mb) and screen says "file not found." ok that's why I uploaded it. No indication that valkyrie is now (will be) analyzing it...
EDIT correct @Nikola Milanovic -- thanks for screen shots. Hard to tell at first glance, are these "sample" screens showing Valkyrie works, or screens related to file I mentioned & submitted.
bazang
Level 12
- Jul 3, 2024
- 551
It would not matter if you were Tavis Ormandy. If you were, and you joined the Comodo forum to make reports, then you would be banned. There is an absolute certainty that is what would happen.sorry man but what test?
ps.: i posted in the forum you mentioned saying that crulsister is not being honest as she/he is trying to avoid the flaws showed on the videos. i said that if anyone want they could watch the videos on my channel but i didnt mentioned the channel link (to avoid spam and things like that) but sudenly i tried to enter the forum a few seconds ago and i just find out that im banned with the reason "youve being banned for spam". it seems people there wants to avoid at any cost anything bad related to cis... and cruelsister is kinda trying to make feel like the testings was not true or something... funny... i remember some years ago some users saying that she was in fact someone else (who works for comodo) and people even showed some kind of proves of it with prints and things like that. the topic and the posts where removed, everyone who was participating on this conversation got banned and the subject just fade away... dont know if its true or not (well, that really doesnt even matter) but its funny to see how they react to this kind of thing. if anyone knows some adm from that forum, if possible, please contact him and say that i didnt spam, i didnt even posted link to my channel. that was just to point the place to see the testings. anyway... its almost cristhmas
The first rule of testing Comodo is to never join the Comodo forum to report anything. You just post your test videos to a cloud hosting platform and let others find and provide the links to Comodo.
Comodo forum is run by Comodo diehards who are not Comodo staff. The moderators there are tyrants and they do not welcome anything other than what they find acceptable - which is as arbitrary as the wind.
@cruelsister does not work for Comodo. They are not a Comodo employee or contractor larping as a Comodo enthusiast.
I can see a gaggle of people on the Comodo forum communicating behind the scenes, conspiring together to "get rid of Vitao." Certainly this sort of behavior has been a thing on that forum for many years. If that did happen, and whom contributed to it or participated in it we will never know. All you can do is post your findings to the public.
This is why I don't bother with the Comodo product. Its forum has turned into a copy of the Webroot Community forum where any perceived dissent, FUD, or not drinking the Comodo Red KoolAid is met with the banhammer. Anyone trying to report issues to Comodo and doing the work that Comodo itself should be doing is treated like a pest or troll.
Really, it makes no sense that anyone in the user community tries to make it a better product by beta and pentesting it. The entire Comodo system has never been one where that is encouraged, and it has gotten much, much worse over the years. It is exactly because things never get fixed that so many people dropped using CIS and CFW. Very unfortunate but that is what you get from a software product with no revenue to support itself.
You are better off spending your time and effort learning a new skill or up-skilling. Although your videos are great entertainment because of the reactions they receive.
