Comodo Internet Security 2025 does not contain RANSOMWARE (bypass, infection and lost of files)

simmerskool said:
ok thanks, yes I have seen all of those :ROFLMAO: glad there are other sandbox analyzer sites that work
Click to expand...
1734879259567.png

Uploaded this file 2 days ago and its Malicious according to Xcitium and there is behaviour info and Kill Chain Report the red circle right up
 
  • Hundred Points
Reactions: simmerskool
@ErzCrz Thanks for valkyrie screen shots. I'm running win10_VM with CF 12.3.4.8162. Using firefox I went to valkyrie, and input sha1 and it immediately returned "unknown" ok... then I uploaded the file (1.2mb) and screen says "file not found." ok that's why I uploaded it. No indication that valkyrie is now (will be) analyzing it... :unsure: (will try any.run)

EDIT correct @Nikola Milanovic -- thanks for screen shots. Hard to tell at first glance, are these "sample" screens showing Valkyrie works, or screens related to file I mentioned & submitted.
 

Attachments

  • valkyrie_snip22.PNG
    valkyrie_snip22.PNG
    141.7 KB · Views: 122
Last edited:
Andy Ful said:
@vitao,

When we can watch the following test?
Click to expand...
sorry man but what test? :P im kinda lost here as im working like crazy. barely have time to do house stuffs :P but bring the request and ill do the testings this week (i have some videos to produce but i can gain time for cis testings too)

ps.: i posted in the forum you mentioned saying that crulsister is not being honest as she/he is trying to avoid the flaws showed on the videos. i said that if anyone want they could watch the videos on my channel but i didnt mentioned the channel link (to avoid spam and things like that) but sudenly i tried to enter the forum a few seconds ago and i just find out that im banned with the reason "youve being banned for spam". it seems people there wants to avoid at any cost anything bad related to cis... and cruelsister is kinda trying to make feel like the testings was not true or something... funny... i remember some years ago some users saying that she was in fact someone else (who works for comodo) and people even showed some kind of proves of it with prints and things like that. the topic and the posts where removed, everyone who was participating on this conversation got banned and the subject just fade away... dont know if its true or not (well, that really doesnt even matter) but its funny to see how they react to this kind of thing. if anyone knows some adm from that forum, if possible, please contact him and say that i didnt spam, i didnt even posted link to my channel. that was just to point the place to see the testings. anyway... its almost cristhmas :D
 
Andy Ful said:
That one:
https://malwaretips.com/threads/com...fection-and-lost-of-files.133608/post-1111559
Click to expand...
ah. ok. noted here. ill do this testing and another one with my suggestions too. in this video ill show your request, just to have some meaning for the video as the channel is now full of cis testing and there are people claiming im receivind money from comodo for all these videos hahaahaha

edit.: so... the setup would be installing only comodo firewall? im preparing the setup with now so i can test it this week.
 
Last edited:
  • Like
Reactions: Vitali Ortzi and Andy Ful
vitao said:
ah. ok. noted here. ill do this testing and another one with my suggestions too. in this video ill show your request, just to have some meaning for the video as the channel is now full of cis testing and there are people claiming im receivind money from comodo for all these videos hahaahaha

edit.: so... the setup would be installing only comodo firewall? im preparing the setup with now so i can test it this week.
Click to expand...

It would be good to find the settings that could improve the protection against DLL hijacking.
 
  • Hundred Points
Reactions: Vitali Ortzi
vitao said:
ah. ok. noted here. ill do this testing and another one with my suggestions too. in this video ill show your request, just to have some meaning for the video as the channel is now full of cis testing and there are people claiming im receivind money from comodo for all these videos hahaahaha

edit.: so... the setup would be installing only comodo firewall? im preparing the setup with now so i can test it this week.
Click to expand...
install only comodo firewall or the full suite and disable av?
 
  • Like
Reactions: Andy Ful
Andy Ful said:
It would be good to find the settings that could improve the protection against DLL hijacking.
Click to expand...
but then ill be doing comodo's job. thats not the point and i have no desire doing so :P they should be the ones figuring out how to solve their problems :)
 
vitao said:
but then ill be doing comodo's job. thats not the point and i have no desire doing so :p they should be the ones figuring out how to solve their problems :)
Click to expand...

Those settings will not be proposed by Comodo because they are too restrictive. Such settings can help users to understand what is happening.
 
  • Like
Reactions: simmerskool and vitao
vitao said:
proactive will turn hips on. may i turn it off as its in default config for cis?
Click to expand...
well.. i was loooking and it seems that changing cis to proactive or keeping default internet security will change nothing regardless dll hijacking. so i was thinking on changing the settings you said but keeping in internet security on, and everything else default. what do you think?

edit.: nvm. doesnt matter what config i do. the point is the cloud lookup and the things you printed. ill do some configs and change what you asked and try it against the poc. ill do some testings here...
 
  • Like
Reactions: Andy Ful
simmerskool said:
@ErzCrz Thanks for valkyrie screen shots. I'm running win10_VM with CF 12.3.4.8162. Using firefox I went to valkyrie, and input sha1 and it immediately returned "unknown" ok... then I uploaded the file (1.2mb) and screen says "file not found." ok that's why I uploaded it. No indication that valkyrie is now (will be) analyzing it... :unsure: (will try any.run)

EDIT correct @Nikola Milanovic -- thanks for screen shots. Hard to tell at first glance, are these "sample" screens showing Valkyrie works, or screens related to file I mentioned & submitted.
Click to expand...
These samples are indicating Valkyrie is working and as well these samples were Unknown and Valkyrie Automatic Analysis caught them as Malware
 
  • Hundred Points
Reactions: simmerskool
vitao said:
sorry man but what test? :p im kinda lost here as im working like crazy. barely have time to do house stuffs :p but bring the request and ill do the testings this week (i have some videos to produce but i can gain time for cis testings too)

ps.: i posted in the forum you mentioned saying that crulsister is not being honest as she/he is trying to avoid the flaws showed on the videos. i said that if anyone want they could watch the videos on my channel but i didnt mentioned the channel link (to avoid spam and things like that) but sudenly i tried to enter the forum a few seconds ago and i just find out that im banned with the reason "youve being banned for spam". it seems people there wants to avoid at any cost anything bad related to cis... and cruelsister is kinda trying to make feel like the testings was not true or something... funny... i remember some years ago some users saying that she was in fact someone else (who works for comodo) and people even showed some kind of proves of it with prints and things like that. the topic and the posts where removed, everyone who was participating on this conversation got banned and the subject just fade away... dont know if its true or not (well, that really doesnt even matter) but its funny to see how they react to this kind of thing. if anyone knows some adm from that forum, if possible, please contact him and say that i didnt spam, i didnt even posted link to my channel. that was just to point the place to see the testings. anyway... its almost cristhmas :D
Click to expand...
It would not matter if you were Tavis Ormandy. If you were, and you joined the Comodo forum to make reports, then you would be banned. There is an absolute certainty that is what would happen.

The first rule of testing Comodo is to never join the Comodo forum to report anything. You just post your test videos to a cloud hosting platform and let others find and provide the links to Comodo.

Comodo forum is run by Comodo diehards who are not Comodo staff. The moderators there are tyrants and they do not welcome anything other than what they find acceptable - which is as arbitrary as the wind.

@cruelsister does not work for Comodo. They are not a Comodo employee or contractor larping as a Comodo enthusiast.

I can see a gaggle of people on the Comodo forum communicating behind the scenes, conspiring together to "get rid of Vitao." Certainly this sort of behavior has been a thing on that forum for many years. If that did happen, and whom contributed to it or participated in it we will never know. All you can do is post your findings to the public.

This is why I don't bother with the Comodo product. Its forum has turned into a copy of the Webroot Community forum where any perceived dissent, FUD, or not drinking the Comodo Red KoolAid is met with the banhammer. Anyone trying to report issues to Comodo and doing the work that Comodo itself should be doing is treated like a pest or troll.

Really, it makes no sense that anyone in the user community tries to make it a better product by beta and pentesting it. The entire Comodo system has never been one where that is encouraged, and it has gotten much, much worse over the years. It is exactly because things never get fixed that so many people dropped using CIS and CFW. Very unfortunate but that is what you get from a software product with no revenue to support itself.

You are better off spending your time and effort learning a new skill or up-skilling. Although your videos are great entertainment because of the reactions they receive.
 
  • Like
Reactions: Zartarra and vitao
bazang said:
It would not matter if you were Tavis Ormandy. If you were, and you joined the Comodo forum to make reports, then you would be banned. There is an absolute certainty that is what would happen.

The first rule of testing Comodo is to never join the Comodo forum to report anything. You just post your test videos to a cloud hosting platform and let others find and provide the links to Comodo.

Comodo forum is run by Comodo diehards who are not Comodo staff. The moderators there are tyrants and they do not welcome anything other than what they find acceptable - which is as arbitrary as the wind.

@cruelsister does not work for Comodo. They are not a Comodo employee or contractor larping as a Comodo enthusiast.

I can see a gaggle of people on the Comodo forum communicating behind the scenes, conspiring together to "get rid of Vitao." Certainly this sort of behavior has been a thing on that forum for many years. If that did happen, and whom contributed to it or participated in it we will never know. All you can do is post your findings to the public.

This is why I don't bother with the Comodo product. Its forum has turned into a copy of the Webroot Community forum where any perceived dissent, FUD, or not drinking the Comodo Red KoolAid is met with the banhammer. Anyone trying to report issues to Comodo and doing the work that Comodo itself should be doing is treated like a pest or troll.

Really, it makes no sense that anyone in the user community tries to make it a better product by beta and pentesting it. The entire Comodo system has never been one where that is encouraged, and it has gotten much, much worse over the years. It is exactly because things never get fixed that so many people dropped using CIS and CFW. Very unfortunate but that is what you get from a software product with no revenue to support itself.

You are better off spending your time and effort learning a new skill or up-skilling. Although your videos are great entertainment because of the reactions they receive.
Click to expand...
hehehehehe

:) i agree with you.

i dont care about comodo forums or those who are fighting against anything bad related to cis. the only thing i can do is... keeping these videos coming :P all public, always.
 

You may also like...