Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Security Apps
Comodo
Comodo Internet Security 2025 does not contain RANSOMWARE (bypass, infection and lost of files)
Message
<blockquote data-quote="Vitali Ortzi" data-source="post: 1112035" data-attributes="member: 57714"><p>Xcitium human analysis sometimes false flags stuff as malware that isn't and objections at least in my case didn't help</p><p>But Symantec actually first gave me a report of it being malicious but then after a few days I have got a report confirming a file I have sent is safe</p><p></p><p>Anyway nowadays I usually use Symantec instead especially if it's a big binary (750mb limit )and <a href="https://tip.neiki.dev/upload" target="_blank">Threat Insights Portal</a> (mainly check any.run behavior , network from the vendors in neiki )</p><p> </p><p>Tip Use checkpoint threat emulation as threat emulation is pretty good at detecting all kinds of fancy tactics (every file under 100mb goes through threat emulation)</p><p>It's really powerful and in my system I install a ton of shady stuff and thankfully threat emulation prevented nearly every malware I could have encountered and a few that passed(sometimes because they are password protected) were nearly all detected by eset (in my setup they would have to deal with comodo and hitman pro.alert next if I would trust an unknown file enough to execute and stuff that bypassed these might still have the communication blocked based on webpulse reputation of Symantec ips and firewall modules )</p><p></p><p></p><p></p><p></p><p>Comodo is very powerful but since it's increased it's trust not just towards windows binaries (possibly after comodo 5.0) and in recent times to having a trusted vender list Wich means that stuff trusted can technically turn malicious </p><p>Meanwhile I doubt any comodo user even has malware on their system there is still a chance some future APT can get on the trusted list and since the main aim of the product is enterprises they might actually get one day affected if they use xcitium as their only defense</p></blockquote><p></p>
[QUOTE="Vitali Ortzi, post: 1112035, member: 57714"] Xcitium human analysis sometimes false flags stuff as malware that isn't and objections at least in my case didn't help But Symantec actually first gave me a report of it being malicious but then after a few days I have got a report confirming a file I have sent is safe Anyway nowadays I usually use Symantec instead especially if it's a big binary (750mb limit )and [URL='https://tip.neiki.dev/upload']Threat Insights Portal[/URL] (mainly check any.run behavior , network from the vendors in neiki ) Tip Use checkpoint threat emulation as threat emulation is pretty good at detecting all kinds of fancy tactics (every file under 100mb goes through threat emulation) It's really powerful and in my system I install a ton of shady stuff and thankfully threat emulation prevented nearly every malware I could have encountered and a few that passed(sometimes because they are password protected) were nearly all detected by eset (in my setup they would have to deal with comodo and hitman pro.alert next if I would trust an unknown file enough to execute and stuff that bypassed these might still have the communication blocked based on webpulse reputation of Symantec ips and firewall modules ) Comodo is very powerful but since it's increased it's trust not just towards windows binaries (possibly after comodo 5.0) and in recent times to having a trusted vender list Wich means that stuff trusted can technically turn malicious Meanwhile I doubt any comodo user even has malware on their system there is still a chance some future APT can get on the trusted list and since the main aim of the product is enterprises they might actually get one day affected if they use xcitium as their only defense [/QUOTE]
Insert quotes…
Verification
Post reply
Top
