Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Security
Video Reviews - Security and Privacy
Comodo's killer.
Message
<blockquote data-quote="Andy Ful" data-source="post: 1114716" data-attributes="member: 32260"><p>It is possible to use the below setup:</p><ol> <li data-xf-list-type="ol">Apply Proactive Configuration.</li> <li data-xf-list-type="ol"><span style="color: rgb(0, 168, 133)"><strong>Add the rule</strong></span>: Action - Run Virtually, File Group - All Applications, File Origin - Removable Media <------ this protects flash drives</li> <li data-xf-list-type="ol"><span style="color: rgb(0, 168, 133)"><strong>Modify default rule</strong></span>: Action - Run Virtually, File Group - All Applications, File Rating - Unrecognized, <span style="color: rgb(0, 168, 133)">File age: 1 day (or 1 hour)</span></li> <li data-xf-list-type="ol"><strong><span style="color: rgb(0, 168, 133)">Add the rule to contain 7-Zip application</span></strong> (c:\Program Files\7-Zip\7zFM.exe). Set 7-Zip as the default application to open archives and disk images (ISO, IMG, etc.).<br /> With this rule, the 7-Zip GUI works similarly to Comodo's Virtual Desktop. Anything opened from the 7-Zip application (even text documents) is contained.</li> <li data-xf-list-type="ol">In Script Analysis, enable Embedded Code Detection for cmd[.]exe.</li> <li data-xf-list-type="ol">In the office applications, block macros.</li> </ol><p></p><p>The below will be restricted by the <span style="color: rgb(0, 168, 133)">File age: 1 day (or 1 hour):</span></p><ul> <li data-xf-list-type="ul">When downloading applications from the Internet, they have a fresh "creation time".</li> <li data-xf-list-type="ul">Files copied from the flash drives to the hard disk have a fresh "creation time".</li> </ul><p>When using Comodo Internet Security (instead of Comodo Firewall + Microsoft Defender), I would propose the file age recommended by Comodo: <span style="color: rgb(0, 168, 133)">File age: 3 days. </span></p><p>Comodo's signatures for new malware are rather poor.</p><p></p><p>WARNING</p><p>To open files from disk images and archives with no containment, one must use another archiver application or Windows built-in features:</p><p>Right click >> Open with >> Windows Explorer</p><p></p><p><strong><span style="color: rgb(184, 49, 47)">Post edited and updated.</span></strong></p></blockquote><p></p>
[QUOTE="Andy Ful, post: 1114716, member: 32260"] It is possible to use the below setup: [LIST=1] [*]Apply Proactive Configuration. [*][COLOR=rgb(0, 168, 133)][B]Add the rule[/B][/COLOR]: Action - Run Virtually, File Group - All Applications, File Origin - Removable Media <------ this protects flash drives [*][COLOR=rgb(0, 168, 133)][B]Modify default rule[/B][/COLOR]: Action - Run Virtually, File Group - All Applications, File Rating - Unrecognized, [COLOR=rgb(0, 168, 133)]File age: 1 day (or 1 hour)[/COLOR] [*][B][COLOR=rgb(0, 168, 133)]Add the rule to contain 7-Zip application[/COLOR][/B] (c:\Program Files\7-Zip\7zFM.exe). Set 7-Zip as the default application to open archives and disk images (ISO, IMG, etc.). With this rule, the 7-Zip GUI works similarly to Comodo's Virtual Desktop. Anything opened from the 7-Zip application (even text documents) is contained. [*]In Script Analysis, enable Embedded Code Detection for cmd[.]exe. [*]In the office applications, block macros. [/LIST] The below will be restricted by the [COLOR=rgb(0, 168, 133)]File age: 1 day (or 1 hour):[/COLOR] [LIST] [*]When downloading applications from the Internet, they have a fresh "creation time". [*]Files copied from the flash drives to the hard disk have a fresh "creation time". [/LIST] When using Comodo Internet Security (instead of Comodo Firewall + Microsoft Defender), I would propose the file age recommended by Comodo: [COLOR=rgb(0, 168, 133)]File age: 3 days. [/COLOR] Comodo's signatures for new malware are rather poor. WARNING To open files from disk images and archives with no containment, one must use another archiver application or Windows built-in features: Right click >> Open with >> Windows Explorer [B][COLOR=rgb(184, 49, 47)]Post edited and updated.[/COLOR][/B] [/QUOTE]
Insert quotes…
Verification
Post reply
Top
