MetalShaun's config

MetalShaun

Level 1
Thread author
Mar 3, 2011
424
Haven't had to block or remove a virus on my machine in years so probably don't even need that much security but I feel naked without it. I only visit trusted websites and all though I download a lot it is from a trusted Bittorrent tracker. I am quite often tempted to try other configs but i am so use to Comodo now (been using it since verison 3.5) that nothing quite feels the same.
 

Ink

Administrator
Verified
Staff Member
Well-known
Jan 8, 2011
22,361
If you are not happy with SAS and MBAM results. You could use a non-activated Hitman Pro as a second-opinion (also considering you have no AV installed).

Do you use Comodo's SecureDNS or none?
 

MetalShaun

Level 1
Thread author
Mar 3, 2011
424
O yea i do use Comodo DNS, Forgot about that. Scans never find anything so only tend to scan with MBAM about once a month or so. Hitmanpro is a great program and I have used it to clean computers many times but I never feel the need to use it on my own system.

When more programs like bufferzonePro and Geswall support 64bit i will be tempted to try them out.
 

bogdan

Level 1
Jan 7, 2011
1,362
No AV? :D

Cloud scanner turned off.
There are 2 cloud features integrated in COMODO Firewall.

1. Cloud based behavior analysis - CIMA (Comodo instant malware analysis)
2. Automatically scanned unrecognized files in the cloud - Whitelist + Blacklist. Turning this one off might cause some good applications to not be recognized by CIS and as a result more pop-ups will appear.

Unfortunately if COMODO Firewall detects something malicious using the cloud services it might delete that file (There is no Quarantine in the Firewall version). (And false-positives can happen)

What is the one you disabled and why?
 

jamescv7

Level 85
Verified
Honorary Member
Mar 15, 2011
13,070
Since you have no AV I think your confident to your setup (Good Config).
 

MetalShaun

Level 1
Thread author
Mar 3, 2011
424
bogdan said:
No AV? :D

Cloud scanner turned off.
There are 2 cloud features integrated in COMODO Firewall.

1. Cloud based behavior analysis - CIMA (Comodo instant malware analysis)
2. Automatically scanned unrecognized files in the cloud - Whitelist + Blacklist. Turning this one off might cause some good applications to not be recognized by CIS and as a result more pop-ups will appear.

Unfortunately if COMODO Firewall detects something malicious using the cloud services it might delete that file (There is no Quarantine in the Firewall version). (And false-positives can happen)

What is the one you disabled and why?

The CIMA option is still enabled. But the Automatically scan unrecognized files in the cloud option is unchecked. This is because I have come across a lot of Malware (not nasty stuff mainly PUP's and adware) that are white listed in the cloud. Yes I know that there is still the chance of the Vendors sig being on the trusted vendors list but pretty much all the files I came across were only in the cloud white list. Also like you mentioned when you get a Cloud scanner alert you can only Clean (delete) or ignore there is no quarantine. I did use CAV for a long time but it never deteced a virus and all it ever flagged up was a couple false positives and a keygen. This doesn't mean I think CAV is bad I just didn't see the point of wasting recourses having it installed. As for the cloud lookup of safe files you only get one pop up for not white listed installers (the unlimited access one) and I haven't really had any problems updating programs.

Cheers
Shaun
 

Valentin N

Level 2
Feb 25, 2011
1,314
Since you're cis advanced user you should have the Sandbox set to Restricted or Untrusted.

if you also have alot of passwords then Lasspass is good addon (I like it and happy with it), Ultimate flags is another good addon (WOT+ more)

Regards,
Valentin N
 

Ink

Administrator
Verified
Staff Member
Well-known
Jan 8, 2011
22,361
I second LastPass.

You may be interested in PeerBlock, for your Torrent activities.
PeerBlock lets you control who your computer "talks to" on the Internet. By selecting appropriate lists of "known bad" computers, you can block communication with advertising or spyware oriented servers, computers monitoring your p2p activities, computers which have been "hacked", even entire countries!
 

jamescv7

Level 85
Verified
Honorary Member
Mar 15, 2011
13,070
Well I forget also that you can add EMET for protection against exploit and put the application that are vulnerable (like, IE,Adobe and etc...)
 

MetalShaun

Level 1
Thread author
Mar 3, 2011
424
So I have reinstalled windows and have changed my Config a fair bit.

General computer knowledge: Advanced
Level of security risk: Low
Operating system: Windows 7 home premium
OS architecture: 64 bit
Non-admin account: No
Real-time protection:
MSE (scan incoming ifles only)
SuperAntispyware Pro Version 5
EMET set to maximum and all internet facing apps configured.
Sandboxie (not really using it ATM mainly playing around with to try and make my mind up on it.)
On-demand scanners:
Malwarebytes Antimalware.
Browser(s):IE9

One question, would it be worth adding Microsoft virtual pc 2007 to EMET?? Anyone else added their virtual software to the list??
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top