Alright , I'm experiencing no lag or alikes. Only thing i noticed is that both TF2 and my brower (Baidu Spark.) Dont get instantly Sandboxed , Any reasons? (Proactive mode is on , And run virtually is for any file)
Some AMD/ATI Catalyst Control Center modules are not yet on COMODO's Trusted white list. Consequently, if you do not perform a Rating Scan and transfer those modules to the Trusted File list they will get auto-sandboxed as Unrecognized. The AMD/ATI stuff is legit but digitally unsigned so, despite being from a Trusted Vendor, Defense+ does not recognize them as Trusted.... and the last time it sandboxed an executable from my ati software...
My comodo detected and removed a file called " netfilter.sys " , I feel a lot safer with both comodo and 360 total security.
Anyways , What does said .sys do?
Apparently it was a virus disquising as Netfilter.sys , Since it was on c:\windows , istead c:\window\system32http://systemexplorer.net/file-database/file/netfilter-sys
Its something to do on network interface cards, if you feel its like an error for detecting it then you need to revert the changes. Because Comodo isn't yet full on the trusted vendor list to isolate those legitimate files and other crucial components.
Yes I've found also in some research that it can be a virus, it will differ on the publisher company/ digital signature since the original itself is came to be on Microsoft.Apparently it was a virus disquising as Netfilter.sys , Since it was on c:\windows , istead c:\window\system32
As far as i know , These nasty viruses that disquise as " Original Microsoft stuff " Comes from downloads. I probably downloaded something infected and it come along. Both 360 total security , My old avg and comodo detected some of the children of said virus , And comodo then killed the fake .sysYes I've found also in some research that it can be a virus, it will differ on the publisher company/ digital signature since the original itself is came to be on Microsoft.
Any idea where do you encountered this .sys?
Done.I must make a change to my past comments regarding the optimal settings for Comodo Firewall, specifically in regard to the different Configuration settings.
Formerly I had thought that changing the Configuration setting from “Firewall Security” to “Proactive Security” would be the easiest way to achieve maximum protection. Sadly I made this statement without adequate testing being done, and now that I have (and found this change to be lacking), I would suggest any who use CF to change the configuration back to Firewall Security with the following added change made to the Sandbox setting- Edit the first “Run Virtually” setting from “Internet” to “Any”. This can be seen in the installation video found on this post at 6:46.