COMODO Internet Security 5.x Thread

[cruelsister]

An update to my statement earlier about the apparent DefenseWall fail. I'm in contact with Ilya in order to determine what happened.

[Ilya Rabinovich]

My conclusion from test run of the samples sent- no problems with them at all if they are running untrusted.

[cruelsister]

After conversations with Ilya and actually reading something about DefenseWall, I tried another test on the sample discussed:

1). Sample was downloaded by the browsers IE8, Firefox, Seamonkey and ran it.
Result- DW passed
2). I emailed the file to myself and ran it.
Result: DW passed
3). I added the file to a USB device and ran it.
Result: DW passed.
4). I ran the same piece of malware that already was on my computer PRIOR TO THE INSTALLATION OF DW (unfortunately the exact scenario that caused the failure in my previous and now edited post).
Result- DW failed

Result 4 should not have been surprising if had taken the trouble to actually READ about the product. I quote from DW's website:

"DefenseWall does not clean malicious software out from already infected computers!."

(The above is in bold print on the website.)

As a computer with a malware file already on it prior to installing DW can be considered infected, Final Results:

Defensewall Passed

Cruelsister Failed

(apologies and regards to Ilya)

[lordraiden]

Quote:

Originally Posted by cruelsister

As a computer with a malware file already on it prior to installing DW can be considered infected, Final Results:

Defensewall Passed

Cruelsister Failed

(apologies and regards to Ilya)

I agree, the software "Cruelsister" Security Suite is really bad

[1chaoticadult]

Quote:

Originally Posted by lordraiden

I agree, the software "Cruelsister" Security Suite is really bad

Hahaha lordraiden. You were waiting on the "Cruelsister" Security Suite Service Pack to release

[jmonge]

or beta

[1chaoticadult]

Quote:

Originally Posted by jmonge

or beta

lol J. You like betas. Anyways thanks for the new info cruelsister

[TonyW]

Quote:

Originally Posted by cruelsister

There is a certain AV (not named as I don't do A vs B comparisons) with a very, very good Cloud detection rate that did very, very bad against a few new threats found today.

But isn't that a problem all AV vendors will face at some time especially when it comes to new unknown threats? In any case, not to belittle the situation, but by the time detection is added, the malicious URLs are often no more. It is a problem, and one I don't relish having to tackle in this ever changing cat-and-mouse game.

[Baserk]

Quote:

Originally Posted by cruelsister

...Final Results:
Defensewall Passed...

Kudos for the follow-up, cruelsister.
Glad to read you're serious about rouge testing. =p

[lordraiden]

A summary of the changes in CIS 6, anybody else has read anything that is not here?

• Automatic sandbox with full virtualization
  
• The addition of Valkyrie, the files will be scanned with CIMA(CAMAS), CAV, the 15 (more will be added) specialized engines of Valkyrie, and an advanced heuristic engine, the result of everything will be evaluated to give a final result. http://valkyrie.comodo.com/
  
• Also there will be some kind of protection for the browser, a kind of tool bar (I hope they do something like traffic light in terms of space) that I think they will bring something really different.
  
• And maybe an improved version and integrated in the cloud of THreatCast will be back, at least in a 6.x version.
  
• The full support for the x64 HIPS (CIS 5,8), is going to be one of the first vendors in provide it, or maybe even the first, I doubt about SS.
  
• A home made version of KillSwitch will be integrated into CIS replacing the "view active process list" and also will be accessible from the tray icon.

All this is more or less what has been said in the forum, but probably there will be something else.

[Nizarawi]

Online Armor the best hips for 64 bits (full supported )

[Hungry Man]

Thank you for the summary Lordraiden.

[lordraiden]

Quote:

Originally Posted by Nizarawi

Online Armor the best hips for 64 bits (full supported )

Thanks for your nonsense and mistaken post but the HIPS of OA x64 is not at the same level of protection than the 32bit version, this has been said recently by an OA developer.

[syk69]

I like all the new features except for the toolbar. CIS protects just fine now without one. No need to add one in my opinion. Actually, not a fan of any web browser toolbar. If they do decide to add one I hope its optional in the installer.

[aigle]

Quote:

Originally Posted by lordraiden

A summary of the changes in CIS 6, anybody else has read anything that is not here?

• Automatic sandbox with full virtualization
  
• The addition of Valkyrie, the files will be scanned with CIMA(CAMAS), CAV, the 15 (more will be added) specialized engines of Valkyrie, and an advanced heuristic engine, the result of everything will be evaluated to give a final result. http://valkyrie.comodo.com/
  
• Also there will be some kind of protection for the browser, a kind of tool bar (I hope they do something like traffic light in terms of space) that I think they will bring something really different.
  
• And maybe an improved version and integrated in the cloud of THreatCast will be back, at least in a 6.x version.
  
• The full support for the x64 HIPS (CIS 5,, is going to be one of the first vendors in provide it, or maybe even the first, I doubt about SS.
  
• A home made version of KillSwitch will be integrated into CIS replacing the "view active process list" and also will be accessible from the tray icon.

All this is more or less what has been said in the forum, but probably there will be something else.

Toolbar seem fishy to me. I can just hope that it,s not a disguised ask toolbar. Also I don,t like the threatcast, never use it but is ok if you can disable it.

[Hungry Man]

Neither am I. But I'm sure it's optional.

[dw426]

Quote:

Originally Posted by aigle

Toolbar seem fishy to me. I can just hope that it,s not a disguised ask toolbar.

I hope not either, but I'm not going to fall over dead from surprise if it is. I'm sure you remember the "HopSurf" incident.

[1chaoticadult]

Quote:

Originally Posted by dw426

I hope not either, but I'm not going to fall over dead from surprise if it is. I'm sure you remember the "HopSurf" incident.

We don't need another incident like that.

[dw426]

Quote:

Originally Posted by 1chaoticadult

We don't need another incident like that.

Yeah, talk about a firestorm. Let's just hope they learned their lesson.

[1chaoticadult]

Quote:

Originally Posted by dw426

Yeah, talk about a firestorm. Let's just hope they learned their lesson.

For sure it was. Hopefully they did.

[lordraiden]

Almost everything during the installation of CIS is optional, I'm almost sure that the tool bar too.
The only thing I know is that the toolbar will use siteinspector http://siteinspector.comodo.com/
An Example: http://siteinspector.comodo.com/public/reports/286071
But may have other things included.

[Mops21]

Hi

COMODO Internet Security 5.8.202876.2065 BETA Released

https://forums.comodo.com/beta-corne...-t75462.0.html

[lordraiden]

Quote:

Originally Posted by Mops21

Hi

COMODO Internet Security 5.8.202876.2065 BETA Released

https://forums.comodo.com/beta-corne...-t75462.0.html

What's new in 5.8.202876.2065?
FIXED! CIS doesn't close handles as expected which could cause stability and performance issues

The update can be retrieved using the program updater. Also the installer binary has been updated to 2065.

[andyman35]

Quote:

Originally Posted by aigle

Toolbar seem fishy to me. I can just hope that it,s not a disguised ask toolbar. Also I don,t like the threatcast, never use it but is ok if you can disable it.

It's extremely unlikely that they'll go down that route again IMO,given the overwhelmingly negative response last time.It's my understanding that crapware bundling was dropped permanently,but time will tell.

The addition of a specific browser protection module has been requested by a lot of users,I seem to remember it being said that it'll be optional but again time will tell.

[cruelsister]

Build 2065 has been out for about 2 weeks already (8/16 if memory serves).