Hello, since I'm not a big fan of classic antivirus software I would like to swith to Comodo Firewall with Cruelsister's settings (I use Win 10 64 bit). But how can I protect against malware that is trusted by CF like it happened with malware that was accidently whitelisted by a member of the Comodo's staff or the infected version of CCleaner? Would I need another program for additional protection against those threats or can CS settings be changed in a way that CF will protect my system in such cases? As far as I read I could set Comodo's Hips to paranoid mode but since I'm an average Joe I wouldn't always know how to answer the popups. Thanks. Michael
Don't use paranoid mode. You can delete all the trusted vendors except for microsoft and a few other ones that you need. Then, disable cloud lookup (I don't remember the exact name, it is in the trust settings.) You will get a lot more prompts. It is better to combo CFW with something else. For instance, Windows Defender. By the time someone at Comodo labs reviewed and mistakenly approved a certain malware sample (Comodo is very slow at reviewing malware), Windows Defender will already have it in their data base. It is unlikely that they will both make the same mistake.
Thanks for your reply. As far as I read CF is good at protecting the system but not really meant to protect against phishing websites etc. So can you recommend a good addition for that? Maybe Heimdal Pro? Another question: CS used a digitally signed malware in one of her videos that would even bypass CF at her settings. Is there any program that would protect against that?
Sorry for the late response. There are lots of browser add-ons that protect against phishing sites etc. I don't know which is best, people are testing them all the time and the results always come out different. IMO the best protection against phishing is to use a password manager. The password manager can't be fooled by characters that look alike to the human eye. If it is not the true site, the password manager simply will not know the password for it. End of problem. As for signed malware: first of all, this is relatively rare for home users, and it usually drops an unsigned file later on as part of the attack process. Second of all, you can mitigate that issue in Comodo by removing all trusted vendors except for microsoft and the others that you really need, and turning off cloud lookup. But you will get more prompts. Or you can use a different app such as NoVirusThanks EXE Radar Pro, or Voodooshield.
have a good/light AV that has excellent sigs also Comodo usually changes the trust rating of falsely trusted stuff very fast on the cloud signed malware are sigged the fastest, you shouldn't worry about those at all
