Comments on: Comodo Internet Security 3.8 Review – Usability, Detection and Removal

By: nobody

nobody — Sat, 14 Mar 2009 09:49:17 +0000

first mistake in testing comes from lying to CIS, when malwarekilla said His PC is clean in installation procedure CIS becomes blind to behaviors of any kind, (d+ turned itself in “training mode” in which remembers all rogue beh. like trusted) after that everything goes wrong…

also While testing ESET 4.0, I cant understand why malwarekilla didnt disabled realtime detection while setting up his customized set up, instead we watched all kind of popups and movie was endless painful experience for him and us

at the end VIVA to CIS and D+,:)

By: RejZoR

RejZoR — Tue, 03 Mar 2009 23:56:19 +0000

Yeah, the stuff you manually block and delete in CIS isn’t exactly fair if you compare to others. The first reviews you made were made from an user perspective. So what it was detected, it was detected (and hopefully removed).
But since you remove half the stuff by hand, it’s not really easy to evaluate or compare on or another. But from what i’ve seen CIS was struggling to clean lots of junk and it missed lots of stuff too. No safe-mode test like before either
CIS is ok and will get better in v3.9 and 4.x but for now it’s really struggling to even detect stuff. Defense+ is simply usless and annoying for average users. Hell, it’s annoying even for me and i’m far from novice user.
Thats why i’m hopelessly waiting for them to turn Defense+ HIPS into behavior detection system and finally implement true heuristics.

By: Marcos N. Pesic

Marcos N. Pesic — Tue, 03 Mar 2009 14:33:29 +0000

I think you should use ONLY the anti-virus to clean the PC (so we can see what is left) and then do the “manual” stuff with the Defense + tool.
You also should have scanned in “Safe Mode”.

Anyway another good review, (image/sound are awesome for a Youtube video)…
Altough I may say that the “Ad-aware” review that follows have a VERY LOW SOUND. In my system I could not hear your voice even with 100% volume.

By: RejZoR

RejZoR — Tue, 03 Mar 2009 09:35:35 +0000

They’re not. They are just using either modified packers or very complex packers/protectors like Themida and Armadillo.
Each of these are either too complex to dissasemble/unpack or they just fail to unpack because they are modified or custom made.

By: f

Tue, 03 Mar 2009 05:34:24 +0000

What is that supposed to do

like all virsesare all packed differnty

By: RejZoR

RejZoR — Tue, 03 Mar 2009 05:07:35 +0000

Packer detection means when something is detected just because it’s packed with a specific PE packer.
Like MEW or Armadillo (and many others).

By: f

Tue, 03 Mar 2009 04:38:59 +0000

what is packer detection

By: RejZoR

RejZoR — Tue, 03 Mar 2009 03:19:51 +0000

It’s just packer detection, so it doesn’t make much difference. It’s still useless to whatever you set it.
Until they add actual heuristics…

By: malwarekilla

malwarekilla — Tue, 03 Mar 2009 03:04:57 +0000

Yup, they were on low. But if it makes ya feel better I put them on high tonight and the results were exactly the same.

By: Dan

Dan — Mon, 02 Mar 2009 23:55:21 +0000

EDIT: it NOT on HIGH by default… Its on LOW..

You can check there forum. ”
What are the defaults for “COMODO – Internet Security”