shadha
February 13, 2010, 7:05am
1
Hi Everyone,
Didnt have much to do this afternoon so played around with AIS to see how it performed compared to CIS.
CIS
D+ at paranoid
Comodo - Internet Security
Sandbox disabled
Leak test score 320/340
AIS
out of the box
Leak Test score 160/340
The only thing I really like about AIS is the fact that it closes connection to web page that has virus’s.
BTW I still can’t get a full score of 340 with CIS. It fails on DNS and Coat. Does anyone have any answers?
shadha
Apach
February 13, 2010, 7:34am
2
There were some explanations why Comodo Leak Test does not show the truth about CIS with a sandbox. If you switch off the sandbox - this is the same old Defence+ I think.
JoWa
February 13, 2010, 7:45am
3
AIS (5.0.418) “out of the box” protects only
20. InfoSend: ICMP Test Protected
21. InfoSend: DNS Test Protected
With virtualization enabled, I get this score:
COMODO Leaktests v.1.1.0.3
Date 09:09:08 - 2010-02-12
OS Windows XP SP3 build 2600
RootkitInstallation: MissingDriverLoad Protected
RootkitInstallation: LoadAndCallImage Protected
RootkitInstallation: DriverSupersede Protected
RootkitInstallation: ChangeDrvPath Vulnerable
Invasion: Runner Protected
Invasion: RawDisk Vulnerable
Invasion: PhysicalMemory Protected
Invasion: FileDrop Vulnerable
Invasion: DebugControl Vulnerable
Injection: SetWinEventHook Vulnerable
Injection: SetWindowsHookEx Vulnerable
Injection: SetThreadContext Protected
Injection: Services Vulnerable
Injection: ProcessInject Protected
Injection: KnownDlls Vulnerable
Injection: DupHandles Vulnerable
Injection: CreateRemoteThread Protected
Injection: APC dll injection Protected
Injection: AdvancedProcessTermination Protected
InfoSend: ICMP Test Protected
InfoSend: DNS Test Protected
Impersonation: OLE automation Vulnerable
Impersonation: ExplorerAsParent Vulnerable
Impersonation: DDE Vulnerable
Impersonation: Coat Vulnerable
Impersonation: BITS Vulnerable
Hijacking: WinlogonNotify Vulnerable
Hijacking: Userinit Vulnerable
Hijacking: UIHost Vulnerable
Hijacking: SupersedeServiceDll Vulnerable
Hijacking: StartupPrograms Vulnerable
Hijacking: ChangeDebuggerPath Vulnerable
Hijacking: AppinitDlls Vulnerable
Hijacking: ActiveDesktop Vulnerable
Score 120/340
But read this post to understand the result better.
Hi Everyone,
Didnt have much to do this afternoon so played around with AIS to see how it performed compared to CIS.
CIS
D+ at paranoid
Comodo - Internet Security
Sandbox disabled
Leak test score 320/340
AIS
out of the box
Leak Test score 160/340
The only thing I really like about AIS is the fact that it closes connection to web page that has virus’s.
BTW I still can’t get a full score of 340 with CIS. It fails on DNS and Coat. Does anyone have any answers?
shadha
The best that you can do is use:
Avast 5 (free av) + Comodo (Firewall, Defense+ “Sandbox”… no av)
Rednose
February 14, 2010, 6:38pm
5
AIS (5.0.418) “out of the box” protects only
20. InfoSend: ICMP Test Protected
21. InfoSend: DNS Test Protected
With virtualization enabled, I get this score:
COMODO Leaktests v.1.1.0.3
Date 09:09:08 - 2010-02-12
OS Windows XP SP3 build 2600
RootkitInstallation: MissingDriverLoad Protected
RootkitInstallation: LoadAndCallImage Protected
RootkitInstallation: DriverSupersede Protected
RootkitInstallation: ChangeDrvPath Vulnerable
Invasion: Runner Protected
Invasion: RawDisk Vulnerable
Invasion: PhysicalMemory Protected
Invasion: FileDrop Vulnerable
Invasion: DebugControl Vulnerable
Injection: SetWinEventHook Vulnerable
Injection: SetWindowsHookEx Vulnerable
Injection: SetThreadContext Protected
Injection: Services Vulnerable
Injection: ProcessInject Protected
Injection: KnownDlls Vulnerable
Injection: DupHandles Vulnerable
Injection: CreateRemoteThread Protected
Injection: APC dll injection Protected
Injection: AdvancedProcessTermination Protected
InfoSend: ICMP Test Protected
InfoSend: DNS Test Protected
Impersonation: OLE automation Vulnerable
Impersonation: ExplorerAsParent Vulnerable
Impersonation: DDE Vulnerable
Impersonation: Coat Vulnerable
Impersonation: BITS Vulnerable
Hijacking: WinlogonNotify Vulnerable
Hijacking: Userinit Vulnerable
Hijacking: UIHost Vulnerable
Hijacking: SupersedeServiceDll Vulnerable
Hijacking: StartupPrograms Vulnerable
Hijacking: ChangeDebuggerPath Vulnerable
Hijacking: AppinitDlls Vulnerable
Hijacking: ActiveDesktop Vulnerable
Score 120/340
But read this post to understand the result better.
JoWa, you can’t enable/disable virtualisation. You can only virtualise something ( or not ). AIS 5.0.418 scores 120/340 out of the box.
Greetz, Red.
JoWa
February 14, 2010, 9:28pm
6
With “virtualization enabled” I meant ’using process virtualization’. With “out of the box” I mean the score I get without manually enable/use a feature, just double click on clt.exe…
Rednose
February 15, 2010, 4:36am
7
Process virtualization is only active/used/enabled when you actualy virtualize a process. And out of the box no process is being virtualized.
Greetz, Red.
bequick
February 15, 2010, 10:00am
8
There’s no such thing like Avast vs. Comodo. And…do You know why? Because CIS is much better than Avast.I’ve tested the two suites for some time and…that’s the truth.Sorry for all avast users, but CIS FREE is way better. :))
giraffe
February 15, 2010, 3:33pm
10
Agreed - I much prefer the ethos and actions of Avast AV to CAV and the two seem to run well together.