COMODO Internet Security 5.0.162051.1126 RC Bug Reports

  1. Your Operating System : windows 7 64b

  2. Other Security and Utility Software Installed : N/A

  3. Step by step description to reproduce the issue : Run garena.exe(http://download.garena.com/download/?url=http://http.cdnlayer.com/garena/client/Garena_setup.exe&lang=English%20Version ) ( Last updates), Comodo give " overflow alerts " , press skip, alert back , again skip , again skip and again skip, garena start, closes garena.exe , go to processlist and now ghost process is here.

  4. How you tried to resolve the problem : Reboot solves it.

  5. Attach screenshots to your posts to clarify the issue further : view attach.

Moderator addendum: This appears to be the same bug that was reported here and here.

[attachment deleted by admin]

  1. Windows 7 Pro x64
  2. None
  3. You need to install Creative Sound Blaster Audigy 2 ZS drivers and reboot the PC with CIS installed. One file which is a part of SB Audigy 2 ZS drivers is always sandboxed.
  4. By moving the file to Trusted Files
  5. N/A
  6. Attached.
  7. Creative Sound Blaster Audigy series driver 2.18.0017
  8. Internet Security configuration. Clean installation.

[attachment deleted by admin]

  1. Your Operating System (32 or 64 bit) and Service Pack revision
    Windows Vista Ultimate x64 SP2

  2. Other Security and Utility Software Installed
    Only CIS5

  3. Step by step description to reproduce the issue
    Enable “Block all unknown requests if the application is closed” in D+ options

  4. How you tried to resolve the problem
    n/a

  5. Upload Memory Dumps on crash if you encounter any
    n/a

  6. Attach screenshots to your posts to clarify the issue further
    Attached

  7. Any other information you think that might be useful
    Get a weird bug when enabling this option. When booting up and logging on to my user, it takes a long time to log into windows than when this option is disabled. Also get a pop up for search indexer every time.

  8. The CIS Security profile your using, and if you imported a previous version of the config
    Internet Security, Clean Install, no config import

@Fieseler:

Yes i have opportunity to choose, between Sandbox or Allow button. But if You click on the
Allow button, always comes the D+ Alert when you start the application.
Non clickable the “Always trust the publisher of this file”.

This STILL isn’t fixed.

Edit by EricJH: quote fixed and removed the long url. The new quote header can now be clicked to go to the quoted post

  1. Your Operating System (32 or 64 bit) and Service Pack revision
    WIN7, 32 bit

  2. Other Security and Utility Software Installed
    Avast, SafeOnline, KeyScramber free

  3. Step by step description to reproduce the issue
    Sandbox not functioning when using windows explorer to run an unknown executable file by

    1. double click the exe file,
    2. use right click menu to and select “Run in COMODO Sandbox”
      No automatic sandbox nor alerts asking me to sandbox the program or not.
  4. How you tried to resolve the problem
    N/A

  5. Upload Memory Dumps on crash if you encounter any
    N/A

  6. Attach screenshots to your posts to clarify the issue further
    Attached (showing CLT.exe runing un-sandboxed under explorer but sandboxed under Q-Dir)

  7. Any other information you think that might be useful
    Sandbox is functioning if I use Q-Dir instead of explorer to run the program.
    Seems 4.1 has this problem too. https://forums.comodo.com/empty-t57090.0.html;msg404992#msg404992

  8. The CIS Security profile your using, and if you imported a previous version of the config
    Not imported, installation default.
    Clean install, Proactive Security, firewall custom mode , Defense+ Safe mode, Sandbox enabled.

[attachment deleted by admin]

  1. Your Operating System (32 or 64 bit) and Service Pack revision
    Windows 7 Home Premium 64 bit

  2. Other Security and Utility Software Installed
    COMODO Internet Security 5.0.161695.1120

  3. Step by step description to reproduce the issue
    Each time I run Garena Client [http://www.garena.com/], I received COMODO Defense+ buffer overflow alert from CIS

  4. How you tried to resolve the problem
    N/A

  5. Upload Memory Dumps on crash if you encounter any
    N/A

  6. Attach screenshots to your posts to clarify the issue further
    Please refer to screenshot for more information

  7. Any other information you think that might be useful
    Please refer to the attachment CIS.rar which contains my CIS configurations

  8. The CIS Security profile your using, and if you imported a previous version of the config
    COMODO- Internet Security, not imported from previous version

[attachment deleted by admin]

Thank You!!! Finally!!

Now: Tray icon for same effect!!

To be in conformity with status messages:

  • Green tray for All systems active
  • Yellow tray for one component disabled
  • Red tray for failure/all components disabled
  • Flashing for gaming mode
  1. Your Operating System (32 or 64 bit) and Service Pack revision
    Windows 7 Home Premium 64 bit

  2. Other Security and Utility Software Installed
    COMODO Internet Security 5.0.161695.1120

  3. Step by step description to reproduce the issue
    CIS Defense+ Active Process List shows process that does not exist

  4. How you tried to resolve the problem
    N/A

  5. Upload Memory Dumps on crash if you encounter any
    N/A

  6. Attach screenshots to your posts to clarify the issue further
    Please refer to screenshot for more information

  7. Any other information you think that might be useful
    Please refer to the attachment CIS.rar which contains my CIS configurations

  8. The CIS Security profile your using, and if you imported a previous version of the config
    COMODO- Internet Security, not imported from previous version

[attachment deleted by admin]

That’d appear to be poor coding on the part of Garena Client,rather than a bug in CIS.

if it’s a safe app. you can go to 'D+ settings,Execution Control Settings’and add it to Exclusions where it says ‘Detect Shellcode Injections’

I see, thanks for the information :wink:

You’re welcome :-TU

  1. Your Operating System (32 or 64 bit) and Service Pack revision
    Windows 7 Home Premium 64 bit

  2. Other Security and Utility Software Installed
    COMODO Internet Security 5.0.161695.1120

  3. Step by step description to reproduce the issue
    Aikido3D [http://www.aikido3d.com/] does not run properly due the the CIS Defense+ module
    The process Aikido3D.exe appears to be lock up in the background
    I cannot end the process Aikido3D.exe that is lock up in the background using task manager or CIS Defense+ Active Process List
    The computer appears to be lock up after I ran Aikido3D on my computer
    I cannot shut down or restart the computer properly
    This bug also exist in CISV4

  4. How you tried to resolve the problem
    Force restart the computer and disable CIS Defense+ module before running Aikido3D

  5. Upload Memory Dumps on crash if you encounter any
    N/A

  6. Attach screenshots to your posts to clarify the issue further
    Please refer to screenshot for more information

  7. Any other information you think that might be useful
    Please refer to the attachment CIS.rar which contains my CIS configurations

  8. The CIS Security profile your using, and if you imported a previous version of the config
    COMODO- Internet Security, not imported from previous version

[attachment deleted by admin]

  1. Your Operating System (32 or 64 bit) and Service Pack revision: win xp 32 bits latest V5 RC2
  2. Other Security and Utility Software Installed : hitman pro - MBAM free
  3. Step by step description to reproduce the issue: Cloud AV seems not fonctionning . Every file submitted to online lookup comes back “unknown” and if i submit it, it’s “already submitted”. Even msn messenger is “unknown” . I never had an alert of a malware caught by cloud and with cima additionnal infos. even with malwares that I had manually tested by cima.
  4. How you tried to resolve the problem … ?
  5. Upload Memory Dumps on crash if you encounter any
  6. Attach screenshots to your posts to clarify the issue further : see below
  7. Any other information you think that might be useful
  8. The CIS Security profile your using, and if you imported a previous version of the config : proactive

[attachment deleted by admin]

  1. Your Operating System (32 or 64 bit) and Service Pack revision:
    Vista Home Edition SP2, 32 bits, UAC turn ON :slight_smile:

  2. Other Security and Utility Software Installed:
    Returnil System Safe 2011 Version 3.2.10143.5401-REL2 with AV on access OFF;
    Hitman Pro 3.5.6 build 113 ;
    MBAM v. 3.46 with resident protection on;
    WD resident protection enabled;
    SpywareBlaster v. 4.4 totally updated;
    WinPatrol free (latest version available)
    CTM v.2.8.155286.178
    Sandboxie v. 3.48

  3. Step by step description to reproduce the issue: No Cloud or Sandbox activity available. Whenever I add a program in Sandbox, even Untrusted, it just behaves as if the Sandbox was not enabled and I save my .txt files as usual and I recover them on reboot. Unrecognised files are still blocked and I can add them to my trusted files, that’s Ok, but no sandbox alerts ever like in the previous versions of CIS 4 or 5. Also, the Cloud is not working, the time for a scan of all my drives stays about 1h15 minutes with or without it enabled and I get no answer when I upload a file for analysis to CIMA.

  4. How you tried to resolve the problem: nothing

  5. Upload Memory Dumps on crash if you encounter any: nothing

  6. Attach screenshots to your posts to clarify the issue further:nothing

  7. Any other information you think that might be useful: Many testers have complained about the same problems in the beta forum. The “run a program in the Sandbox” feature in Defense + doesn’t seem to work at all and the tab always sandbox under Computer policy also. I tested it for notepad.exe in my Windows folder.

  8. The CIS Security profile your using, and if you imported a previous version of the config: Clean Install from CIS v. 4.1. Proactive Security/AV:Stateful/Defense+:Safemode/FW:Safemode/Sandbox:Enabled/Cloud:Enabled (nothing imported at all)

  1. Operating system Win 7 - 32 bit with UAC turned off.

  2. Malwarebytes 1.46 free version scanning only on demand.

  3. CIS 5 beta 2 sandbox fails Impersonation:ExplorerAsParent(330/340 CLT score.)
    Opera 10.61 default browser and IE 8 where both opened with CLT sandboxed.

  4. Disabled CIS sandbox and tested again and both browsers where not opened.

  5. N/A

  6. N/A

  7. I made a test with CIS sandbox disabled and installed FastStone Image Viewer.
    After installation FastStone Image Viewer always wants to open browser to
    go on line and when Defense+ is active i am presented wit a pop up to
    allow or deny FastStone Image Viewer to open Opera and access the internet.
    I always deny the action of FastStone Image Viewer.

  8. CIS 5 RC2 clean install no importing of configurations with proactive enabled,
    sandbox enabled,defense+ safe mode,firewall custom policy,AV stateful(files to scan
    in manual scan 5000 mb and all heuristic scanning on low for all settings).
    Defense+ and Firewall create rules for safe applications.
    Checked if there where any rules for CLT after all tests.

If more information is needed please ask and i will edit this post to reduce clutter.

  1. Your Operating System (32 or 64 bit) and Service Pack revision:
    Vista Home Edition SP2, 32 bits, UAC turn ON :slight_smile:

  2. Other Security and Utility Software Installed:
    Returnil System Safe 2011 Version 3.2.10143.5401-REL2 with AV on access OFF;
    Hitman Pro 3.5.6 build 113 ;
    MBAM v. 3.46 with resident protection on;
    WD resident protection enabled;
    SpywareBlaster v. 4.4 totally updated;
    WinPatrol free (latest version available)
    CTM v.2.8.155286.178
    Sandboxie v. 3.48

  3. Step by step description to reproduce the issue: After updating the virus DB, the time does not always update, sometimes it fails to do so.

  4. How you tried to resolve the problem: By running update again and clicking Ok. Usually this is enough to solve the problem but I would like to get an automatic time update 100% after updating, not to use bypasses.

  5. Upload Memory Dumps on crash if you encounter any: nothing

  6. Attach screenshots to your posts to clarify the issue further:nothing

  7. Any other information you think that might be useful: The problem was also present in previous versions like CIS 4.1

  8. The CIS Security profile your using, and if you imported a previous version of the config: Clean Install from CIS v. 4.1. Proactive Security/AV:Stateful/Defense+:Safemode/FW:Safemode/Sandbox:Enabled/Cloud:Enabled (nothing imported at all)

@gdiloren, i had the same problem with CIS 4.1 and now with the latest Beta. Indeed, after the manual update sometimes the time of update is not changed so you need to push the update one more time

  1. Windows Xp x64 with SP2 up-to-date
  2. Spybot: Search & Destroy (only for immunization, no TeaTimer running)
  3. Clean installed latest beta after i removed the latest stable of v4. After next startup (let’s say first run) the latest version of Deamon Tools Lite failed start without any error messages. (Side note: logged in as Administrator.)
  4. Tried to start it manually, did not work at all. After that I added it as Trusted application to both Firewall and Defense+ policies
  5. No dumps
  6. See screenshots below.
  7. 2nd and 3rd screenshot messages appeared after adding it to policies as Trused application
  8. Sandbox disabled, Firewall set to Custom Policy, Alerts set to very high, internet connection gateway has been disabled, everything has been enabled on the Advanced tab, Defense+ with Safe Mode (no change there, except of disabling Sandbox), A/V heuristic detection has been set Medium, Cloud scanning enabled too.

[attachment deleted by admin]