After a long time ‘established’ anti-virus and firewall failed miserably and allowed trojans to get through (never did find them even after repeated updates and scans), I went looking and found that both Avast and Comodo have high ratings. Not sure how effective Comodo’s firewall will be (time will tell I guess) but I sure like how Comodo provides a user access and control as well as being able to see what’s going on. Comodo sure has a lot more proactive functions than the long time “standard”…
- Does anyone know if/when Comodo will change their task bar icon to where it will easily display when when a person has the firewall blocking all traffic? (And does that function indeed block all activity?)
At any rate, when dumping the other and installing Avast and Comodo, when starting up Skype, there was a boat load of UDP outs to all sorts of IP addresses that Comodo flagged as suspect and asking if I wanted to allow or block them (as well as a fair number of TCP outs). In searching the net regarding Comodo users having all these UDP outs occurring with Skype, some of the blogs/post say something about blocking all UDP outs (not that computer savvy to know if their ‘advice’ was accurate or not).
- Does anyone know specifically why Skype would have all those UDP outs, and are they valid or should they be blocked as Comodo throws each one up as being suspect, and if they are not valid and ‘safe’ to allow, what the heck is going on?
In searching about this issue, I also ran across some white hat/black hat discussions (and one providing how to instructions) that another person’s Skype account is able to be hacked/compromised to monitor who you call, IM’s sent etc. After reading that, and having had other web accounts violated in the past, I’m still very skittish about all those UDP outs…
Most all of the UDP outs I blocked and selected ‘remember’ (may have missed a few as there was probably over 100). IF I was in error about blocking them, how does one easily reverse the blocking?
If I was not fast enough to respond to a warning pop up box asking to allow or block an action and the box goes away, does Comodo by default allow, or block such an action?
If an action or UDP out was allowed (and marked to be remembered), how does a person go in and easily find those that were allowed, and remove the allow setting?
I’m not yet running Comodo in the Paranoid mode, but I think I have most everything set to the strongest scrutiny levels and Comodo actually sandboxed things like Thunderbird and some of those ominous warning Comodo boxes popped up saying that something may be trying to use Thunderbird yada yada, and asking to either allow or block the action etc. when I first started up Thunderbird after installing Comodo. I blocked most all, but some (can’t recall what they were) I had to allow in order for Thunderbird to operate at all.
One of the other forums helped to go through the computer and run a series of tests and scans and get things cleaned up (but most all of the Trojans etc were found when I had installed and ran Avast the first time) and things seem to be running ok, but the boat load of UDP Out’s that Comodo flags when starting up Skype has me a bit concerned. If anyone knows for sure what’s going on regarding all those UDP Outs (and even a fair amount of TCP outs) to all kinds of different IP address, it would I think be helpful to me and others that are running into these issues to know what’s going on, and if it’s an issue that needs to be dealt with.