Indeed! This concern can be alleviated by just enabling Windows Defender (which is actually an OK antivirus product recently). Just remember that no AV is going to catch a true zero day attack, whereas Comodo will.
So enable WD on Sunny Days, with CF active to protect you from the rare Storm.
Translated in English with google translater:
Comodo Antivirus Review (2025): Is it the best choice?
Should you buy Comodo Antivirus? We tested its ✓ protection ✓ performance ✓ usability ✓ price, and more. Read the Comodo Antivirus review.
Excerpt:
Full Review Updated January 2025
- Comodo’s real-time scanner blocked more than 94% in testing.
- Comodo’s anti-phishing protection is underwhelming.
- Comodo’s website filtering functionality is outdated.
- Secure Shopping aims to protect online transactions with features like keylogger blocking and remote connection warnings. However, in testing, it was buggy and failed to prevent screen recording—a critical feature for protecting sensitive data. Competitors like Bitdefender offer better, more reliable safe browsing tools.
But
Comodo’s Secure Firewall is the program’s standout feature, offering robust security and extensive customization options. In our tests, it effectively blocked network intrusions, spoofing attacks, and malware undetected by Windows Firewall. The firewall has four modes.
Overall, Comodo’s firewall can compete with firewalls from top-tier antivirus providers like Norton and Bitdefender, making it one of the best on the market.
Number 4, in my opinion, is a very serious flaw or vulnerability that actually renders the reliable firewall useless. Can the firewall’s good protection compensate for this? Or how can I prevent screen recording with Comodo? 
The manual states:
Stops hackers and malware from taking screenshots of your sessions
Detects fake SSL cerfiticates to stop man-in-the-middle attacks
Does this problem still exist or has it been resolved? It’s a problem that makes me seriously doubt Comodo’s security, because it’s a gateway. A single hole in the security wall is enough for cybercriminals.
Or did it never exist and only arose due to incorrect settings or handling?
CFW is extremely reliable (see the post above), which means that screenshots in CSS aren’t possible if there’s no malware on a PC. Is that correct? However, if malware is already present on the PC, it might be detected through scanning. I just scanned it, two scanners, and no threats were detected.
Or is no one using secure shopping anymore? But online banking on the “normal” screen? Or, for example, use a different sandbox?
Secure shopping was removed from CIS (both free and paid) in the major CIS update over a year ago, and is no longer being developed or supported.
Regarding Software Lab’s review of CIS, i could not find the version of CIS they tested, but if the version they tested had Secure Shopping, then they were testing a completely outdated version of CIS. As many people may recall, the newest version of CIS could only be downloaded from the forums (the download link on the Comodo website pointed to the old CIS for a very long time). So, perhaps Software Lab downloaded the outdated version of CIS from the website (which contained the subsequently removed Secure Shopping) & used it for their tests. Anyhow, any concern regarding Secure Shopping is essentially irrelevant because it has been discontinued, removed from CIS, is no longer being developed or supported, and it may not function correctly with windows 11 (because it was discontinued, its functionality was never verified on Windows 11 by Comodo).
Thank you.
`That’s it for me with Comodo. Without a secure virtual environment, I can’t do online banking or other work involving sensitive data, and the virtual desktop isn’t suitable for that and I don’t want to install any additional software. I’m switching to Norton’s software. 
It’s my mistake, I can open software virtually (containment). 
Dear prodex, I understand that you are switching from COMODO to another product because (Without a secure virtual environment, I cannot use online banking or perform other work that involves sensitive data.) However, it seems to me that if your browser has been compromised by a malware. exploit, a virtual environment will not be of much help to you.
Yes, the money turnover and the number of COMODO users are very small compared to AVAST, ESET, NORTON, KASPERSKY, etc., and I don’t think anyone would spend so much effort on hacking COMODO.
No, that’s not the case. None of the four scanners found a threat, and it should stay that way.
Opening programs virtually isn’t a solution. Virtual Explorer, virtual browser, etc.
I just tried the virtual desktop, thought it was working, but suddenly it froze. Stupid when you’re busy with important work.
CSS worked and continues to work wonderfully, I’ve never had any problems with it.
So, the switch is imminent. I’ll have to try Norton first, of course. Comodo advertises secure online banking. What do I know about Comodo CIS related to this other than opening it virtually (cumbersome), the virtual desktop (unstable internet connection for me), and the corresponding browser (too insecure for me). What else is there with Comodo? A serious question.
Not a good hope. Here, in another thread, someone reported a serious identity theft despite using Comodo.
One option is browser extensions like uBlock Origin (which apparently is no longer being developed and is being replaced). But such extensions also have permissions, and any additional program can reduce security.
Comodo’s Online Security Pro doesn’t seem particularly reliable either. A divorce is imminent. 
Not long ago, I was protected from remote access three times in CSS; Comodo ended/stopped secure shopping.
Yup that was a bad move when they stopped working on CSS in my opinion.
No, Comodo blocked CSS and advised me not to continue. The “hourglass” was running and then terminated the connection after it expired.
A warning appeared beforehand: A computer is trying to establish a connection to your computer and could control or spy on your computer. We advise you not to continue, terminate the connection, and delete the remote software (in essence).
However, this problem has only occurred in connection with CSS for me so far. However, I do pretty much everything in CSS.
Strangely, CSS wouldn’t open anymore, and they advised me to reinstall it. I did the online installation, wanted to disable antivirus, and CSS was selectable there. I did that, but instead of the CIS icon, only a gray square appears. So I can’t access the interface.
I’m still trying to save my “marriage” with Comodo, since this connection has reliably protected me, even with CSS, until now.
some steps back:
Conclusion from @cruelsister’s post:
It is extremely difficult to inject malicious code into Comodo
Conclusion from @cruelsister’s post:
(It is extremely difficult to inject malicious code into Comodo): "Well, finally "
I don’t get why your even trying to use CSS still. You want the same protection? Run Comodo Dragon or another browser in the sandbox and there you are in a virtual environment in your browser. Granted, you’d have to adjust that HIPS protected objects settings by removing windows sockets but if something bad is going to get virutalised anyway, I don’t even see the point of that.
You want phishing protection? us Netcraft or Osprey for multiple DNSs, NoScript, Adguard etc. Still paranoid, use a key scrambler and browse over VPN.
I want as few extensions as possible, ideally none for working with sensitive data, for example, in an incognito window. I also use a separate password manager, perhaps two browsers, and an office/word processing program to transfer data using copy-paste, etc. I then have to open virtual windows for everything. The virtual desktop sometimes freezes suddenly—so that’s not an option.
This way, I would have everything under one roof in the stable CSS and could work quickly. Of course, I could also set up a virtual PC. Well, so far, there have been no problems with CSS regarding protection and security, even if it hasn’t been further developed.
Other options for you would be getting a cheap upgrade to Windows Pro and using Windows Sandbox but none of the data is saved there or vmware which is now free.
If your wanting minimal , have a look at Osprey Github - Osprey as it includes a lot of DNS providers under one extension. I did use Adguard For Desktop but it slowed down my system and I’ve gotten a new laptop since but always cheap deals for lifetime licences.
CSS is based on TOR, isn’t it. Isn’t that a certain level of security? But now something “strange:”
I installed CIS with the online installer over the already installed CIS; it even worked with the integrated CSS, which I can even open via the CIS interface. However, I couldn’t deselect Antivirus.
The online installer always uses the latest version, not the one I downloaded, right?
The online installer is from March 9, 2025.
The only extensions I have are the latest ublock origin 1.66.4 (#588 von @domo78)
and trafficlight from Bitdefender.
Edit:
It installed version 12.2.2.8012 without warning or asking if I really wanted to downgrade!
I thought The online installer always uses the latest version.
You must have downloaded the .8012 installer for some reason. Current version is still: 12.3.4.8162
Confirmation of cruelsiter’s “thesis”:
From Hard_Configurator Tools
Verified
Anyway, we discussed on MT some other, more dangerous, and still unpatched flaws. Yet, there are no reports that they were used in the wild. Just as the bypass I discovered last year (via shortcut + WDAC policy), those possible bypasses are also unimportant for home users.
@rashmi, among others:
I prefer Comodo for the reasons listed above, rather than default-allow AVs. Your and @Shadowra’s tests also show Comodo protects on par with or better than leading AVs. It is very compatible with the most recent Windows. I prefer it, as I can use it effectively. The features are useful to me; I know its flaws, and I keep informed about it.
This creates an overall picture that roughly corresponds to my own experiences, and I hope it will remain this way in the future. I would switch to xcitium, but that’s not possible for “normal mortals.”
I thougt that does the online-installer automatically.
Could this have been the reason for the blocking by Comodo?
- Vulnerabilities like Comodo’s RCE is a dangerous open gate allows attacker to control victim’s system remotely. It’s software vulnerability so it’s a different category compares to bypass detection although both shares the same impact in this very topic. It’s like “you hired a guard that’s the double agent” versus “the guard failed to protect you”.
