Prevx CSI incompatibility with Comodo

Hello all,
Over the past week, users our free scanner, Prevx CSI have run into a number of false positive issues due to an incompatibility between our rootkit scanner and Comodo’s HIPS systems. After some engine modifications and extensive testing, we are now compatible with Comodo’s protection once again.

If you do run into any further problems between Comodo and CSI (we do not claim to be experts on Comodo’s workings - thats where you come in!), please let us know so that users of CSI can use Comodo and vice versa, without problems. We are sorry for any inconvenience that this has caused any of our users or any Comodo users as well.

Best Regards,
Prevx Support

Hi CSIHelp :slight_smile:

I already tried the tool ( and came out clean :slight_smile: ) but I wonder how it works. Is it based on heuristics ???

Greetz, Red.

Hi Guys,

Thank you very much for your efforts. We really appreciate it.


What a refreshing post to read,two security companies working somewhat together for the good of all.
bravo to both parties.


CSI is an on-demand malware scanner which uses our Community Database (that has heuristics/sandbox analysis/signatures/behavior monitoring/etc. across the entire community) to scan files. We don’t scan every single file on the system (as you could probably guess based on the scan speed ;)) but we pick a few thousand files to scan - mostly executables - that are either loaded in memory, referenced by registry keys, or in important system areas where we’ve seen malware sit before.

The second half is a rootkit scan which looks for hidden files/process/reg keys/services/MBR’s.

If you have further questions, please contact our support team or drop us a line at our CastleCops-sponsored forum:

Thank you for your reply :slight_smile:

Greetz, Red.