Realtime Scanning Software, Virus Protection

Real-time Scan Settings

Click 'Settings' > 'Antivirus' > 'Realtime Scan'

The real-time scanner automatically checks for viruses whenever you open or move a file. It also monitors background processes for malicious activity..

This ensures your system is constantly protected against malware and enjoys the highest levels of security.

The real-time scanner also scans:

System memory on system startup

Any plugged-in removable storage devices

You can specify that CIS does not show you alerts when it finds a threat, but automatically deals with it instead. You can choose to automatically quarantine or delete threats if you disable alerts.

We strongly recommend you leave the real-time scanner enabled at all times.

Configure real-time scan

Click 'Settings' at the top of the CIS home screen

Click 'Antivirus' > 'Realtime Scan' on the left

Enable Realtime Scan (Recommended) - Activate or deactivate real-time scanning. The real-time scanner continually monitors your computer for malicious activity and protects you from threats as soon as they occur. Comodo strongly recommends you keep this option enabled. (Default=Enabled)

Enable scanning optimizations - Will enable various techniques during a virus scan to reduce resource usage and speed-up the scan process. For example, antivirus scans will run in the background. (Default = Enabled)

Do not show auto-scan alerts - Choose whether CIS asks if you want to scan removable devices when you plug them in. For example, when you plug in a USB stick, external hard-drive etc.

Enabled - Alerts are not shown. CIS will automatically take the action you choose in the drop-down box:

Ignore - The device is not scanned (default)

Scan - The device is scanned for viruses. The scan uses the settings in the 'Manual Scan' profile. If this is not available then the scan uses the settings in the 'Full Scan' profile.

Disabled - Alerts are shown when you plug a removable device into your computer. You can choose to scan the device, or skip the scan. An example alert is shown below:

Detection Settings

Scan computer memory after the computer starts - The antivirus scans system memory immediately after your computer starts up. Disable to remove the scan from the list of Windows startup processes. (Default = Disabled)

Do not show antivirus alerts - Configure whether or not alerts are shown when CIS finds malware on your computer. (Default = Enabled )

'Do not show antivirus alerts' will minimize disturbance but at some loss of user awareness. If you choose not to show alerts then you have a choice of default responses that CIS should automatically take:

Quarantine Threats - Prevents the threat from running and moves it to quarantine (Default). You can review quarantined files at 'Tasks' > 'Advanced Tasks' > 'View Quarantine'.

Block Threats - Prevents the threat from running then deletes it from your computer.

Note: If you disable this option then you will see pop-up alerts when a threat is found. The alert offers you the choice to quarantine or block the threat.

Decompress and scan archive files of extension(s) - Comodo Antivirus will scan all types of archive files. Archive file types include .jar, RAR, WinRAR, ZIP, WinZIP ARJ, WinARJ and CAB files. You will be alerted to the presence of viruses in compressed files before you even open them. (Default = Enabled)

You can add the archive file types that should be decompressed and scanned by Comodo Antivirus.

Click link on the file type displayed at the right end. The 'Manage Extensions' dialog will open with a list of archive file types that are decompressed and scanned by real-time scanner.

To add a new archive file type, click 'Add' at the top

Enter the extension type you wish to scan and click 'OK'. Example extensions include .zip , .rar, .msi, .7z , .jar and .cab

Repeat the process to add more extensions

Click 'OK' in the 'Manage Extensions' dialog

To remove an archive file type, choose the file type from the list, click 'Remove' from the top and click 'OK' in the 'Manage Extensions' dialog.

Set new on-screen alert timeout to – Specify the length of time that virus alerts should stay on the screen. (Default = 120 seconds)

Set new maximum file size limit to – Specify the largest file size that the antivirus should scan. CIS will not scan files bigger than the size specified here. (Default = 40 MB)

Set new maximum script size limit to – Specify the largest script size that the antivirus should scan. CIS will not scan scripts bigger than the size specified here. (Default = 4 MB)

Use heuristics scanning - Enable or disable heuristic scans, and define the sensitivity of the scanner. (Default = Enabled)

Background. Heuristics is a technology that analyzes a file to see if it contains code typical of a virus. It is about detecting 'virus-like' attributes rather than looking for a signature which exactly matches a signature on the blacklist. This allows CIS to detect brand new viruses even that are not in the current virus database.

If enabled, please select a sensitivity level. The sensitivity level determines how likely it is that heuristics will decide a file is malware:

Low - Least likely to decide that an unknown file is malware. Generates the fewest alerts.

Despite the name, this setting combines a very high level of protection with a low rate of false positives. Comodo recommends this setting for most users. (Default)

Medium - Detects unknown threats with greater sensitivity than the low setting, but with a corresponding rise in possible false positives.

High - Highest sensitivity to detecting unknown threats. This also raises the possibility of more alerts and false positives.

Enable Realtime Scanning of files on network - Activate or deactivate on-access scans of network files. If enabled, any files you interact with on a network drive will be checked by the virus scanner, even if you do not copy them to your local machine. (Default=Disabled)

Comodo Internet Security

Version 12.2

English

Real-time Scan Settings