CIS 6.2.xxxx Releases!

Discussion in 'other anti-virus software' started by spywar, Jun 19, 2013.

Thread Status:
Not open for further replies.
  1. siketa

    siketa Registered Member

    Joined:
    Oct 25, 2012
    Posts:
    2,718
    Location:
    Gaia
    Re: CIS 6.2.282872.2847 Released!

    lord should drink a cup of coffee....:D
     
  2. guest

    guest Guest

    Re: CIS 6.2.282872.2847 Released!

    I doubt it, the people don't send this files because of VT, they send this files because they are testing malware and some of them mysteriously are in the whitelist. Something that only does (testing malware on CIS) the 0.05% of the CIS users and I think I'm being optimistic.

    Yes every week, you are just 1 person between 60M. You have only experience this once... that you know. A malware infection would be totally transparent to CIS if it's in the whitelist.

    I don't want to follow this topic here, I'm doing this in the thread that I pointed out before, so please if you don't mind post there, we can be even lucky and get an answer from the dev team. Although this topic has been raise many times and Comodo has never answer to it...

    paranoiac mode on // maybe they whitelist malware for NSA :D
     
    Last edited by a moderator: Jul 11, 2013
  3. guest

    guest Guest

    Re: CIS 6.2.282872.2847 Released!

    there is something interesting in comodo.
    2 days and no update.
     

    Attached Files:

    • 2.png
      2.png
      File size:
      251.2 KB
      Views:
      557
  4. spywar

    spywar Registered Member

    Joined:
    Oct 23, 2012
    Posts:
    583
    Location:
    Paris
    Re: CIS 6.2.282872.2847 Released!

    We know this.
     
  5. avman1995

    avman1995 Registered Member

    Joined:
    Sep 24, 2012
    Posts:
    944
    Location:
    india
    Re: CIS 6.2.282872.2847 Released!

    My respectful opinon here: Some statements you made are a load of trash and bare no relation to real life scenario...Where is your proof of your accusations :rolleyes:

    Who said those URL's are indexed by some malware distribution employees,If that is so then every AV company will have top detection then because even the areas from where spywar and others make their packs will also be sold and AV companies will have their eyes on them,uhm!! these url's come from honeypots that trick attackers.

    Youtube tests and everything else is just a glimpse of what a security product can do,you or any other user in my experience,will never directly come into contact with a bunch of 0-day malware via some USB or anywhere and if you do they will be mostly sality,virut via USB's

    The point is there will never be something 100%.With over a dozen and gazillions of malware coming out everyday its impossible to classify them with different detections.Malware varients like darkcomet,dorkbot have different varients everyday but unlike the polymorphic ones eg:Zeroaccess>>not sure on this,JS:Autorun worms even they are hard to detect.Of course,Dorkbot is not polymorphic but its easy to detect the spreading of this type of malware via USB that isnt like the polymorphic ones or any other generic malware via USB.Unlike today earlier even autorun was not that hugely polymorphic but its right now that way.Plus,a good news,there arent too many varients of malware that come from the internet that spread via USB;s apart from a few that use LNK vulnerability.

    Malware whether its nasty or sober it will always find ways to bypass security software,even HIPS/BB can be bypassed,do a google search,even mighty uncle google knows how to bypass those.Its a tactic called: userland injections.Most youtube tests or any home grown written paper work on a AV test in my opinion are completely pointless from 1 sight because there is no proof these tests are done validly or not and plus the testing flaws of not following a generic pattern.,and plus if some piece of malware is sitting on the disk or registered itself somewhere into the registry and does nothing at all it doesnt qualify as bypassed for me and then there are a variety of rootkits including Gapz,Zeroacces which are widespread and which posses the capabilities of getting past any product if they are combined with special characteristics.

    Also I know a bunch of AV;s out there,who block access to C&C or the botnet herder when the user gets infected and and the infection tries to steal data,helps the user to keep the private information safe which counts,if you gonna disable the AV after you got infected then you are doing a greatest mistake.Its not important if its something that just connects to the bot herder and just waits for commands and does nothing,what is important is to see if the malware you contracted is wide-spread or not,if it is,then your AV should keep your data safe even if you are infected,provided if the malware disabled your AV and then only your luck and knowledge saves you.

    In real world,you will always find most malware from the internet and believe if you get a load of viruses from USB then they are probably the well detected ones that most AV's detect.

    In my opinion,when AV+backend with or in combination with BB+HIPS it can fully help you to prevent malware.

    Btw,if some there are AV companies out there that concentrate on What you so call "0-day" then why are there pieces of malware going undetected for years irrespective of their kind.Makes me think about stuxnet,flame etc.Because even flame/stuxnet are able to get past BB/HIPS and that's the reason they were in existance and were un-seen by AV industry.Now dont tell me these were targeted attacks,there were evidences of samples being this malware being present with almost most well known AV's but it went undetected from their systems for years.But of course COMODO will protect us! :rolleyes:

    Besides,what is 0-day prevention that you call from your prespective:
    what's the difference between detection and prevention?? only when there is a detection of a intrusion/piece of malware you can defend it.

    btw,if there are AV companies preventing 100% of every "0-day" malware then it will go without saying here :rolleyes: Ask guys who run honeypots they see a array of FUD Malware everyday.
     
    Last edited: Jul 11, 2013
  6. Solarlynx

    Solarlynx Registered Member

    Joined:
    Jun 25, 2011
    Posts:
    2,015
    Re: CIS 6.2.282872.2847 Released!

    Thanks. BTW I still cannot understand how is this vendor signature cannot be forged? It mustn't be as easy as changing the filename and must be somehow connected with cryptography/hashes. How knows how?

    As for updates: I've got mine.
     

    Attached Files:

  7. siketa

    siketa Registered Member

    Joined:
    Oct 25, 2012
    Posts:
    2,718
    Location:
    Gaia
    Re: CIS 6.2.282872.2847 Released!

    What DB version do you have?
     
  8. guest

    guest Guest

  9. ellison64

    ellison64 Registered Member

    Joined:
    Oct 5, 2003
    Posts:
    2,587
  10. RejZoR

    RejZoR Lurker

    Joined:
    May 31, 2004
    Posts:
    6,426
    Re: CIS 6.2.282872.2847 Released!

    It's always like that at Comodo's palace... Every comment or every complaint is taken like you're the worst aggressor, unless you're one of the Comodo pet users. And they constantly bother with the most silly and pointless things instead of getting botehred with stuff that matters. It doesn't matter what you have complained over, they only care that you complained about something and that apparently annoys them even though the sole purpose of you commenting or complaining there is to get that thing sorted out and fixed. Instead, they take it as an insult. They sometimes make no sense at all as a community...
     
  11. Narxis

    Narxis Registered Member

    Joined:
    Jun 10, 2009
    Posts:
    477
    Re: CIS 6.2.282872.2847 Released!

    Totally agree!:thumb:
     
  12. ellison64

    ellison64 Registered Member

    Joined:
    Oct 5, 2003
    Posts:
    2,587
    Re: CIS 6.2.282872.2847 Released!

    Hmm..How exactly does the rating scan work?Ive just noticed that if i run it a few times after one another or shutting down and reopening the suite its giving different numbers of trusted files scanned ,and also finding different untrusted file numbers.I would have expected the ratings scan trusted/untrustred file number to have remained the same if nothing new has been installed or updated?.
     
  13. RejZoR

    RejZoR Lurker

    Joined:
    May 31, 2004
    Posts:
    6,426
    Re: CIS 6.2.282872.2847 Released!

    Depends on how numbers are changing. In theory, when you run the Rating scan, CIS will automatically add safe files to TVL, something otherwise happens when you actually run/open that specific file.

    So, if the numbers were decreasing, that's normal. If they weren't only going into that direction, then it's not exactly logical...
     
  14. siketa

    siketa Registered Member

    Joined:
    Oct 25, 2012
    Posts:
    2,718
    Location:
    Gaia
    Re: CIS 6.2.282872.2847 Released!

    COMODO Internet Security 6.2.285401.2860

    Changelog:
    FIXED! "Do not show this message again" does not work while updater is running
    IMPROVED! HIPS menu item in system tray icon menu (advanced view mode only)

    -http://download.comodo.com/cis/download/installs/2000/standalone/cispremium_installer.exe
     
  15. spywar

    spywar Registered Member

    Joined:
    Oct 23, 2012
    Posts:
    583
    Location:
    Paris
    Re: CIS 6.2.282872.2847 Released!

    Already updated 2 hours ago.
     
  16. a256886572008

    a256886572008 Registered Member

    Joined:
    Oct 26, 2007
    Posts:
    103
    Re: CIS 6.2.282872.2847 Released!

    three
     

    Attached Files:

  17. Solarlynx

    Solarlynx Registered Member

    Joined:
    Jun 25, 2011
    Posts:
    2,015
    Re: CIS 6.2.282872.2847 Released!

    GUI seems to be more functional.
     
  18. siketa

    siketa Registered Member

    Joined:
    Oct 25, 2012
    Posts:
    2,718
    Location:
    Gaia
    Re: CIS 6.2.282872.2847 Released!

    Let's hope Rejzor's gonna like this version...:D
     
  19. guest

    guest Guest

    Re: CIS 6.2.282872.2847 Released!

    Rejzor write about new verson on CIS forums;

     
  20. RejZoR

    RejZoR Lurker

    Joined:
    May 31, 2004
    Posts:
    6,426
    Re: CIS 6.2.282872.2847 Released!

    Yeah, it works like i wanted it, though their implementation is a bit weird. Whitelisted safe apps don't spawn privilege elevation popups at all, so why make it as a separate option for unknown programs if privilege elevation would only popup for unknown programs anyway?

    I've tested it with Burnaware and it installed without problems where my own tool which still wasn't whitelisted got sandboxed directly without any privilege elevation popups (but i know it requires them otherwise). So, bottom line, strange implementation or not, it works.

    Now i can finally install it on a sisters laptop knowing she won't click "Run unlimited" by mistake on something i don't want it to be run unlimited. I still need visible D+ notifications so she asks me what to do when they appear, so i can check the sandboxed files...
     
  21. guest

    guest Guest

    Re: CIS 6.2.282872.2847 Released!

    finally they can accept and solve problem, this is your success. congratulations :)
     
  22. RejZoR

    RejZoR Lurker

    Joined:
    May 31, 2004
    Posts:
    6,426
    Re: CIS 6.2.282872.2847 Released!

    I just wish they'd grown past all the "you are negative" and being so defensive whenever anyone complains over something. People complain over things to get them improved, not to bash the developer for no reason. If they wanted to do that, they'd do it everywhere else but on Comodo forums...
     
  23. NSG001

    NSG001 Registered Member

    Joined:
    Jul 14, 2006
    Posts:
    682
    Location:
    Wembley, London
    Re: CIS 6.2.282872.2847 Released!

    The year is over half way now must be time for CIS 7 beta soon :doubt:
    Will Val Kyrie make it :blink:
     
  24. qakbot

    qakbot Registered Member

    Joined:
    Aug 25, 2010
    Posts:
    380
    Re: CIS 6.2.282872.2847 Released!


    Well said. Finally someone who understands the real deal. :thumb: :thumb: :thumb: :thumb:
     
  25. qakbot

    qakbot Registered Member

    Joined:
    Aug 25, 2010
    Posts:
    380
    Re: CIS 6.2.282872.2847 Released!

    These 'guys' test for FUD by running a check on VirusTotal, which is about as braindead as it gets. VT tells you very little about whether the actual product would detect the malware. Remember that VT doesn't run the malware, it doesn't even have the most up-to-date scanner technologies. No vendor gives VT their latest and greatest stuff.
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.