Comodo AV/S Beta 2.0.0.1 launched

Discussion in 'other anti-virus software' started by Coolio10, Nov 2, 2006.

Thread Status:
Not open for further replies.
  1. Coolio10

    Coolio10 Registered Member

    Joined:
    Sep 1, 2006
    Posts:
    1,124
    Hi im just announcing the release and so far many people have had problems but as it is a BETA theres an exception :thumb: .

    Some people can try it and annoucne their problems with it here so i can tell the developers on the comodo forum. I hope CAV can grow to be greatest free AV in time.
     
  2. kdm31091

    kdm31091 Registered Member

    Joined:
    Jul 18, 2006
    Posts:
    365
    Is detection more acceptable now? Is it going to always be free? I'm tempted to use it, and keep Antivir for ondemand.
     
  3. btman

    btman Registered Member

    Joined:
    Feb 11, 2006
    Posts:
    576
    I'm tempted too because I love their firewall... and their support is great... but I shall wait until I see some tests.
     
  4. DaveD

    DaveD Guest

    "Comodo AntiVirus 1.1 beta, all subsequent beta versions and the final release version will each be available free to both home and business users"

    What AV engine is Comodo AV based on anyways? Or is it their own?

    I haven't followed development of Comodo AV at all at this point, so I know nothing of it yet.
     
  5. gevin

    gevin Registered Member

    Joined:
    Oct 4, 2006
    Posts:
    71
    Comodo FW free make them famous, if the AV have the same good standard & remain free, that for sure a rocket ride for the company, up up and the way! This will sure boost the "free" marketing sect. other free security ware company better work harder, or you will be like ZA.
     
  6. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,047
    Location:
    Saudi Arabia/ Pakistan
    I wonder if anyone using it. Want to see some screenshots atleast.
     
  7. Stefan Kurtzhals

    Stefan Kurtzhals AV Expert

    Joined:
    Sep 30, 2003
    Posts:
    701
    I doubt seriously that the other vendors with free antivirus programs will care at all. :rolleyes:
     
  8. EraserHW

    EraserHW Malware Expert

    Joined:
    Oct 19, 2005
    Posts:
    588
    Location:
    Italy
    quoting from:

    http://forums.comodo.com/index.php/topic,3688.msg27641.html#msg27641

    Of course HIPS is a strong point and we've seen lot of av industries are implementing something like it. But I would say that the quoted exclamation is a bit risky. HIPS != 100% no malware. We see lot of HIPS softwares around us, but depends a lot on how HIPS is developed.

    It's wrong say: HIPS = 100% safe,

    it could be better say HIPS = another way to be MORE secure (more but not absolutely, we've seen malware and rootkit that could infect bypassing HIPS software. In fact, HIPS software can be bypassed as every other antivirus software, if not well developed and continuously updated).
     
  9. Don Pelotas

    Don Pelotas Registered Member

    Joined:
    Jun 29, 2004
    Posts:
    2,257
    Why on earth would you even consider that? o_O

    The detection is not even close to AntiVir and most likely will not be for a year or two and thats if they actually will commit the resources (manpower) it will take to bring it up to the standard of effective AV's in the market.
     
  10. CJsDad

    CJsDad Registered Member

    Joined:
    Jan 22, 2006
    Posts:
    618

    Are you some kind of spokesperson for Comodo?
    If someone had a problem with CAV, thats IF they decide to use the AV, dont you think they could also go to the Comodo forum and tell the developers about their problem?
     
  11. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,047
    Location:
    Saudi Arabia/ Pakistan
    There "spokesmen"/ fans for many products here so why not for comodo( don,t think me one BTW :) ).
     
  12. Stefan Kurtzhals

    Stefan Kurtzhals AV Expert

    Joined:
    Sep 30, 2003
    Posts:
    701
    Calling the reporting of every single program that gets executed "HIPS" is a (bad) joke IMHO. It's plain and simple execution control, nothing else. HIPS normally contains some logic to detect the actuall intrusion attempt. I wonder which normal user will use this kind of "HIPS" for longer than 10 minutes before (s)he turns off the annoying alerts completely. It does stop malware, yes, but it also stops the user from using her/his system. It might be ok for corporate environments, but not for end user.

    And the funny part is - the Comodo guys seem even especially proud about this genius "HIPS" idea of theirs - as if they invented the wheel or something like this. Such simple execution control is known for more than 20 years. :rolleyes:
     
  13. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,047
    Location:
    Saudi Arabia/ Pakistan
    I agree this is not for normal users. They just can,t tolerate this thing.
    If u ned something like this why not to use a classical HIPs. There are many good choices around, even free.
     
  14. Inspector Clouseau

    Inspector Clouseau AV Expert

    Joined:
    Apr 2, 2006
    Posts:
    1,329
    Location:
    Maidenhead, UK
    Exactly my words since july, 1972...
     
  15. hurzelpurzel

    hurzelpurzel Registered Member

    Joined:
    Nov 3, 2006
    Posts:
    14
    100% malware prevention is a bold claim. If it wasn't against my ethics, I would show them it is not possible to have a 100% now - if ever.

    Let me think whether I am going to use this product ... hmm, nope. It has the only driver except the following Microsofts on a free build system which calls DbgBreakPoint().

    .\acpi.sys: DbgBreakPoint
    .\afd.sys: DbgBreakPoint
    .\arp1394.sys: DbgBreakPoint
    .\atmepvc.sys: DbgBreakPoint
    .\atmlane.sys: DbgBreakPoint
    .\fdc.sys: DbgBreakPoint
    .\fltmgr.sys: DbgBreakPoint
    .\i8042prt.sys: DbgBreakPointWithStatus
    .\ipfltdrv.sys: DbgBreakPoint
    .\irenum.sys: DbgBreakPoint
    .\kbdhid.sys: DbgBreakPointWithStatus
    .\modem.sys: DbgBreakPoint
    .\mrxdav.sys: DbgBreakPoint
    .\mrxsmb.sys: DbgBreakPoint
    .\ndiswan.sys: DbgBreakPoint
    .\netbt.sys: DbgBreakPoint
    .\npfs.sys: DbgBreakPoint
    .\ntfs.sys: DbgBreakPoint
    .\nvtcp.sys: DbgBreakPoint
    .\nwlnkipx.sys: DbgBreakPoint
    .\nwlnknb.sys: DbgBreakPoint
    .\nwrdr.sys: DbgBreakPoint
    .\parport.sys: DbgBreakPoint
    .\rdbss.sys: RxDbgBreakPoint
    .\rdbss.sys: DbgBreakPoint
    .\rdpdr.sys: DbgBreakPoint
    .\rootmdm.sys: DbgBreakPoint
    .\scsiport.sys: DbgBreakPoint
    .\serial.sys: DbgBreakPoint
    .\sr.sys: DbgBreakPoint
    .\srv.sys: DbgBreakPoint
    .\stream.sys: DbgBreakPoint
    .\tcpip.sys: DbgBreakPoint
    .\tcpip6.sys: DbgBreakPoint
    .\tdi.sys: DbgBreakPoint
    .\termdd.sys: DbgBreakPoint
    .\usbport.sys: DbgBreakPoint

    Curious what it does? Here's what the DDK says about DbgBreakPoint():

    If you don't know what a "bug check" is, maybe you know it by the name bluescreen or BSOD ...
    Now, who doesn't like this bright blue color on the screen, sprinkled with interesting white characters delivering an obscure message ...:D

    And nope, this does not even belong into a beta driver, in my opinion.

    ... so maybe I'll reconsider it for a later product version ...
     
  16. Chubb

    Chubb Registered Member

    Joined:
    Aug 9, 2005
    Posts:
    1,967
    The previous ViruScape end up with selling the version 2 code to another company. Just curious if it is Comodo and also curious if version 2 ever exist.

    I fully agree with Don and Inspector Mike (said in another thread) that it would take quite some years to build up a proper antivirus software.

    If I could remember, there is an antivirus software many years ago called Invircible, between 1995-1999 something from Australia. It said it don't need virus signature update. I don't remember the technique used by Invircible, and I am not sure if it is using the similar technique as the execution control method. Anyone remember?
     
  17. EraserHW

    EraserHW Malware Expert

    Joined:
    Oct 19, 2005
    Posts:
    588
    Location:
    Italy
    Invircible (isn't from Israel?) is almost a first attempt of "behavior blocker" joined to some generic "heuristic" rules (suspicious flags on PE code), it is equiparable to ViGuard from Tegam.
     
  18. rdsu

    rdsu Registered Member

    Joined:
    Jun 28, 2003
    Posts:
    4,456
    That is what I said to the Comodo CEO, yesterday...

    http://forums.comodo.com/index.php/topic,3670.0.html
     
  19. EraserHW

    EraserHW Malware Expert

    Joined:
    Oct 19, 2005
    Posts:
    588
    Location:
    Italy
    and, however, what is described from Comodo CEO:

    http://forums.comodo.com/index.php/topic,3670.msg27504.html#msg27504

    It's a "first step" of a well known technology already used by another company ;)
     
  20. solarpowered candle

    solarpowered candle Registered Member

    Joined:
    Jan 9, 2003
    Posts:
    1,181
    Location:
    new zealand

    they are still up and running . http://www.defence.net.nz/index.html
     
  21. Chubb

    Chubb Registered Member

    Joined:
    Aug 9, 2005
    Posts:
    1,967
  22. Coolio10

    Coolio10 Registered Member

    Joined:
    Sep 1, 2006
    Posts:
    1,124
    Obviously not as this is only the second release of CAV and its not even out of beta yet. (Someone already mentioned this)

    Ofcourse

    This wasnt a question but if your tempted you can try it and give oppinion
     
  23. Stefan Kurtzhals

    Stefan Kurtzhals AV Expert

    Joined:
    Sep 30, 2003
    Posts:
    701
    What, Zvi Netiv is still around? :eek:
     
  24. the Tester

    the Tester Registered Member

    Joined:
    Jul 28, 2002
    Posts:
    2,854
    Location:
    The Gateway to the Blue Hills,WI.
    If I'm not mistaken, the av was called Trustix before.
     
  25. EraserHW

    EraserHW Malware Expert

    Joined:
    Oct 19, 2005
    Posts:
    588
    Location:
    Italy
    :D So seems :D Well, promising that all new malware is catched without updates is an effective boost :rolleyes: :D
     
Loading...
Thread Status:
Not open for further replies.