App Review Comodo Cloud AV - Autosandbox only - petya bypassed

It is advised to take all reviews with a grain of salt. In extreme cases some reviews use dramatization for entertainment purposes.
cruelsister

cruelsister

Level 42
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 13, 2013
3,147
The one important thing is not to paint all Comodo products with the same brush as they are different. Symbolic Logic shows that an argument is invalid if it goes from a specific to a general. In the case of Comodo:

1). Comodo creates software
2). Comodo created CCAV, which sucks
3) therefore ALL Comodo products suck.

This would be similar to:

1), Meghan is a girl
2). Meghan has green eyes
3. therefore ALL girls have green eyes.
 
  • Like
Reactions: photontorpedos, AtlBo, Deleted member 2913 and 3 others
Ink

Ink

Administrator
Verified
Staff Member
Well-known
Jan 8, 2011
22,361
erreale said:
I agree with you. They hardly admit a bypass. I do not remember if they have ever done ...
Click to expand...
For the average PC user can they claim the $500 guarantee?

Comodo's Exclusive $500 Virus-Free Guarantee
If your PC gets infected by a virus after Comodo Internet Security Pro 10 is properly installed and registered, our online GeekBuddy support technicians will restore your PC to working condition. If we cannot restore your
PC due to a virus infection, Comodo will cover up to $500 in repair costs, using an authorized repair center.
 
  • Like
Reactions: SHvFl, AtlBo and Deleted member 2913
5

509322

Spawn said:
For the average PC user can they claim the $500 guarantee?

Comodo's Exclusive $500 Virus-Free Guarantee
If your PC gets infected by a virus after Comodo Internet Security Pro 10 is properly installed and registered, our online GeekBuddy support technicians will restore your PC to working condition. If we cannot restore your
PC due to a virus infection, Comodo will cover up to $500 in repair costs, using an authorized repair center.
Click to expand...

User: "My PC is infected. Remove the malware or give me my $500 !"

GeekBuddy tech: "Clean install the OS."

User: "What do you mean ?"

GeekBuddy tech: "Clean install the OS and no more infection."

User: "No, I want malware removal or my $500 !"

GeekBuddy tech: "Clean installing the OS is malware removal."
 
  • Like
Reactions: Wave, Rodney74, SHvFl and 7 others
K

KGBagent47

Evjl's Rain said:
it's a VM with windows 7. I only use SD for my windows 10 host machine
My host machine uses GPT-UEFI drive so petya might not be able to do anything because petya only works on MBR-BIOS drive
Click to expand...
I did not know that about UEFI, that's really good to hear. (maybe something to do with secure boot?)

Also this might be why some of the leading AVs aren't blocking MBR ransomware behavior without signatures. Bad for Windows Seven users, but I believe UEFI has been the standard for a few years now.

Unrelated Side Note: If you're not familiar with UEFI settings, good luck figuring out how to boot from a CD/Thumb Drive with it.
 
  • Like
Reactions: SHvFl, AtlBo, Deleted member 2913 and 1 other person
shmu26

shmu26

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
KGBagent47 said:
I did not know that about UEFI, that's really good to hear. (maybe something to do with secure boot?)

Also this might be why some of the leading AVs aren't blocking MBR ransomware behavior without signatures. Bad for Windows Seven users, but I believe UEFI has been the standard for a few years now.

Unrelated Side Note: If you're not familiar with UEFI settings, good luck figuring out how to boot from a CD/Thumb Drive with it.
Click to expand...
it's the GPT that stops petya. If you have GPT, that means you don't have MBR, which is what petya messes with.
 
  • Like
Reactions: SHvFl, AtlBo and Deleted member 2913
D

Deleted member 2913

Evjl's Rain said:
not high CPU but persistently low CPU usage (0.1-2.5% in idle and never drops to 0%) :)
Click to expand...
Did you faced slow down?

I tried latest CCAV on my Win 10 64 with 6GB RAM.
It slows down everything i.e not heavy slow down But noticeable slow down with everything system boot, programs starting, programs installing, etc...
 
  • Like
Reactions: SHvFl, AtlBo and shmu26
E

Evjl's Rain

Level 47
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Apr 18, 2016
3,684
Yash Khan said:
Did you faced slow down?

I tried latest CCAV on my Windows 10 64 with 6GB RAM.
It slows down everything i.e not heavy slow down But noticeable slow down with everything system boot, programs starting, programs installing, etc...
Click to expand...
I dudn't play it with long enough but I could notice some slight slowdown too, not significant
boot time was increased noticeably
 
  • Like
Reactions: SHvFl, AtlBo, Deleted member 2913 and 1 other person
E

Evjl's Rain

Level 47
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Apr 18, 2016
3,684
KGBagent47 said:
I did not know that about UEFI, that's really good to hear. (maybe something to do with secure boot?)

Also this might be why some of the leading AVs aren't blocking MBR ransomware behavior without signatures. Bad for Windows Seven users, but I believe UEFI has been the standard for a few years now.

Unrelated Side Note: If you're not familiar with UEFI settings, good luck figuring out how to boot from a CD/Thumb Drive with it.
Click to expand...
I'm OK with actually it's very easy to boot a USB from it, just temporarily switch to Legacy and boot
 
  • Like
Reactions: SHvFl, AtlBo, Deleted member 2913 and 1 other person
AtlBo

AtlBo

Level 28
Verified
Top Poster
Content Creator
Well-known
Dec 29, 2014
1,711
Evjl's Rain said:
not high CPU but persistently low CPU usage (0.1-2.5% in idle and never drops to 0%) :)
Click to expand...

Comodo's products do seem to differ. Was using Dragon, but issues connecting to sites began to occur. I don't lay the fault at Comodo for this, but when I installed GC, I realized a serious improvement on the PC performance-wise. It's a decent i5 2400 PC, which benches very well for a standard business class computer, so differences can be difficult to discern. That was not the case this time. Maybe it was Comodo's default extensions or others, but disabling them didn't seem account for any of the difference in PC performance.

Dragon seems in retrospect a little bit like a slightly mis-timed automobile, at least in comparison to Chrome. Is Comodo's build for Blink/Chrome based any indication of across the board struggles within the company with regards to efficiency of design? I think maybe to be honest.

Comodo would benefit by paying a high priced developer with experience in gaming optimization. CF is fine, but it's possible to detect when a program can be more efficiently streamlined. In the rush to create products, the company seems to me to have left holes in some of their programs in this regard, especially. Best optimized apps I have experienced from Comodo...Comodo Programs Manager and Comodo Cleaning Essentials. Neither are full-time run-time.
 
  • Like
Reactions: SHvFl, shmu26, Evjl's Rain and 1 other person
Fel Grossi

Fel Grossi

Level 13
Verified
Top Poster
Well-known
Jan 17, 2014
620
COMODO engineer replied in the forum about this bypass.
Comodo Cloud Antivirus 1.8.407387.418 Hotfix Version is Released! - News / Announcements / Feedback - CCAV

Yesterday
Hi Yash Khan,
Thanks for bringing attention, team is checking. We will get back soon.

Thanks
-umesh
Click to expand...

Today
H All,
This has been identified and under QA.

We will have a release by this week-end and it will have this fix also.

This bug got into CCAV in v403 released on Dec 21, 2016 else all previous versions protected against Petya.

Thanks
-umesh
Click to expand...
 
  • Like
Reactions: AtlBo, Deleted member 2913, shmu26 and 2 others
R

Rodney74

cruelsister said:
The one important thing is not to paint all Comodo products with the same brush as they are different. Symbolic Logic shows that an argument is invalid if it goes from a specific to a general. In the case of Comodo:

1). Comodo creates software
2). Comodo created CCAV, which sucks
3) therefore ALL Comodo products suck.

This would be similar to:

1), Meghan is a girl
2). Meghan has green eyes
3. therefore ALL girls have green eyes.
Click to expand...


LOL... Life is easier if you have a sense of humor. I see you have that covered.
 
  • Like
Reactions: AtlBo and Deleted member 2913
R

Rodney74

Lockdown said:
User: "My PC is infected. Remove the malware or give me my $500 !"

GeekBuddy tech: "Clean install the OS."

User: "What do you mean ?"

GeekBuddy tech: "Clean install the OS and no more infection."

User: "No, I want malware removal or my $500 !"

GeekBuddy tech: "Clean installing the OS is malware removal."
Click to expand...

LOL reminds me of the vet who said what are you complaining about. Just get a new dog.
 
  • Like
Reactions: AtlBo, Deleted member 2913 and shmu26

Similar threads

Ink
    • Wow
    • Like
Cloudflare DDoS protections bypassed using Cloudflare flaw [PoC]
Replies
4
Views
1,327
News Archive
Numeriku
Numeriku
BigWrench
    • Like
    • +Reputation
On Sale! ESET Internet Security 2024 - 2 Devices / 1 Year - Download $16 off w/ promo code 2BFCY7374, limited offer $19.99
Replies
3
Views
865
Discounts and Deals
BigWrench
BigWrench
BigWrench
    • Like
On Sale! ESET Internet Security 2024 - 3 Devices / 1 Year - Download $24.99 (with promo code: SWCP46)
Replies
0
Views
360
Discounts and Deals
BigWrench
BigWrench

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top