Nice protection
Does not allow anything new. And it has the same behavior for all new files?
Yes, I think. But what if you wanted to install something new? 88)
It flags all the .exe files? ???
Jeremy, have you asked Rudra to join here ? Perhaps they can shed a light on this ?
Xan
I though I added that to one of my emails, but maybe I forgot. I’ll try to remember next time.
He says that it messes up Rudra to be in a VM. ???
One more thing: The latest email said that my version of Rudra only worked in XP (but on the website it said that Rudra works with XP, Vista, and Win7). But I just have Vista, so I ran the installer in XP compatibility mode because it said “OS not supported”. Everything seemed to work, but that may have messed up the results.
;D this antivirus is really sounding cool, Apart from that no updates and other worries. i will definitely try it out now, Also the name of antivirus is choosen carefully, Rudra (The destroyer of evil) actually thats also one of the name of lord shiva (God of destruction in hinduism concept of trinity) 8)
I’m not testing it right now, because I had to get a new key to install in a XP machine. But, according to my correspondent, the activation servers were down, though they should be up later today.
I`m calling from Rudra antivirus provider to offer antivirus providings service which is 6 times fasterings than your current antivrus providings.
Reminds me of this for some reason:- - YouTube
^^ ^^ 
This video has been removed because it is too long. Regular YouTube videos must be 10 minutes or less.
Cough
New video on XP.
Good video, Rudra looks a bit basic though, seems like it just flags everything.
Can anyone tell me how this is different from other antivirus products? From their website it looks like some risky and unreliable static binary analysis.
According to my emails and observances, it seems to alert you to new files that are executed. They claim that Rudra can “tell” if something is malware by its origin…I’m not sure about it yet.
Rudra patent pending technology is unique
Patents suck, so that doesn’t make Rudra any better.
and does not use any signature database and requires no periodic updates. It offers comprehensive protection against future, new variants providing a total and complete protection from malware.
OK…
So how does Rudra Protect?To make your system invulnerable, Rudra does not restrict itself to recognizing known viruses (like signature and heuristic technology). It simply focuses on making sure that the malware cannot run on your system in order to cause any damage by:
* Enhancing system security and integrity by preventing execution of known and unknown malware</blockquote>This is just begging the question (highlighted). How is it preventing execution of known and unknown malware?
* Shielding the RAM memory of the PCInteresting but meaningless (especially with “Random Access Memory memory”). How is it “shielding” it?
* Rudra differentiates between legitimate applications and malware. It is designed to capture the malware as soon as it enters the PC before it can installHOW? This is exactly the same point as “preventing execution of known and unknown malware”.
* Rudra does not wait till it starts executing. It simply secures the malware either by immediately deleting it, or cordoning it off to a ‘safe’ area on the PC’s hard diskHOW?
I hope Rudra people don’t respond with “it’s patent pending so I can’t tell you how”.
From the FAQ:
... Realizing that this technology is insufficient in a wired world, a new technology based on behavior or heuristic logic was created some years ago.Anti Virus based on heuristic logic carry only a probability of success and many of the recent viruses could not be detected by the heuristic logic.
RUDRA Technology ignores both virus signatures as well as heuristics yet identifies and removes the malware. RUDRA removes viruses by monitoring your local computer.
From the lack of information on their website I would have to conclude that the whole thing is BS. They are not giving us any information on this “new patent pending technology”. Rudra could be:
- Traditional signature-based antivirus. This is slow and does not prevent 0-day attacks. However it guarantees user satisfaction because they have a false sense of security from assurances from the software that they are “safe”.
- Static binary analysis. This is what CIS does with the “possible malware” warning when executing a file. This does not work well because executables can be packed for both legitimate and malicious purposes, producing both false positives and negatives.
- Traditional HIPS. CIS D+, etc. Low user satisfaction because of too many prompts, but very accurate because of user input.
- Dynamic/live/runtime binary analysis. PrevX does this but it produces many false positives including my own Process Hacker getting labeled as malware.
Rudra seems most like dynamic binary analysis, but they claim it can detect viruses before execution. So it must be static binary analysis.
wj32: I am just as confused as to how Rudra works as you. You do have a good analysis of what it could be. I would like to hear from the developers explaining just how it works. Since it’s “patent pending”, no one can legally do what they do. However, if it is like what you siad in what CIS does, then Comodo can challenge the patent. Maybe this is why they haven’t clearly said what it is, so no one challenges their patent and they can get the patent and sue people like Comodo and drag them through lengthy court battles.
If they sue COMODO (sorry for the uppercase but it’s just how the company spells it) then they can simply prove prior art. However Rudra doesn’t claim to be HIPS software, and in fact they say it isn’t. Who knows what it is…
I’ve seen the videos LaserWraith created and the only thing I saw rudra do is block the executable files.
There was this one time ~[ - YouTube ] ( at 5:23 )~ Rudra couldn’t block a malware and it said " Your computer seems to be already compromised by virus, Please clean your computer and re-start rudra"…
I think this speaks volumes!
hmmmmmm. Lot of conversation on this junk yard filler. I have tried this piece of junk and realised not to go by what we see on their web sites. Unfortunately it was too late in my case where I recomended it to my company’s IT dept. Half the fault lies with the IT dept which did not test the s/w throughly before placing order. Initially everything looked great. It caught different types of malware as they showed during the demo. Little did we realize that this is going to stop us from installing drivers, software that we use regularly. In one case we were not even able to install the antivirus in a system - it was throwing up a run time error. Hope u know when a runtime system message shows up - poor coding & improper exception handling.
Close to 2 months into running with this antivirus, scenarios arose where we had to install a driver, software or perform an upgrade, do windows update, etc. 80% of those activities were blocked and identified as Malware by this antivirus. The later versions they gave as update did not run in Win 2k systems. The company did not support the case and asked us to upgrade to XP. I think they had a tie up with MS. There are no versions for servers so you will have to look up to other antivirus vendors for a server product. The one thing that attracted us to this product was no updates and lifetime validity. But the lifetime of the product was very short. After having multiple problems and no proper action from the company’s side we gave up on them. The only thing good about the company was the courtesy of the people who attended to our calls and issues (atleast most of the times).
From what our IT dept has found out it seems to be working on some heuristics. But a little different from the common heuristic technology we know. The product matches the actions(behaviour) of processes to predefined built in scenarios. Based on that a response is triggered. Unfortunately their smartness landed them on the wrong side due to improper research - I should say. It has unusually high % of false positives.
It is like putting yourself behind bars for your protection.
Recently when we tried to reach them they are no more. There is no where their customers can get help with this very unfriendly product. In their web site they only have the Singapore address. I wonder if they are still running there. In simple terms it looks like a scam. I do not know how big their customer base is, but surely there will be people like us who realized its true nature late. If any one of you want to try this product first go with the trial version. Do extensive test and then decide.