|
|
|||||||
|
|
Thread Tools | Search this Thread |
|
#1
November 6th, 2011, 04:40 AM
|
||||
|
||||
Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
As many are wondering about Comodo's total an heuristic detection rate, we, at FaraVirusi.com IT security blog decided to perform a complex test on 21.390 malwares.
* The results:
For the heuristic detection rate, we've used 9150 infected files from 2 to 4 november 2011, while Comodo's definition were freezed on the 27th of October. Proactive detection rate was: 4274 (46.71%) Additional details are available here: http://www.faravirusi.com/2011/11/06...aravirusi-com/
__________________
--------------------------------------------------- My security apps: Avira AntiVir Premium * Comodo Firewall PRO * Malwarebytes Anti-Malware * Firefox with Adblock and NoScript Last edited by Cudni : November 6th, 2011 at 08:05 AM. Reason: * removed - tos |
|
#2
November 6th, 2011, 04:45 AM
|
||||
|
||||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
Comodo is notoriously known for heuristic false positives so testing it on files that you know are malware will yeld incredible results. But if you push in clean files and deduct detection score with false positives, the result won't be so stellar. I mean, it's easy to make awesome heursitics if you don't care about false positives. You can pretty much make them 100%. But that just won't work in real world...
__________________
RejZoR's Little Secrets |
|
#3
November 6th, 2011, 04:48 AM
|
||||
|
||||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
RejZoR: You're right here, but given the fact they had no FP on the latest VirusBulletin test result, means they improved things.
__________________
--------------------------------------------------- My security apps: Avira AntiVir Premium * Comodo Firewall PRO * Malwarebytes Anti-Malware * Firefox with Adblock and NoScript |
|
#4
November 6th, 2011, 04:49 AM
|
||||
|
||||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
Quote:
Yes, Comodo has high False Positive rates. I don't know why they need such a sensitive heuristic when they have Defense+ and autosandbox.
__________________
Kaspersky Internet Security 2013+HitmanPro+Malwarebytes Pro |
|
#5
November 6th, 2011, 05:12 AM
|
||||
|
||||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
Quote:
One Antivirus is complex solution-black listing URL\fail,proactive..... To try detection for one Antivirus just on "right click context menu" is very bad idea! Wher you finde 9150 infected fails hust for 2 days? To realy make a virus competion it is very complicated. The processe of contamination is not just en .exe The processe of contamination is one complete feature. You go to site, there you click to something after you ..... Is not just en .exe Many AV block just the page, or just the exe, or .... If you can understand me. * Last edited by Cudni : November 6th, 2011 at 08:47 AM. Reason: * ot remark removed |
|
#6
November 6th, 2011, 05:34 AM
|
||||
|
||||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
Quote:
It also depends on the settings used. VB100 uses default as far as i know, but we don't know what setting was used in this test.
__________________
RejZoR's Little Secrets |
|
#7
November 6th, 2011, 05:47 AM
|
|||
|
|||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
Quote:
Quote from faravirusi.com Quote:
__________________
Laptop - Win 8 - Avast 8 Free - Windows Firewall Desktop - Win 7 - NOD32 AV v5 and Comodo |
|
#8
November 6th, 2011, 06:46 AM
|
||||
|
||||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
Well then, that explains everything. AVIRA heuristics on High can still be used perfectly fine every day. Comodo heuristics on High are a complete no go as it detects pretty much every EXE with it.
__________________
RejZoR's Little Secrets |
|
#9
November 6th, 2011, 07:01 AM
|
||||
|
||||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
Quote:
Things are not so bad as you describe them. I know Comodo has sometimes a higher number of FPs than an average antivirus, but this number is not so big. See the latest AV-Test.org evaluation where Comodo took part (Q2/2011). Industry average was 9 FPs on their 699,760 clean files set. Comodo had an average of 12 FPs taken into account the 3 months when it was tested. *
__________________
--------------------------------------------------- My security apps: Avira AntiVir Premium * Comodo Firewall PRO * Malwarebytes Anti-Malware * Firefox with Adblock and NoScript Last edited by Cudni : November 6th, 2011 at 07:17 AM. Reason: * ot remark removed |
|
#10
November 6th, 2011, 07:43 AM
|
||||
|
||||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
Quote:
+1 It detected HD Sentinel, cFosSpeed and a couple of other programs as false positives on my machine. Not all files, just picked up 1 or 2 files in these programs. 
__________________
Kaspersky Internet Security 2013+HitmanPro+Malwarebytes Pro |
|
#11
November 6th, 2011, 07:47 AM
|
||||
|
||||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
@Narxis: You should report them here: http://www.comodo.com/home/internet-security/submit.php
They fix it in maximum 24H.
__________________
--------------------------------------------------- My security apps: Avira AntiVir Premium * Comodo Firewall PRO * Malwarebytes Anti-Malware * Firefox with Adblock and NoScript |
|
#12
November 6th, 2011, 08:08 AM
|
||||
|
||||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
I have notice a lot of improvements in Comodo AV lately, still they need to add valkirie with CIS 6
__________________
Comodo Internet Security (No AV) ZeroVulnerabilityLabs ExploitShield | Trusteer Rapport | TrueCrypt | EMET | Secunia PSI Firefox: Addon security and privacy collection: https://addons.mozilla.org/en-us/fir...den/favorites/ |
|
#13
November 6th, 2011, 09:30 AM
|
||||
|
||||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
Quote:
Im sure its fixed, it was few months ago.
__________________
Kaspersky Internet Security 2013+HitmanPro+Malwarebytes Pro |
|
#14
November 6th, 2011, 12:08 PM
|
||||
|
||||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
Well i hate it when AV detects no-cd patches and similar stuff and they never bother to fix them because they consider them illegal. Even if they aren't malware. They are not here to judge that, you just have to decide if its malware or not, not if its legal or not.
__________________
RejZoR's Little Secrets |
|
#15
November 6th, 2011, 12:20 PM
|
|||
|
|||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
That's pretty much an industry-wide problem. I will say that Avast doesn't seem to be so bad about it, so when they detect a patch or something like it, I pause.
|
|
#16
November 6th, 2011, 03:10 PM
|
||||
|
||||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
avast! is the only one that actually removes false positives on files regardless of what they are. So if it's no-cd but not malware, they'll fix it. They really care only about what's really a malware and i really appreciate that. They are security company, not moral police. I wish others would work the same...
__________________
RejZoR's Little Secrets |
|
#17
November 6th, 2011, 03:24 PM
|
|||
|
|||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
Same here, we have plenty of other people/organizations dictating what we should/shouldn't have and can/can't do. My AV should protect me, not get behind a pulpit.
|
|
#18
November 6th, 2011, 04:30 PM
|
||||
|
||||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
Quote:
__________________
--------------------------------------------------- My security apps: Avira AntiVir Premium * Comodo Firewall PRO * Malwarebytes Anti-Malware * Firefox with Adblock and NoScript Last edited by Cudni : November 6th, 2011 at 04:33 PM. Reason: * remark removed -tos |
|
#19
November 6th, 2011, 10:59 PM
|
||||
|
||||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
Quote:
actually along with avast eset for me at least is great about not detecting things like this. avast is a bit better but eset does not pick up most no cd type of things either (again at least from my testing)
__________________
Meatwad you're up next, with your knock-knock. Meatwad make the money see. Meatwad get the honeys G. Drivin in my car, living like a star ice on my fingers and my toes, and im a taurus "Some days your the windshield. Some days your the bug" Eset ESS V6 / Webroot WSA / Avast! IS V8 |
|
#20
November 6th, 2011, 11:02 PM
|
|||
|
|||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
Quote:
Good deal  I haven't tested Eset in quite some time, so that's good to know. |
|
#21
November 7th, 2011, 01:21 AM
|
|||
|
|||
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
Comodo AV part wasn't the best part but lately its gaining quite ground. Regarding FPs well you know its FP so restore it
 or just add to trusted files and you are done. You can't ask more if you get something good stuff for free. And as such comodo AV part has come up from a really long way
__________________
01110010 01100101 01100111 01100001 01110010 01100100 01110011 00100000 01101001 01100011 01110010 --->My Blog<--- |
|
#22
November 7th, 2011, 10:36 AM
|
||||
|
||||
|
Re: Comodo Antivirus 5.8 detection rate and heuristic test (by FaraVirusi.com Labs)
Nice to see it continue improving
__________________
Emsisoft Anti-Malware v7.0.0.21 - Online Armor 6.0.0.1736 SRP - UAC - EMET Browser: Google Chrome v25.xx Windows 7 Ultimate x64 |
| « Previous Thread | Next Thread » |
| Thread Tools | Search this Thread |
|
|
