Crowdstrike CrowdInpect 1.6.0.0 (free)

simmerskool · May 4, 2019

I run crowdinspect occasionally to see what's connecting / connected especially when I step away from pc.
Today I noticed that it showed that audiodg.exe was running and connected to a microsoft related ip, although at the time I had not been doing anything with audio on win7x64.
C:\Windows\System32\audiodg.exe | sha256= 956af199c1ce56b7e2080edd38d67f3b8d285c71d791ad4db67f1f1d13f13d88 an unsigned ms file.
It comes back clean on VT, and when I analyzed it in 2 different sandboxes, both report no network activity, which is the reason for this post, ie, is this some snafu with crowdinspect, reporting that this system app connected to ms, when other sources say it does not show any network activity?
my paranoid concern for the day.

thrillskr · May 4, 2019

Do you have a laptop ? Or a desktop.

If you have a laptop, check if you have a Computrace/Lojack anti theft chip inside.

simmerskool · May 4, 2019

thrillskr said:
Do you have a laptop ? Or a desktop.

If you have a laptop, check if you have a Computrace/Lojack anti theft chip inside.

thanks for asking, no, saw this on desktop.

thrillskr · May 4, 2019

Read More About CrowdInspect Software License Agreement

Download CrowdInspect, a free community tool for Microsoft Windows systems.

www.crowdstrike.com

I fast read on there privacy policy starting at point 3, conclusion: yes they Will use your data and share. I guess it’s a free service? Then it make sense you pay with your data if you like it or not. I shouldn’t be concernd about it. Crowdstrike has a lot to lose if they using/selling shameles your data like company’s as Facebook.

All AV company’s need telemetry ofcourse. It’s important for what purposes and if they are transparant. Look what Avast is doing..with with there bloat/spy/scareware . Is now more like a big data farms then a AV company.

If you using Windows it’s btw a big privacy nightmare + even worser if you are living in the USA where agancy’s like NSA spying on normal innocent people to collect data because...you never know...

Keep using if you like it, if it don’t feel comfortable stop using it, because it’s not worth stressing about things like this.

Kubla · May 5, 2019

That is a nice tool especially for being free thanks for the link.

simmerskool · May 5, 2019

thrillskr said:
Read More About CrowdInspect Software License Agreement

Download CrowdInspect, a free community tool for Microsoft Windows systems.

www.crowdstrike.com

I fast read on there privacy policy starting at point 3, conclusion: yes they Will use your data and share. I guess it’s a free service? Then it make sense you pay with your data if you like it or not. I shouldn’t be concernd about it. Crowdstrike has a lot to lose if they using/selling shameles your data like company’s as Facebook.

All AV company’s need telemetry ofcourse. It’s important for what purposes and if they are transparant. Look what Avast is doing..with with there bloat/spy/scareware . Is now more like a big data farms then a AV company.

If you using Windows it’s btw a big privacy nightmare + even worser if you are living in the USA where agancy’s like NSA spying on normal innocent people to collect data because...you never know...

Keep using if you like it, if it don’t feel comfortable stop using it, because it’s not worth stressing about things like this.

good thoughts. actually I backed away from it somewhat before I read your post. I also read more about audiodg.exe. I tested crowdinspect as free tool since they seem highly regarded security solution at least in some sectors. Apparently they now own or operate

Free Automated Malware Analysis Service - powered by Falcon Sandbox

Submit malware for free analysis with Falcon Sandbox and Hybrid Analysis technology. Hybrid Analysis develops and licenses analysis tools to fight malware.

www.hybrid-analysis.com

which sometimes has interesting insight into files.
thanks!

pisondi · May 5, 2019

So, in the end, how safe is to use this tool?

ichito · May 5, 2019

CrowdInspect was earlier free for personal use but due to changes in VirusTotal policy in 2016

Maintaining a healthy community

VirusTotal was born 12 years ago as a collaborative service to promote the exchange of information and strengthen security on the internet....

blog.virustotal.com

CrowdStrike first disabled feature to scan entries on VT servers and than prepared new licence and removed free version.
@simmerskool is your version free and fully featured or only free trial?

simmerskool · May 6, 2019

ichito said:
CrowdInspect was earlier free for personal use but due to changes in VirusTotal policy in 2016

Maintaining a healthy community

VirusTotal was born 12 years ago as a collaborative service to promote the exchange of information and strengthen security on the internet....

blog.virustotal.com

CrowdStrike first disabled feature to scan entries on VT servers and than prepared new licence and removed free version.
@simmerskool is your version free and fully featured or only free trial?

I understand crowdinspect 1.5.0.0 now 1.6.0.0 to be a free tool. It requires admin rights to run. It compares files / hashes to 2 databases:
hybrid-analysis.com
teamcymru.com
Not seeing that it uses VT.

thrillskr · May 7, 2019

Community Tools - crowdstrike.com

www.crowdstrike.com

About the community tools they offer.

Looks like a decent company.

Search

Crowdstrike CrowdInpect 1.6.0.0 (free)

simmerskool

Level 37

thrillskr

Level 2

simmerskool

Level 37

thrillskr

Level 2

Read More About CrowdInspect Software License Agreement

Kubla

Level 8

simmerskool

Level 37

Read More About CrowdInspect Software License Agreement

Free Automated Malware Analysis Service - powered by Falcon Sandbox

pisondi

Level 1

ichito

Level 11

Maintaining a healthy community

simmerskool

Level 37

Maintaining a healthy community

thrillskr

Level 2

Community Tools - crowdstrike.com

Similar threads