FMA Intel-Secure CBAD Cloud Antimalware 2014 (BETA 2 FREE Version)

Will you support, review and share our software with other webpages?


  • Total voters
    52
Status
Not open for further replies.

Nico@FMA

Level 27
Thread author
Verified
May 11, 2013
1,687
If ur start detecting them in the future, so ur detection is crappy too? that makes no sense. Ur to harras to some companies, srsly. How u can even call Qihoo have crappy detection. Better learn to respect the hard work from other ppls.

Lol you joking me right? I was meaning this in a sarcastic way against Qihoo.
Obviously their product is good, no doubt. Its just that i do not like the fact that every single time its always the same AV company that detects new software as malicious by default.
Out of all the versions we have released i have like 300+ complains per version that Qihoo detects us.
So here is the 100 million question: How can it be that every single AV vendor in the world does class us as clean? yet Qihoo keeps bitching about trojan here and malicious there? So as a joke i said we might start detecting them and give them some ugly name.
It was just a joke man. Lighten up.
 

Kate_L

in memoriam
Verified
Top Poster
Well-known
Jun 21, 2014
1,044
Hello Nico

Can you make the detection names more specific like Trojan@ZBot~RandomID ? With all this stealing signatures, it is also good to know what malware was.

Since every AV vendor has his own way, I think you should also make some unique signature name. CBAD.Detected it is vague.

It is just a suggestion and keep up the good work.
 

Av Gurus

Level 29
Verified
Honorary Member
Top Poster
Malware Hunter
Well-known
Sep 22, 2014
1,767
I have 2 malware folder on desktop, one folder with .exe and in another folder with .vir extensions.
This folder with .vir didn't detected?

Clipboard01.png
 
  • Like
Reactions: Xtwillight

Nico@FMA

Level 27
Thread author
Verified
May 11, 2013
1,687
Hello Nico

Can you make the detection names more specific like Trojan@ZBot~RandomID ? With all this stealing signatures, it is also good to know what malware was.

Since every AV vendor has his own way, I think you should also make some unique signature name. CBAD.Detected it is vague.

It is just a suggestion and keep up the good work.

Hello OpenSec,

Thank you for the suggestion,
In regards to your question i understand its vague when our detection only shows CBAD.Detection
Yet you have to realize this is due to the very nature of our cloud.
We do not use a database, so our cloud has no way of knowing what name a malware has because its detection is strictly based upon the internal code and deep details of the scanned file.
So in short said our cloud does not give names, as we do not use a database.
Now how this works i am not going to explain again so i suggest you go to the first post in this topic and read it and then scroll to the updates.
I know its a lot of reading but it will explain pretty much in detail.

Obviously in the future we will come up with some way to at least class the detections as:

1: Virus
2: Rootkit
3: Trojan
and so on.

But this requires a massive overhaul in the engine and its detection algorithm and right now i have no intention of changing the detection names in favor of maturing the cloud and getting the program polished as detection names are pure cosmetic candy.
However your suggestion has been noted as you where not the first one to suggest it.

Thanks,.
 

Nico@FMA

Level 27
Thread author
Verified
May 11, 2013
1,687
I have 2 malware folder on desktop, one folder with .exe and in another folder with .vir extensions.
This folder with .vir didn't detected?

View attachment 33052

Yes you are right it did not detect those, as the cloud detection is running in skeleton mode.
Thanks for pointing it out tho.
And please send the files to me and ill see here locally if the new engine does detect it on a local test system (yes the engine is going to be updated again... lol)

Cheers
 

Av Gurus

Level 29
Verified
Honorary Member
Top Poster
Malware Hunter
Well-known
Sep 22, 2014
1,767
All files are from Virussign and in one folder files was renamed (.vir with .exe ).
I did a Quick Scan.
 
  • Like
Reactions: Xtwillight

Nico@FMA

Level 27
Thread author
Verified
May 11, 2013
1,687
All files are from Virussign and in one folder files was renamed (.vir with .exe ).
I did a Quick Scan.

I just did a right click context scan on the a Virsign pack (The first one)
rFygksn.png


Still scanning and its seems to be working.
Please tell me did you uninstall the old version completely and download and install the new version?
Because on my end as you can see its working and working well.
 
  • Like
Reactions: Xtwillight

Nico@FMA

Level 27
Thread author
Verified
May 11, 2013
1,687
Context scan is OK, i just run Quick Scan

View attachment 33056

Ahh quick scan, right the quick scan is only looking at specific places. It would be worthless for folder scanning.
Quick scan would be critical area scan, while manual scan and context scan would be more general scan across the area you select.
But i will take note of it and have it changed.
 

Av Gurus

Level 29
Verified
Honorary Member
Top Poster
Malware Hunter
Well-known
Sep 22, 2014
1,767
My was old scan results from VT, now it is all Clean, tnx.

Righ Content Scan only show for .exe files not for folder, any news about that?

Clipboard01.png


Clipboard01.png
 
  • Like
Reactions: souhrid

RmG152

Level 12
Verified
Jan 22, 2014
577
  • Like
Reactions: Xtwillight

Cch123

Level 7
Verified
May 6, 2014
335
Hi Nico, just some suggestions for you:

1. I think you should submit your software for those whitelisting programs by AV vendors, so that there would be fewer/no false positives by vendors.
2. As for the detection name thing, perhaps based on the structure of the malware, you can classify them accordingly. It would be great if Intel-Secure could let us know the capabilities of its detections. For instance, if there is a RAT on my computer and Intel-Secure detects it, it would be great if I could view the capabilities of this RAT. Intel -Secure can list the capabilities like this:
  • Keylogger
  • Connects to XX.XX.XX.XX
  • Screen capture
  • Anti-VM
That way users can use the tool to make informed decisions on what kind of threat they are facing, and perhaps this software can be part of a malware analysts' companion as well :)
 
Status
Not open for further replies.

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top