nishadrox

Level 2
"Baidu Antivirus is a ultra light weight, easy to use, extremely fast anti-virus program that protects your system from malware, viruses, spyware, adware and other malicious programs.

The program combines the Baidu Antivirus Engine and Baidu Cloud Security Engine with the Avira Antivirus engine to provide you with complete protection against all online threats.

Baidu Antivirus offers an easy to use interface with several advanced configuration options as well as quarantine of infected files. It also has an extremely small memory footprint, so you can actually do other things while it is running on your computer. Other features include automatic updates, Host Intrusion Prevention System (HIPS), scan reports and more." - Neowin.net

Read full article: http://www.neowin.net/news/baidu-antivirus-2013-offers-ultrafast-cloud-security-for-free

Product homepage: http://sd.baidu.com/en/
 

Akash209

New Member
Thank you bro for the Sence..!!

Ohh.. Bidu+Avira= Bidu Cloud Antivirus.. Really intersting..!!!! I try.!!!
 

tapoo

Level 4
Verified
looks like its from China, same as Kingsoft, both using Avira engine, Chinese antivirus makers trying to take control of world antivirus market

anyone have any proof of using Avira engine in this Baidu antivirus??
.
 

MrXidus

Super Moderator (Leave of absence)
I have decided to have a little play around with this.

First I wanted to see the Avira engine working.

I enabled the Avira engine option and updated, (It's disabled by default)





Next I grabbed a Conficker out of my VX collection, right clicked and scanned with Baidu Antivirus 2013.

I was expecting the threat window and the threat prefix to match that of Avira, instead we get something else.

VirusTotal Scan Results - Conficker

The scan completed window (click show Spoiler)


Notice it says "Net-Worm.Win32.Kido.ih"

Avira VirusTotal result:



Not the same, So instead I looked down the list of other vendors to see if I could find a prefix that matches the same as the one displayed in Baidu Antivirus 2013.

Kaspersky VirusTotal result:



I'll let you wonder what it means.

Edit: It means this.
 

Spawn

Administrator
Staff member
Verified
Can Baidu's own AV be disabled in replace for Avira only? Also did you test any other samples?
 

Gnosis

New Member
Chinese antivirus makers trying to take control of world antivirus market
They will never get it right, like just about everything else China exports.

Chinese AV's = European AV's (after borrowing a Euro engine) with malicious rootkits and grayware added.
 

Akash209

New Member
This antivirus REALLY works bro..!!!!!
In the small pack of malware ( which i download from here, provide by linwa...) is superb... Dictates 29 and delete all 29 out of 36...
Woo is interesting..!! Here's some information
..:cool:









 

Gnosis

New Member
It looks like a rogue that has been retooled, as to attempt to make a legit buck, for the time being. Maybe it has a function that allows the developers to view your private life and record it for Hong Kong reality show candidacy.

I hope I am wrong. I really do. I hope this AV becomes a solid performer, but I have my doubts.

PCHunter
Now THAT Chinese product is an example of fine quality, and China needs to start manning up and exporting that kind of quality across-the-board.
 

tapoo

Level 4
Verified
http://www.avira.com/en/baidu-pc-faster
looks like Avira made some type of contract with Baidu.... they now offering Baidu.PC.Faster [some kind of PC Maintenance tool from Baidu, damn sure hardly anyone heard its name before ]

from another link, i think, Kingsoft Antivirus will be stopped now, and replaced by Baidu, read this following link
http://sg.finance.yahoo.com/news/baidu-invests-kingsoft-moves-security-171051919.html
.
 

Spawn

Administrator
Staff member
Verified
Reminds me of Kingsoft AV.

Anyone used the HIPS (Proactive Protection) module?
 

Spawn

Administrator
Staff member
Verified
None of the Moderators at Kingsoft Support Forums are active and the boards are filled with spam.

http://www.kingsoftsecurity.com/forum/search.php?search_id=active_topics

tapoo said:
from another link, i think, Kingsoft Antivirus will be stopped now, and replaced by Baidu, read this following link
http://sg.finance.yahoo.com/news/baidu-invests-kingsoft-moves-security-171051919.html
 
Z

ZeroDay

Does anyone know if this can be used as a campanion the same as Kingsoft?
 

tapoo

Level 4
Verified
^^ they claim it as companion antivirus also.....
http://sd.baidu.com/en/
see bottom of the page.....


BTW, now i found , they are not responding in their forum, surely Kingsoft antivirus is now an Abandoned product....
http://www.kingsoftsecurity.com/forum/viewtopic.php?f=2&t=1320&sid=9d957385e9bde24e563a9b2f8fe4b97b&start=40
 

Spawn

Administrator
Staff member
Verified
The website claims "Baidu Antivirus is compatible with 10 mainstream security software perfectly", however which ones? I do not have any other information.
 
Z

ZeroDay

I'm going to try it along side CIS I'll disable the hips part though for obvious reasons.

Edit: Thanks for the replies too.
 

spywar

New Member
Can someone make test with fresh samples already detected by AVIRA engine to see if they use very latest engine of AVIRA ?
 

MrXidus

Super Moderator (Leave of absence)
I scanned some more malicious files and they all show up as Kaspersky engine prefixes.

None of them Avira prefixes when compared to VirusTotal like in my previous post in this thread.

Could someone else try it themselves and report back with results. Thanks.
 
P

Plexx

Interesting:
They claim companion av support, yet on their FAQ:

Can two antivirus software run on my computer at the same time?
It is not recommended to run two antivirus software at the same time. Instead of better protection, there will always be capability error and low performance of PC as well. Therefore, it is recommended to uninstall other antivirus software before installing Baidu Antivirus.
OK either their beta is buggy or even the avira engine is not fully updated.

This file in VT is known as Julien.exe but when downloading is renamed to poe aob multihack.exe (a map hack used by many users in Path of Exile and most reported account hacked... Yes it contains a keylogger trojan type).

Yet, Baidon does not detect it with "avira engine" enabled:



Something ain't right in this piece of AV.


Time to remove.