FMA (CCSU PR-Guard) 2015 Edition

Discussion in 'other anti-virus software' started by nnvt, Feb 10, 2015.

  1. nnvt

    nnvt Registered Member

    Joined:
    Jul 29, 2014
    Posts:
    27
    Location:
    Harlingen
    Hello Everyone,

    2014 was a wonderful year where our company did have brilliant moments and where we did develop some great software. We have seen the PR-Guard 2014 which was a smashing success, and we did have CBAD Anti-malware which was pretty awesome in its own right. Not to mention the massive amount of positive feedback from all of you (Thanks for that).
    Yet we have also seen the tragedy my company did endure, being hacked, software being stolen and people who did not accept that someone might have come up with a idea they did not think off.
    Its just reality and FMA Intel-Secure has moved on to 2015 ready to show everyone that their trust in our products is 100% justified and that we keep innovating and improving our-self to bring you the right software and tools you need for the job. Everyone remembers the CCSU PR-Guard 2014 edition right? (If not here is the link to its old development topic) It was a pretty amazing piece of software that while it did look like **** TBH it did work exactly as advertised, and thanks to the many community testing rounds it has a proven record of being that good. Well let me tell you a little secret, it has been made better, stronger and even more reliable. And this time? It does not look like crap lmao.
    So allow me to present the new: (CCSU PR-Guard) 2015 Edition take a look and enjoy.

    http://fma-is.com/PR-Guard.gif
    * I wanna give special thanks to our friends and partners for helping FMA during our difficult times, you guys have been GREAT. Thanks.

    *Note in the animation you see in the top right that there is a little error where the text does not fit, it has already been corrected i just did not bother to generate a new animation.

    Wait did you forgot what CCSU PR-Guard is? Well here is its impressive feature list:

    FMA Intel-Secure™ forensics & intrusion analysis software (FMAIS) is a highly advanced digital forensic investigation and analysis tool.
    Which allows system administrators and network specialists to collect, preserve and reveal digital evidence on windows based systems and networks.
    FMAIS has the ability to perform memory and file analysis of a specific host and collects information about running processes and drivers from memory using basic and advanced techniques.
    It gathers advanced file system meta data, registry data, event logs, network information, services, tasks, and Internet history.
    Among many others, FMAIS’s features include other advanced options to read, scan, cross-reference and extract any data from multiple known and unknown sources within the Windows based operating systems and networks.
    Our downloadable version of FMAIS is a very comprehensive tool that allows you to ultimately reveal any malicious data and traces to the source which allows you to reverse engineer and stop potential & actual cyber threats.

    Note: This program is written for Windows 7 (32 & 64bit)
    Full Feature List:
    Low memory usage (Less then 50mb)
    Low CPU usage (less then 10%)
    Real time process monitoring
    Real time data stream monitoring and logging
    Advanced automated analyses capabilities (point to point analyses (PPA)
    Next Generation system software analysis and logging
    Next Generation active & hidden processes analysis and logging
    Advanced process handler analysis and logging
    Extended services status analysis and logging
    PPA Kernel validation and corruption analysis
    Next Generation system driver and signature analysis
    PPA Kernel Transaction analysis and backtracking
    Next Generation PPA HASH analysis and validation + extended logging
    Windows services and malicious services analysis and logging
    Limited log based Spyware detection (Manual detection)
    Limited log based Exploit detection (Manual detection)
    Limited log based Browser Trojan detection (Manual detection)
    Limited log based Rootkit detection (Manual detection)
    Limited log based Worm detection (Manual detection)
    Limited log based Hooking detection (manual detection)
    Firewall state inspection and logging
    Full firewall extended logging
    Advanced MCB scan, logging and repair
    Start-up hash validation and backtrack changes
    Driver validation and backtrack capacity
    Group policy corruption and intrusion analysis
    Data resources monitoring and logging
    Hard disk volume analysis and serial logging
    Advanced start-up scan and logging
    Windows boot manager analysis and logging
    System Policy analysis and logging
    Group Policy analysis and logging
    Advanced Internet connection repair and logging
    DNS analysis, logging,repair, cleaning
    ARP tables analysis, logging, repair, cleaning
    Full IP INT analysis and reset capability
    Advanced firewall analysis and repair
    Firewall helpers analysis, logging and repair
    Logging of all allowed programs
    Logging of current profiles and repair
    Deep level firewall configuration analysis and repair
    Deep level ICMP configuration analysis, logging and repair
    Full Inspection firewall services and dependencies (Logging and repair)
    Firewall state inspection and logging
    Full firewall extended logging
    Advanced MCB scan, logging and repair
    Advanced open ports scanning, logging and repair
    Advanced firewall rule inspection, repair and logging
    History logging for historical firewall notifications
    Extended firewall OP mode scan and repair
    Advanced winsock readout, logging and repair
    Past and present full route information readout & logging
    Hard drive health status and possible corruption analysis
    Shadow copy health & validation capacity
    Valid and rogue connections scan and logging
    IP routing table analysis and logging
    All active listening TCP and UDP connections scan and logging
    Active TCP connections and (PID) logging
    Logging statistics TCP, UDP, ICMP, and IP protocols
    Bytes and packets sent and received statistic logging
    Analyze and log components for all executables
    Advanced internet connection repair and logging
    DNS scan, logging,repair, cleaning
    ARP tables scan, logging, repair, cleaning
    Full IP INT scan and reset capability
    Advanced firewall audit and repair
    Firewall helpers analysis, logging and repair
    Logging of all allowed programs
    Logging of current profiles and repair
    Deep level firewall configuration analysis and repair
    Deep level ICMP configuration scan, logging and repair
    Full Inspection firewall services and dependencies (Logging and repair)
    Advanced open ports scanning, logging and repair
    Advanced firewall rule inspection, repair and logging
    History logging for historical firewall notifications
    Advanced full reset and repair of Windows firewall, profiles, policies, rules, ports and dependencies
    Full registry audits, deep level checks and cross call function referencing

    As you can see the list is HUGE, and its written for Windows 7.
    However as you all know i am also working on a windows (ALL) version, and this version is pretty much ready. But for now i will just make the Windows 7 version available on a very short notice so everyone can have a go at it. All other Windows versions will soon be supported as i personally do want to run a few more tests on Windows 8 and the technical version of the new Windows (it still gives minor errors and stability issues which i want to fix first)

    So as you can see i did keep my word and thanks to our friends who did help me greatly everything that we lost in 2014 has almost being undone, again many thanks.

    Go to our website and download CCSU PR-Guard 2015 now.

    O and before i forget, my software is 100% clean see VT report.
    PS: The setup file will ask for a serial key, which you can request using the email address in the setup file itself (See menu) This i have NOT done to annoy you or to create a hassle, but there are some sites out there that have used the 2014 version and packed it into a malvertising bundle.
    Now while i cannot stop this, the serial does allow me some control to see who gets it or who is not.
    I hope you guys understand.

    Thats all.
    Cheers guys.
     
    Last edited: Feb 10, 2015
  2. nnvt

    nnvt Registered Member

    Joined:
    Jul 29, 2014
    Posts:
    27
    Location:
    Harlingen
    Updated main post about the serial needed to install and run the program.
     
  3. nnvt

    nnvt Registered Member

    Joined:
    Jul 29, 2014
    Posts:
    27
    Location:
    Harlingen
    To those who requested a key the keys have been send.

    *PS to moderator / admin sorry for not updating my email address within my wilders profile i totally forgot about that.
    Anyway i have corrected it.
     
  4. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    1. @nnvt: The downloadable version is not a trial, correct?

    2. Another thread about this program can be found here.
     
  5. nnvt

    nnvt Registered Member

    Joined:
    Jul 29, 2014
    Posts:
    27
    Location:
    Harlingen
    Hello @MrBrian

    No FMA Intel-Secure (CCSU PR-Guard) 2015 V10.11 and later versions are NOT a trial.
    In regards to the link you posted, i did not update the Wilders topic for sometime because i forgot since i was way to busy getting everything done.
    For that i am sorry.
    V10.11 and later versions are similar to previous versions yet many new functions have been either added or existing functions have been removed, modified or replaced.

    Notable changes version 10.10
    Fixes:

    Major UI fix (Re-size and scaling bug has been fixed)
    Major performance tweaks.
    Removed serial registration system.
    Fixed installation pre-admin level check.
    **Added VM detection.
    42 Various program and process handling errors.

    Upgrades:
    Totally new overhauled setup (Yes its now in FMA colors.)
    PPA engine has been updated to version 10a. (Added new advanced algorithms and updated PPA validation process)
    System Policy engine has been tweaked to handle more requests.
    Group Policy engine has been made more strict and much more capable.
    MCB Analysis will now validate PPA results and cross reference dependencies.
    Driver validation engine has now been updated.

    Additionally there are over 1000 tiny tweaks and changes to the forensic capabilities of our program and its sub-processes.

    Notable changes version 10.11
    1: Realtime tray monitor (Has build in support for future upgrades).
    2: A collection of tools that are VERY useful for repairing windows, diagnostic's and forensic tasks.
    3: Update function which will update the program (manually)
    4: We fixed another load of small UI bugs and we fixed a bunch of process errors.
    5: We added support for future "sub" programs and we added support to merge third party programs into our program.
    6: Added & modified 16 new sub functions to our engines.
    In short our program is slowly becoming a forensic swiss army knife which is good.

    Thats in a nutshell what has been changed.
    Currently i am working on version 10.15 as 11,12,13 and 14 only did have UI changes and tiny fixes so i did not bother listing them.
    So if you (Or anyone for that matter is running a version older then 10.11 then i seriously suggest to uninstall it and get yourself the current version from our site.

    I hope this helps.

    If you require help or need additional info let me know.
    Kind Regards,
    Nico
     
  6. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,083
    Location:
    Netherlands
    @nnvt Is it signed (installer, program the works) yet?
     
  7. nnvt

    nnvt Registered Member

    Joined:
    Jul 29, 2014
    Posts:
    27
    Location:
    Harlingen
    The installer is signed, (self signed) but that's for now more then OK.
    http://i.imgur.com/p5FYQQa.png

    Also VT report here 100% clean like it should be. ~ Removed VirusTotal Results as per Policy ~
    In the future we might buy a full certificate but at this point there is absolutely ZERO need for it.
    It only costs money and it adds nothing. Anyway if malware or rogue programs is a concern for you, then i have good news.
    My software if downloaded from our own servers is 200% clean, malware free.
    Doubts? scan the files yourself, ask users, ask on MT or submit them to any malware research lab of your choice.

    Anyway if you have more questions i am more then happy to help you out.

    Kind Regards,
    Nico
     
    Last edited by a moderator: May 18, 2015
  8. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,083
    Location:
    Netherlands
    No doubts, I have UAC set to deny elevation of unsigned, that is why I asked.
     
  9. nnvt

    nnvt Registered Member

    Joined:
    Jul 29, 2014
    Posts:
    27
    Location:
    Harlingen
    Right that explains.
    Cheers
     
  10. Brandonn2010

    Brandonn2010 Registered Member

    Joined:
    Jan 10, 2011
    Posts:
    1,849
    So is this program geared towards enterprises? Would there be any benefit to putting it in my setup?
     
  11. nnvt

    nnvt Registered Member

    Joined:
    Jul 29, 2014
    Posts:
    27
    Location:
    Harlingen
    Actually this version of the program is the "slim" version of the whole suit. You can use this on your pc.
    However it does require some brains as this program is not a toy and neither is it made for the average Joe.
    As i mentioned this is the "slim" version because the so called "enterprise" version is not available for public download it will be only distributed within our own corporate client networks case by case, because the "enterprise" version is much more advanced then this version and is currently being used by various companies and digital forensic investigators to collect evidence and data when one of our corporate clients has become victim to cyber crime. That being said such tool has no place on a home computer, in regards to the "slim" version it has proven to be very effective and useful to those who know what they are doing and it has been extensively being tested by MT members.
    So yes this version can be used on a home configuration.

    I hope this explains it all, if you wish more info then i suggest you read the MT topic which has all its development and updates on it.

    Kind Regards,
    Nico
     
  12. Tarnak

    Tarnak Registered Member

    Joined:
    Feb 5, 2007
    Posts:
    3,875
    I followed this since last year when you ran into a problem, and discontinued for awhile....Will it become available for XP users.?
     
  13. nnvt

    nnvt Registered Member

    Joined:
    Jul 29, 2014
    Posts:
    27
    Location:
    Harlingen
    LOL for Windows XP (Stone age windows?) No sorry m8 some features used in our program are not supported on Windows XP.
    Our program has been made for: Windows 7 Professional, Enterprise and Ultimate 32/64bit editions.
    In the near future our program will be supporting Windows 10 as well (Is currently being developed) and since Microsoft is going to allow everyone to update to Windows 10 for free, and the industry refuses to use Windows 8 & 8.1 we never bothered making a Windows 8 compatible version and we have no intention of doing so.

    So one more time its either: Windows 7 Professional, Enterprise and Ultimate 32/64bit editions or in a few months Windows 10.

    Kind Regards,
    Nico
     
  14. Tarnak

    Tarnak Registered Member

    Joined:
    Feb 5, 2007
    Posts:
    3,875
    LOL...I am still stuck in the stone age. ;)

    I was confused by the 'all', in your opening post - "as you all know i am also working on a windows (ALL) version, and this version is pretty much ready"
     
  15. nnvt

    nnvt Registered Member

    Joined:
    Jul 29, 2014
    Posts:
    27
    Location:
    Harlingen
    We where working on a ALL version (but that got shelved for the above reasons) which has been announced on MT and on the official site.
    Cheers
     
  16. Tarnak

    Tarnak Registered Member

    Joined:
    Feb 5, 2007
    Posts:
    3,875
    So, no All...just some? LOL ;)
     
  17. nnvt

    nnvt Registered Member

    Joined:
    Jul 29, 2014
    Posts:
    27
    Location:
    Harlingen
    UPDATE version: 10.1.10.15

    Fixes & Updates.
    Added file hash analyzer.
    Added improved memory monitor.
    Increased performance and reduced RAM usage.
    Changed program icons.
    Removed the malware submission system (Due to abuse by some fools).
    Fixed the update function (It did miss report updates and was actually downloading a down grade in some cases).
    Rearranged the UI.
    Modified step 1 (upgraded 4 functions)
    Fixed step 4 (PPA engine was lagging to much at some lower end computers)
    Updated and Modified our installation program.

    See VT report clean as a whistle ~ Removed VirusTotal Results as per Policy ~

    Kind Regards,
    Nico
     
  18. nnvt

    nnvt Registered Member

    Joined:
    Jul 29, 2014
    Posts:
    27
    Location:
    Harlingen
    Oeps i did not realize that posting a VT link was against the rules.
    Sorry.
     
  19. nnvt

    nnvt Registered Member

    Joined:
    Jul 29, 2014
    Posts:
    27
    Location:
    Harlingen
    Today i was contacted by Super PC Tools.
    Needless to say FMA Intel-Secure is never going to work with such program, i have published the whole conversation with them on MT see topic

    Let me extend the warning here on Wilders to those who develop their own programs, beware of so called fast money companies.
    You might earn a few bucks but in the end you are going to pay the price as everyone using your adware infested software is going to avoid you like a plague and your reputation will go to ****.
    Getting a reputation is not that hard, getting and keeping a good reputation is a totally different matter.
    So if you develop your own legit software then stay true to the mission you set out to accomplish and NEVER allow anyone to have you deviate from it, unless its a win win for everyone.
    Be smart, be open yet do your research and check things out before you take actions, because a simple action today might destroy what ever you did have in mind on the long run.

    Cheers
     
  20. ellison64

    ellison64 Registered Member

    Joined:
    Oct 5, 2003
    Posts:
    2,499
    When windows 10 arrives will your software just be compatabile with the pro/enterprise version and not home ,as is currently the case with windows 7?
    tia
    ellison
     
  21. nnvt

    nnvt Registered Member

    Joined:
    Jul 29, 2014
    Posts:
    27
    Location:
    Harlingen
    Initially the functions within my program (some of them) just do not work on home editions, because its not available. This due to the fact that Microsoft did not add some of the functions from the professional and more industry oriented OS versions into the home editions.
    Currently my program was written pure for Pro, Enterprise, and Ult version for this exact reason.
    We are working on a version that should work on any Windows 10 version because from what we have been told it does not matter which version of Windows 10 you are going to use, as every function is already build in (Just not activated as the profile of the OS is for example optimized for Home)
    Which is sort of new as even windows 8 versions do not have this. So with this in mind we can try to develop a tool that can call these functions.
    And that should solve the problem, but given the contradicting info we did get from MS partner program it remains to be seen if we can get it done.
    But to reply to your question, we want it to work on any Windows edition yet this might not be our call at this point, so when we have more info or enough feedback from Microsoft then we can see if we can do it or stick with the current setup.

    Kind Regards
    Nico
     
  22. nnvt

    nnvt Registered Member

    Joined:
    Jul 29, 2014
    Posts:
    27
    Location:
    Harlingen

    CCSU PR-Guard has been updated,
    And guess what? It has now our EYE Anti-Malware Module build in. Yes that's right its a secondary scanner.
    Very basic but extremely effective.

    What does it do? Well as mentioned before (Let me repeat it for those that refuse to keep track of the topic and start asking questions that have already been explained) EYE Anti-Malware Module is a emergency utility to get rid of nasty malware.
    NO its not a full anti-virus and does not have all the funky features. It just scans the memory (On demand) or any folder + sub folders (that are not locked by windows) So if you see a folder like this:
    http://i.imgur.com/UyvaVh9.png
    See the little lock? Don't bother trying to scan it, it will FAIL. It does not have a real-time engine, as i mentioned in the MT topic it is a tool like Norton NPE, Kaspersky TDSSkiller (Or similar tool). It pretty much does nothing more then Scan + Detect + Remove = JOB well done.
    *Note: It does require a active internet connection + admin rights.

    As mentioned in the on the post on MT the detection is not very high at this point as i am manually adding each detection from the cloud to the program which is a very precise and time consuming process. In the next few days i will do whatever i can to bring it back to the standard set by our CBAD engine (If you remember)

    CCSU Guard has been updated to version: 10.1.10.18
    EYE Anti-malware module has been updated to version: 1.1.1.2
    - Fixed massive performance bug in engine.
    - Fixed internet connection requests + update function.
    - Fixed CCSU Guard update function.
    - Optimized PPA and updated the MCB function.
    - Language fixes (Some spelling errors)
    - Changed the UI a bit so it looks more smooth.

    So update now.

    Cheers
     
Loading...