stever 10 Posted April 20, 2018 Report Share Posted April 20, 2018 I know this probably has been done to death, so apologies if you're bored with the topic. My point is that I think it's past time the persistent warnings about viruses and trojans in compiled bots received some serious attention by the Ubot team and the problem fixed once and for all. We've probably all read the thread herehttp://network.ubotstudio.com/blog/why-your-bot-is-showing-up-as-a-virus-and-what-to-do-about-it/ While that might work for some people, there are plenty more who just get scared when a virus alert pops up.We have paid a decent amount of money for Ubot software, on promises of being able to sell bots, but the reality is that some kinds of users will (and do) just run away when they see scary warnings. Don't blame the customer - it's our problem, not theirs. And it's no good blaming the AV industry either - rightly or wrongly, they are trusted, so we need a better solution. After the latest Windows update my PC started quarantining my own bots -something it's never done before, so I'm thinking this is not going to get any better. I'm sure this can be sorted because there are commercial products that employ Ubot that don't trigger AV alerts. So how do they do it?If anyone knows a foolproof way of compiling that doesn't trigger AV alerts maybe they could explain how, and this could be made into a sticky post so we can find it easily. Or even better, Ubot sorts the problem out at source. Quote Link to post Share on other sites
flamerz 2 Posted April 20, 2018 Report Share Posted April 20, 2018 Last week Microsoft antivirus deleted my own ubot executable. lol I set an exception. But I get your point. 1 Quote Link to post Share on other sites
tinku 6 Posted April 21, 2018 Report Share Posted April 21, 2018 yep we all are facing same issue and ubot never tried to sort out this problem. 1 Quote Link to post Share on other sites
Marani 80 Posted April 21, 2018 Report Share Posted April 21, 2018 Simple fast solution: explain to customers and users that there's no virus in your bots, they trust you if you have a good reputation. Another solution is to digitally sign your bots which is not cheap, and you need to know, to cover Windows Smart Screen warning you have to purchase EV code signing, even more expensive. Does it take care of false positives? they claim it does, I haven't tried yet. but that's the thing I must do, after reading and talking to a few cert providers support staff. Macster in a thread explained Smart packer Pro in addition to the cert (he's absolutely trying to help), contacting to the support staff of smart packer, they said: Signing packed executable will probably prevent most of such warnings. so using the trial version I gave it a shot and packed one of my bots. the result... I use Virustotal to see how AVs treat the bots. before packing I got around 3 alerts by VT (just alerts like "unknown"), after packing, it became double and became Backdoor and Trojan...!!! So this tool does not work for me. Wrapping it up, signing bots would definitely help. have plans to do it in the future and make sure to contact the provider to get a better help prior to spend money! 2 Quote Link to post Share on other sites
Code Docta (Nick C.) 638 Posted April 21, 2018 Report Share Posted April 21, 2018 You can not use certain plugins that have licensing. They are encrypted and so is ubot to a point. Send your bots to AV's to run through, should help. Regards,CD 1 Quote Link to post Share on other sites
stanf 43 Posted April 21, 2018 Report Share Posted April 21, 2018 i have what may be a simple question, but it maybe a simple answer.can the file that win-def reads for white listed files be written to directly? Quote Link to post Share on other sites
stever 10 Posted April 29, 2018 Author Report Share Posted April 29, 2018 @Marani - thanks for taking time to answer. "Simple fast solution: explain to customers and users that there's no virus in your bots, they trust you if you have a good reputation." It's no solution because for them to trust you they need to know you. If they don't know you why should they trust you? No response from Seth here: presumably because he knows there is an issue but sees no mileage in addressing it beyond what he's said already. Which as I, and others, have pointed out, is inadequate. Maybe getting the software signed is the answer: is there a step-by-step guide anywhere? Quote Link to post Share on other sites
Marani 80 Posted April 29, 2018 Report Share Posted April 29, 2018 (edited) "for them to trust you they need to know you" this is called reputation. This may help: http://network.ubotstudio.com/forum/index.php/topic/19547-how-to-avoid-antivirus-and-windows-alerts/ Edited April 29, 2018 by Marani Quote Link to post Share on other sites
Gogetta 263 Posted May 9, 2018 Report Share Posted May 9, 2018 You can not use certain plugins that have licensing. They are encrypted and so is ubot to a point. Send your bots to AV's to run through, should help. Regards, CD Well I have ran a test with all 3rd party plugins disabled and compiled an empty bot with no code in it. Still Virus total came back alerting me that it contains a virus. So yeah, it's not just the plugins that triggers the warnings. Quote Link to post Share on other sites
vexpert6@gmail.com 0 Posted January 13, 2021 Report Share Posted January 13, 2021 On 4/21/2018 at 5:16 PM, Marani said: Simple fast solution: explain to customers and users that there's no virus in your bots, they trust you if you have a good reputation. Another solution is to digitally sign your bots which is not cheap, and you need to know, to cover Windows Smart Screen warning you have to purchase EV code signing, even more expensive. Does it take care of false positives? they claim it does, I haven't tried yet. but that's the thing I must do, after reading and talking to a few cert providers support staff. Macster in a thread explained Smart packer Pro in addition to the cert (he's absolutely trying to help), contacting to the support staff of smart packer, they said: Signing packed executable will probably prevent most of such warnings. so using the trial version I gave it a shot and packed one of my bots. the result... I use Virustotal to see how AVs treat the bots. before packing I got around 3 alerts by VT (just alerts like "unknown"), after packing, it became double and became Backdoor and Trojan...!!! So this tool does not work for me. Wrapping it up, signing bots would definitely help. have plans to do it in the future and make sure to contact the provider to get a better help prior to spend money! I have tried digitally signing ubot compiled bots... but after signing the .exe doesnt open . Quote Link to post Share on other sites
PRO 69 Posted July 12, 2021 Report Share Posted July 12, 2021 I recommend not to sell bots to customers but to run them on your own servers and sell the service. Quote Link to post Share on other sites
LoWrIdErTJ - BotGuru 904 Posted August 7, 2021 Report Share Posted August 7, 2021 If i lived by that standard i wouldnt have been in business the last 12 years, making and selling automation software totaling more than a million dollars in sales. Educate your customers and there is no issues. Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.