• After 15+ years, we've made a big change: Android Forums is now Early Bird Club. Learn more here.

Help Should A Banking App considered Dangerous flagged as Malware by CM Security.

Ankush Das

Ankush Das

Newbie
Hey folks, I installed a bank's app, which lets netbanking. But after I installed it, it was flagged as a Malware ( RISKWARE.SMSReg.v ) by CM Security. Should I flag the app as harmful ? And report it?
 
Last edited:
No problem! :)

Testing in what way? It scans your device for malware.

I'm not sure if it will remove it as I've never had anything flagged as malware on my phone, but it will point out bad apps and tell you what you need to uninstall.
 
El Presidente said:
I wouldn't trust CM Security. I'll dig out a thread which gives more info once I get home from work, but it's basically bogus iirc.

Install Malware Bytes, run that and see if it flags the app as bad: https://play.google.com/store/apps/details?id=org.malwarebytes.antimalware

Where did you download/install the app? A legit source?
Click to expand...
Well, CM Security has always been ranked as No.1 by AV-Test and it is the only app which detected the major malware apps in the Google Play Store.
And ya its GOOGLE PLAY STORE. The developers are also legit.
I will definitely give it a try by installing Malwarebytes.
 
Ankush Das said:
Well, CM Security has always been ranked as No.1 by AV-Test and it is the only app which detected the major malware apps in the Google Play Store.
And ya its GOOGLE PLAY STORE. The developers are also legit.
I will definitely give it a try by installing Malwarebytes.
Click to expand...
Malwarebytes is useless in my opinion. Because the app didnt even do real time scan and notified the status whether its safe or harmful. What's the use if it can't prevent real time. And after that i manually started the scan but it wasn't flagged as MALWARE. AND I DID CHECK ITS AV TEST REPORT IT GOT LOW SCORE IN PROTECTION. SO i would recommend you to move to CM Security. The best present out there.
 
https://nakedsecurity.sophos.com/20...-at-deceptive-advertising-of-play-store-apps/

Clean Master resorts to scare tactics so you install to remove threats which don't exist.

http://androidforums.com/threads/pu...k-killers-ram-optimizers-and-the-like.896663/

Also have a read through that thread. Whilst not dealing with CM directly, it touches on it and why CM is pointless.

http://forum.xda-developers.com/showthread.php?t=2594845&page=8

A few posts there show it's useless too. The Mods have removed the Play Store links from the OP as they don't want people downloading it.

And MalwareBytes definitely does real time protection. I took the attached screenshot from the Malware Bytes setting menu.
 

Attachments

  • 2015-04-05 13.20.27.png
    2015-04-05 13.20.27.png
    158.1 KB · Views: 75
Personally I wouldn't trust CM Security as far as I could spit out a rat, and is nothing more than snake oil. A few weeks ago it was flagging FQrouter as being a virus on a friend's Samsung S4. Thing is FQrouter is a legitimate open source VPN app, that's frequently used to bypass Chinese govt. internet censoring, the GFW, and is reliable. CM Security is from China...hmmm!.

Might want to have a read of our forum sticky about Cheetah Mobile's snake oil and scareware products.
http://androidforums.com/threads/pu...k-killers-ram-optimizers-and-the-like.896663/
 
El Presidente said:
https://nakedsecurity.sophos.com/20...-at-deceptive-advertising-of-play-store-apps/

Clean Master resorts to scare tactics so you install to remove threats which don't exist.

http://androidforums.com/threads/pu...k-killers-ram-optimizers-and-the-like.896663/

Also have a read through that thread. Whilst not dealing with CM directly, it touches on it and why CM is pointless.

http://forum.xda-developers.com/showthread.php?t=2594845&page=8

A few posts there show it's useless too. The Mods have removed the Play Store links from the OP as they don't want people downloading it.

And MalwareBytes definitely does real time protection. I took the attached screenshot from the Malware Bytes setting menu.
Click to expand...
WELL, It is CM Security. Not the Clean Master App. It's of Clean Master. And in my opinion the AV-Test GUYS aren't MAD enough to rate MALWAREBYTES WITH 3 POINTS AND CM SECURITY WITH 5 STARS. So, I would say that the MOD's who did this are CRAZY.
 
mikedt said:
Personally I wouldn't trust CM Security as far as I could spit out a rat, and is nothing more than snake oil. A few weeks ago it was flagging FQrouter as being a virus on a friend's Samsung S4. Thing is FQrouter is a legitimate open source VPN app, that's frequently used to bypass Chinese govt. internet censoring, the GFW, and is reliable. CM Security is from China...hmmm!.

Might want to have a read of our forum sticky about Cheetah Mobile's snake oil and scareware products.
http://androidforums.com/threads/pu...k-killers-ram-optimizers-and-the-like.896663/
Click to expand...
Well, that doesn't seem to help here :-) You all are talking about the NEGATIVE points of CM SECURITY which gets the #NO.1 RANK CONTINUOUSLY FOR 4-5 times from AV-Test. If anyone can explain me about the SMSReg.v Riskware i could figure it out on my own. No offense with anyone out here. But I am on the No.1 side :-)
 
It's your device, it's up to you what you install/use to keep your phone safe. We've pointed out why we think CM Security is worthless and you'll probably be hard pushed to find any experienced forum member here who believes otherwise, regardless of what av-test says.

My personal recommendation would be to disregard the warning. If it's an official banking app from a legit organisation, installed from the Play Store, there's no reason it would contain malware.

However, if you're that convinced CM is wonderful, uninstall the banking app.
 
Ankush Das said:
Well, that doesn't seem to help here :) You all are talking about the NEGATIVE points of CM SECURITY which gets the #NO.1 RANK CONTINUOUSLY FOR 4-5 times from AV-Test. If anyone can explain me about the SMSReg.v Riskware i could figure it out on my own. No offense with anyone out here. But I am on the No.1 side :)
Click to expand...

Here's the thing, I don't really care for AV products and tests, I don't use them, no need for me.

But I do care when I come across a problem myself, and it seems very ironic that a Chinese security product is flagging a known good open source VPN app, who's most common usage is to bypass Chinese government censoring.
 
Last edited:
El Presidente said:
It's your device, it's up to you what you install/use to keep your phone safe. We've pointed out why we think CM Security is worthless and you'll probably be hard pushed to find any experienced forum member here who believes otherwise, regardless of what av-test says.

My personal recommendation would be to disregard the warning. If it's an official banking app from a legit organisation, installed from the Play Store, there's no reason it would contain malware.

However, if you're that convinced CM is wonderful, uninstall the banking app.
Click to expand...
OKay. Thanks. But is the Riskware SMSReg.v dangerous or not? Here's the screenshot.
 

Attachments

  • Screenshot_2015-04-04-23-15-43.png
    Screenshot_2015-04-04-23-15-43.png
    105.3 KB · Views: 123
Ankush Das said:
OKay. Thanks. But is the Riskware SMSReg.v dangerous or not? Here's the screenshot.
Click to expand...

This is a link to a recent (February 2015) Android AV security test by AV Comparatives:

http://www.av-comparatives.org/wp-content/uploads/2015/03/avc_mob_201502_en.pdf

The Android security market seems to be all over the scale with a lot of vendors jumping in, some with shady results. I would recommend spending some time researching the subject before putting any AV product on your phone.
 
Ankush Das said:
H

Hey AV-COMPARATIVES is not the OSCARS for AV product benchmarks :)
Click to expand...

I'm not trying to rate, recommend or bash any particular AV product or review. Just pointing out there is a lot of information/misinformation out there.

A Google search of SMSReg.v looks like it could be trouble. Hopefully someone here will have a definite answer.
 
Look, it has to do with how AV-Test and AV-Comparatives work. While I trust them for PC antiviruses, I don't care a whit about their Android findings. First and foremost, the way they test is they keep a library of known "malware", some of which aren't really malware by the way, and see which app detects the most of them. Now some of these are considered malware because of the potential they have. Note your warning that it's labeled as "RISKWARE", which means it may be legit, it may be not.

This service (SMSReg) in particular works as a way for the app to send a message without interaction from the user. This is riskware because on some Chinese phones, this has been placed on the firmware for ads and stuff, using the person's credits to send messages to get ads, giving earnings to the manufacturer at the cost of the user's money. However, there is also a legit use for this service. Some apps have this for security. Say your phone gets stolen, and you have the banking app in there. Once the app receives an order via a certain condition (received a message with an instruction code from you, or the sim card of the phone was replaced, etc), this allows the app to send you an SMS with certain info, like IMEI of the phone, the phone's location, etc. If this service was not available, then the banking app cannot send SMS without interaction from the thief. This allows for behind the scenes SMS reporting without the thief knowing that his location is being reported.

So I'll suggest at checking the features of the app, if it has the capability to send SMS on it's own, check your credits if you are losing them without you knowing, and contact the devs.
 
You must log in or register to reply here.
Back
Top Bottom