Future Changes to Prevx

I thought about all this and have to say that a HIPS is not what PrevX3 want to be or should be. It is fantastically light and clear to use and needs to remain like that.

So i thought about how to protect the user against threats which are absolutely unknown and came to following conclusion:

What about a holding stack for unknown executables:
Start of an unknown Programm -> Prevx blocks the action and querys whether the programm should be blocked till the answer of the cloud is received or not.
Implementing that as a function which is unchecked by default won't disturb the normal user while pros will get maximum protection.
If you are sure that the programm you have executed is trustable you dont have to wait the clouds answer. If you are not sure you can hold the action till the cloud is sure.

 

Sadly this is kinda where the FPs reported come in and PX's reliability on Age/Spread heuristics (which I can see a point in, but it screws it for some people indeed to be honest). Sure, the current option to automatically remove "found threats" would be vastly improved with this - great suggestion! - but the problem which is "for all AVs" (I've said this before - products that find FPs that cause problems for me goes off my system. NOD... Don't forget that I dropped ThreatFire - and you know how much I'm used to go on about it, partly how I prefer its thinking more to the Age/Spread criteria) creates a problem.

 

Maybe you can Add HIPS/behaviour blocker as an addon or make a separate program with both and sell it as a choice like when you had CSI & Edge! I just think it would make it a more complete solution.

TH

 

Will there be a possibility for the user to check why a file is blocked to verify a "heuristic", "age-spread" or "flaged bad by the server" detection? A Feature like this added into the "Found -> Block" PoPup would be very good!

 

This is built in already - the block popup will say "Age/Spread Criteria Violation Detected" for an Age/Spread detection, "Edge Heuristics identified a threat in the file:" if found by the "Advanced Heuristics" slider-bar detection (note - this is only a small piece of our heuristics ) and it will say a more descriptive name if it finds a threat using the database (i.e. Malicious Software/Fraudulent Security Program/etc.)

 

Wow. Cool. Hehe. Thats great. I think i never got an age spread detection so i thought it is not built in.
Good to know!

 

Hello,

This month I had 2 of my clients purchase PrevX licenses (140 licenses total). I did try renaming the installer as suggested and it does a silent install but it does not use the license key - I would still have to go to each client and enter the license - luckily I can leave their internal IT staff to deal with it
Any advice?

Thank you

 

Hello,
We have had some reports of this functionality not working properly and we're working on correcting the issue. However, for now we have a workaround which may be viable for you.

First: create a registry key named PxLic under HKEY_CURRENT_USER\Software\ and then create a REG_SZ value named CSILic under this key with data of the license key to be applied.

Then, run the license-key-named installer and the installation will take place silently except for one initial prompt which shows a message to the user saying that the license is accepted. Besides this initial prompt, there are no other dialogs to be answered and the prompt will not show on subsequent uses.

Please let us know if you have any questions with this and we will be correcting the license key automatic installation behavior in the next version.

 

Prevx needs a 'Last updated' kind of thing

Example: Last Update: 1 minute ago

 

Prevx is constantly kept up to date so we don't have this. However, our volume of updates per day a couple years ago (the last figures I'm aware of) was about 250,000 updates per day, which equates to around 173 per minute so I think it would be safe to say that "Last Update:" will always be "Less than 1 second ago"

 

Any chance of a Prevx Bootable .iso for CD/DVD?

 

We currently don't have a need for a bootable ISO but we have it in the books if we do end up running into a need for it.

 

Seriously make the malware uploading much easier look at this for example 2.ly/2
see how simple it is?

 

All you have to do is follow the Directions here! https://www.wilderssecurity.com/showthread.php?t=245129

TH

 

Way too much Im not signing in to my e-mail just to send something, i guess it's just me so nvm.

 

You can also just send a message here with an entry from a scan log and we can investigate it Also, uploading it to VirusTotal will get it sent to us (albeit with some thousand other files every day) but feel free to PM a link to what is missed from VT and we will investigate.

At the current volumes of missed samples that we receive to our report@prevxresearch.com email address, we do not see it necessary to expand to a dedicated system. We already gather the necessary information automatically. If a threat was to start spreading quickly, we would latch onto it immediately and if a threat is extremely low volume, we still have the details on it so we can just as easily add protection.

 

Hi Joe,

Possibility of an easier way to empty Quarantine in the Undo Cleanup window?

TH

 

and dont forget Joe, the actual number of processes being protected.

 

This is a big component on the roadmap in v4 - it won't make it into 3.5 yet but we're developing a nice techie friendly tool for v4

 

Added to the list

 

you know Joe, in 3 months and 2 days, Edge will be 1 year old which is also the date of my 16th birthday. Who would have ever thunk it that you would be here, with the rest of the Prevx team, soaking the sun up at Wilders less then a year later..


well, maybe one visionary.

 

Wilders is definitely a great place to be - always sunny and warm by the beach (the crab, seagull, and dog seem to be there more than all of us though, but I guess one can never get enough Wilders sun )

 

And as a clarification, trjam, you aren't 16 years old (nice try ) however, you're correct that your 16th birthday shares the date of your upcoming one

 

I actually believe him when he says he is - my sensors says so.

 

That was a typo, he pressed the 1 before the 6
Perhaps he's like me, only 16 in mind and spirit - that's all that matters