Is Prevx good?

Little question: how responsive is PrevX viruslab to f/p reports? Just re-installed the CSI and got two very obvious f/p's

One of them involved another security product so I just wonder how fast they usually handle stuff like this.

 

As I've said many times before, we are adamantly working on improving support for all of our users and will continue to do so. We were a fraction of the size we are now in 2007 (contrary to some people's belief, we have a LOT more users outside of Wilders and Castlecops )

I generalized the classification of Prevx 3 - it is actually still an anti-malware app, not just anti-virus.

As for rebuilding from the ground up: retooling is always an important part of software development. Prevx2 was heavy on system resources and that was because of a conceptual break between the drivers and the usermode code. Now, the drivers and usermode code are integrated far tighter, making a much more stable, and much better user experience all around.

 

PM me or Marco and we'll have them fixed in minutes, or write a support message and we will also have them fixed in minutes

 

I did write Support Msg via website.

 

And what happened?

 

We fixed it just now?

 

Now that's what I call great service

 

Just to give a bit of full disclosure - we've fixed one FP on his system, but there is still some incompatibility with a virtual keyboard component of Kaspersky which it appears to be hiding from the file system. The QA team is installing his exact version and trying to reproduce the problem now.

 

From the reporter's point of view I can confirm that 2 other f/p's have indeed been fixed

The KIS rootkit f/p, which likely is far more complex, remains.

 

Yes it is, indeed We're working on it

 

I clicked on your link to download the free check.

But it tries to download a file called:

23A16531B30F4E7BA326.exe

Is that your file? If so, I am worried to run a file with such an unusual filename.

 

That is our file - sorry for the scare!!

We are naming it randomly to evade some malware which blocks us when we're named 'PREVXCSIFREE.exe'

Some infections like XP Antivirus and the Braviax rootkit block us before we even get a chance to run, and, by naming our file randomly, we can completely clean them

 

Understood

Ran it and it reported my system clean

 

i should hope so.

it's good to know that the scope of Prevx protection has not been more narrowly focused.

thanks for this disclosure. would you be able to say when you able to at least discuss ver3 more openly? or when your organization will begin promoting it? thanks. looking forward to a productive dialog with Prevx once again.


Mike

 

Most definitely - we're deciding on a date for the beginning of the Prevx 3 beta, but it should be anywhere between two weeks from now and a month or so from now. Right now we are still keeping a bit quiet on it, and I honestly don't know exactly when it will start, but I will let everyone here know as soon as we have the code out.

 

The Kaspersky incompatibilities should be completely sorted out in version 3.0.0.120.

You may need to manually download the new version to update it, as ESET is still producing a false positive against us so we can't release it as an update just yet.

 

Sophos Antivirus has a FP on your CSI product reporting it as malware.You can contact them too.

 

Yes. As of 3.0.0.120 all is green in my system.

 

Thank you for the confirmation!

We have also contacted Sophos to fix their FP on us - them and ESET always produce a false positive on every new version of CSI, so, it will just take a couple days to get it all sorted out.

 

Well, it seems I found something else

KIS memory scan with CSI Self Protection enabled leads to BSOD event. At least in my system (to others, note that self defence is NOT on by default!)


I submitted support message, of course, with minidumps from BSOD events and additional info about system/how I can replicate this.

 

Hello,
Thank you again for your information - CSI and Kaspersky definitely don't seem to play too well together on your system! We will be investigating this shortly.

One interesting thing is that Kaspersky actually refuses to install if it detects CSI on the system, which may mean that they are aware of an incompatibility... however, we will know once we finish the testing on our end.

 

Never say never but .... I doubt very much that I will pay to update to be able to use version 3 ...... and as version 2 does not work for me and there is no mechanism possible to suspend / reissue a short license.



once bitten twice shy

 

It is nice to see, that finally they are at least talking to us!

 

If i manually check for updates it will each time say theres a new version and update but it remains the previous version wich is v3.120

 

Hello all,

I cant clean up this infection, PREVX CSI detects it and then clean it, only to have it back on every reboots after I scan...

I disabled the system restore, and nothing... Another issue is what on earth is "Cloaked Malware", as I cant get an MD5 or SHA1 ash code to search online for it all I get is this.... "Cloaked malware" I know it's a root kit being detected but it's unable to clean it...

Note: PRevx 2.0 (Latest updates ) is also installed on this client PC and is unable to even detect the infection. Also GMER fails to see it, NOD32 3.0 latest and Superantispyware see nothing either....

Here is the "Failed" successful clean up log:

Last Scan: Sat 2008-10-04 16:05:34 Eastern Daylight Time. Number of Scans: 5
H:\WINDOWS\system32\ATIODCLI.exe [PX5: 28A0D25D00582171C24500281FA708008AA90806] Malware Group: Cloaked Malware

Prevx CSI v3.0.0.120 Cleanup Log for 4/10/2008 16:13
(0) Remove File: \DosDevices\H:\WINDOWS\system32\ATIODCLI.exe

Cleanup Complete
=====================================


Here is a nice pic: