Prevx SOL and KeySrambler versus Commercial Keyloggers

Discussion in 'other anti-malware software' started by aigle, Oct 22, 2010.

Thread Status:
Not open for further replies.
  1. moontan

    moontan Registered Member

    Joined:
    Sep 11, 2010
    Posts:
    3,931
    Location:
    Québec
    we tested it a couple months ago and neither me or another person, can't recall the name, could get Trusteer to work.
    why don't you give it a try and tell us your result?
     
  2. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,102
    Location:
    North Carolina USA

    could it be, the frantic pace to complete version 4, has allowed less time to tweak and ensure past fixes are kept current.
     
  3. Scoobs72

    Scoobs72 Registered Member

    Joined:
    Jul 16, 2007
    Posts:
    1,113
    Location:
    Sofa (left side)
    Well it certainly hasn't seemed frantic to me :)

    From my perspective, either this is a new compatibility issue or a regression. I'm betting on the latter, but these things always tend to be more complex than it seems at first.
     
  4. Saraceno

    Saraceno Registered Member

    Joined:
    Mar 24, 2008
    Posts:
    2,405
    Whatever is happening, prevx will make the necessary update as soon as possible (if it is required). That I do know.
     
  5. Triple Helix

    Triple Helix Specialist

    Joined:
    Nov 20, 2004
    Posts:
    13,269
    Location:
    Ontario, Canada
    PrevxHelp tested it on XP SP3
    aigle & CloneRanger are using XP SP2 that could be the difference? Just a thought? And all MRG test on Win 7 32bit.

    TH
     
    Last edited: Oct 24, 2010
  6. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
    does SOL have limitations on x64?
     
  7. Scoobs72

    Scoobs72 Registered Member

    Joined:
    Jul 16, 2007
    Posts:
    1,113
    Location:
    Sofa (left side)
    But that doesn't explain why SOL failed on my fully patched XP SP3
     
  8. m00nbl00d

    m00nbl00d Registered Member

    Joined:
    Jan 4, 2009
    Posts:
    6,623
    OK. This statement is quite worrying, isn't it? You're saying that people with different language keyboard configurations aren't equally protected. They should, shouldn't they? After all, they're paying for something (Excluding the Facebook version.) that should protect them.

    I guess a lot of hard work needs to be done to protect other language configurations. ;)
     
  9. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    All: I'm still unable to reproduce any leakage of data here. If anyone can reproduce this regularly, please send me a PM so that we can have a remote support session (even if it is into a VM). I'm testing on XP SP3 with IE6, 7, and 8 - no other security software - and nothing is stolen from any of the three keyloggers...

    Scoobs72 - I've sent you a PM :)
     
  10. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    SafeOnline supports all languages that are listed on our download page: http://info.prevx.com/downloadcsi.asp

    Some other languages haven't been tested and have characters that don't fit into the alphanumeric set. However, the rest of SafeOnline's protection is still loaded behind them.
     
  11. Sveta MRG

    Sveta MRG Registered Member

    Joined:
    Aug 16, 2009
    Posts:
    209
    Hi,

    Trusteer Rapport now passes all our tests, you can take a look at our latest Online Banking/Browser Security project.

    Our advice is if your bank provides Rapport, you should use it as it will provide protection that your Anti-Malware application or Internet Security Suite most likely won't.

    Regards,
    Sveta
     
  12. m00nbl00d

    m00nbl00d Registered Member

    Joined:
    Jan 4, 2009
    Posts:
    6,623
    Specially, if those banks, refund their costumers if Rapport fails to protect. :)
     
  13. moontan

    moontan Registered Member

    Joined:
    Sep 11, 2010
    Posts:
    3,931
    Location:
    Québec
    unfortunately Trusteer doesn't not work with either Geswall or Sandboxie, and probably not Defensewall either.

    i'm not about to bump off Geswall for Trusteer. ;)

    here is a list of the programs that are compatible/incompatible with Trusteer:
    -http://consumers.trusteer.com/compatibility-other-security-software-
     
    Last edited: Oct 24, 2010
  14. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    Hello all,
    I've just completed an extensive remote debugging session with Scoobs72 (Thanks again! :)) and corrected some incompatibilities with virtual machines and SafeOnline's keyboard protection.

    Actual users have not been affected by this - only people running in a virtual machine from what I can see. If anyone is interested in trying this new test version, please send me a PM and I'll send you over a copy!

    Also, for what it's worth, from what I can see, the tests done against ShadowDefender are also incorrect - on real hardware, it would protect the system properly.

    Let me know if you have any questions!
     
  15. Rivalen

    Rivalen Registered Member

    Joined:
    Oct 18, 2005
    Posts:
    413
    If swedish keybord with å ä ö isnt protected - maybe I shouldnt buy a prevx license over a Antivir premium license.
    I am right now using Antivir Premium 30 day evaluation and Prevx free - both on realtime. Will decide which one to buy in a couple of weeks.

    Prevx concept overall sounds promising.

    Any advice?

    Best Regards
     
    Last edited: Oct 24, 2010
  16. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    We've specifically added Swedish protection in some of the more recent builds (thanks to shadek here on Wilders). And anyway, again, SafeOnline is far more than antikeylogging - the real value comes from the Man-in-the-Browser protection and Man-in-the-Middle protection.
     
  17. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,164
    Location:
    UK / Pakistan
    Good to hear.
     
  18. moontan

    moontan Registered Member

    Joined:
    Sep 11, 2010
    Posts:
    3,931
    Location:
    Québec
    i'm still waiting for U.S. English International input support! :p
     
  19. acr1965

    acr1965 Registered Member

    Joined:
    Oct 12, 2006
    Posts:
    4,995
    I'm sure this is off topic but I don't know if it's relevant enough for its own thread or not. Mods, if it is relevant for its own thread please move it to the appropriate forum. But, here goes- say someone uses one of the Linux versions- would a man in the middle attack, keyloggers or other online, info stealing malware be able to steal info from such a set up? Since the malware is online and essentially interested in stealing input data from the computer user does it make much difference what system a person uses? If all the systems used have to input keystrokes online at a web site (which also has to be able to interpret the keystrokes) is type of operating system really all that relevant with this particular malware type?
     
  20. Scoobs72

    Scoobs72 Registered Member

    Joined:
    Jul 16, 2007
    Posts:
    1,113
    Location:
    Sofa (left side)
    Yes it is relevant because (with the exception of man in the middle attacks) the malware still needs to install on your computer. But very little malware is written for Linux because from the malware author's perspective "nobody uses it". It's simply not profitable for them.
    With respect to man in the middle attacks against https protected websites then the operating system doesn't matter. Some of these types of attacks can be difficult to execute in practice, although if successfully performed they represent a goldmine for the attacker. Furthermore, some are theoretically 'silent' to the end user (and could not be detected by any software installed on the PC), whilst others based on DNS hijacking can be detected by software such as SOL and Online Armor's banking mode.

    However, whilst the 'silent'/undetectable attacks may strike the fear of God into you, I do not believe there has been a real-world example. So far they are confined to Defcon presentations only. In contrast, attacks based on DNS hijacking have happened in the real world and SOL protects against this.
     
  21. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
    does it?
     
  22. Scoobs72

    Scoobs72 Registered Member

    Joined:
    Jul 16, 2007
    Posts:
    1,113
    Location:
    Sofa (left side)
  23. firzen771

    firzen771 Registered Member

    Joined:
    Oct 29, 2007
    Posts:
    4,815
    Location:
    Canada
  24. CloneRanger

    CloneRanger Registered Member

    Joined:
    Jan 4, 2006
    Posts:
    4,978
    Are you classing ShadowDefender as a VM or did you mean VM the app ?

    Incorrect in what way ?

    @ aigle

    Sorry i missed your Post # 37 Thanks for the links As you probably know i found them and did the tests ;)
     
  25. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,164
    Location:
    UK / Pakistan
    Yes. Thanks for testing too.
     
Thread Status:
Not open for further replies.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.