Introducing, The New Prevx Edge.

I agree looking real good!

TH

 

Looking good here, too!

 

To help you envisage why it looks "weird", here's a screenshot of the background alone without the "content area" covering it
http://img2.imageshack.us/img2/2971/p3gui.jpg

I originally wanted the main content area to be semi transparent so that you could see the background faintly through it, but Joe was scared of breaking the 1MB boundary. He's the bane of my graphical existence!

 

Why my version is 3.0140?

 

3.0.1.55 is still beta.
3.0.1.40 is the last stable final release.

 

thanks you so much... is it possible to test the beta?

 

Send PM to PrevxHelp

 

but he did say .55 should be released today to all.

 

All I have to say on PrevX Edge is that it's as good as any other blacklist scanner which ain't that good.

The virut samples I submitted a while back are detected now but would have gone through any and all blacklist scanners and destroyed any system at the time including Prevx.

Wanna see some detection rates of blacklists scanners?
http://www.malwarebytes.org/forums/index.php?showforum=30

 

virut is a very difficult infection for any AV to handle - its a polymorphic file infector which has hundreds of variants.

Edge may be "as good as any other blacklist scanner" on this particular infection, (which is incorrect as Edge isn't a blacklist scanner, but regardless ) but nothing is 100% and a product can't be judged on a single sample.

Edge also has realtime protection which would most likely have blocked the infection - scanning a file ondemand is not an accurate assessment of Edge's abilities.

However, if you do still have a sample which gets past us, please let me or EraserHW know and we will investigate why and add protection

 

Fair go PrevxHelp, your app is like any other that uses blacklists and or heuristics.

Enough is enough, blacklists have no security at all.

Stop kidding yourself and most others as I really feel like classing blacklist scanners as rogue apps seeing they really can't keep anyone safe.

Want to be safe then Sandboxie, Returnil, Defensewall and or Shadow Defender are the way to go, along with images and data bakups to externals.

 

Hmm.... I tend to doubt that statement But regardless, the security provided by blacklists (which we use only as a supplement to our other technology) is not 100% - we are all well aware of that - but neither is any other type of security.

You may want to unplug your computer and turn it off if you're looking for perfection

 

ah ah, PrevxHelp, after about 2 gig of downloading/testing malware samples in the last twelve months, including those virut samples that went straight through your and all other blacklist scanners then I'll stick by my statement that if you want to be real safey then use the apps in my siggy or Defensewall and Shadow Defender!

And besides I have several installs on several hard drives each over several PC's and I still employ ghost images on all of em!

 

Edge 55 reports Online Armor GUI for the latest 3.5.0.8 beta as a threat-see attached. Should I just right click entried and report as false positive, or would you like to see something else. High heuristics picture added.

 

PM sent

 

Regarding sandboxie, returnil and shadow defender, awesome programs which all users can benefit from.

However, to keep a file, a user using those products still doesn't know if the file or install is safe.

Defensewall, another awesome product which stops ALL infections on a user's system. Thoroughly recommend it.

But if it's preventing malware doing harm to the 'user's system', and I might be wrong on this, as the user's system isn't being affected by files which could very well be malware, would it prevent a user copying malware files say to another user, eg 'here, my files are safe, here you go dad, install these files from my USB'.

In my opinion, you still need a blacklist, or whatever type scanner, to check the files, and ensure the files to be kept/saved are clean (when you're using sandboxie, returnil, shadow defender, or defensewall). Sure blacklist is not 100 per cent protection, but to me, it's better than having no blacklist scanner.

 

False positive fixed, and we fixed the signature which has been catching other OA betas as well so it shouldn't happen in the future

 

This is very true and I know that the developers of these products recommend that their solution be used alongside other security solutions as well. The reason is that its very hard to save users from themselves Once you do trust a program, it is allowed through. If you download a new program which you want to install and it doesn't work inside the sandbox/untrusted environment for some reason or if it requires driver installation, etc. you will be forced to take it out of the sandbox and install it onto the system.

Programs like the ones mentioned above will protect you very well if you know the answer to the questions they ask before they ask them. If you are an average, non-technical user you would not know how to answer the prompts correctly and most likely let something through which should have been blocked if you did want to use it.

Malicious software can come from legitimate vendors and from legitimate sources - one famous example being the Sony Rootkit. A user wanting to listen to their CDs would be forced to install a rootkit onto their system. After having bought a CD from a store, its generally assumed that it is legitimate so it would be allowed through a sandbox so that the CD would work properly and then the user would be infected.

"Blacklisting" solutions and all of the non-default-deny programs on the market all work on automating the decision process to appeal to a majority of the users. If every user cared enough to learn the ins and outs of computer security and kept up on the newest threats by reading forums like Wilders, we would have FAR fewer problems today. However, they don't and they won't because computer security should be silent and automatic rather than requiring research by the user - that's what they're paying the companies to do for them

 

Thanks Joe; rescanned and all is well again.

 

3.0.1.56 up and running.

 

No more Prevx CSI - free malware remover? Only detect, but doesn't remove?

 

CSI has only offered free cleanup for adware infections and the MBR rootkit but it detects other threats for free. We offer the cleanup as a service where we guarantee that we will remove all of the threats (and if we don't one of our engineers will assist you to clean it up) so we have to charge a small fee for it to remain economical

 

Prevx 3.0 is now officially released and v3.0.1.56 is available to the public Existing users will upgrade over the next day or two as we get confirmation that various AVs correct their FPs against our new build and that everything is working well for new users.

Please let me know if you have any questions about the transition or the new product!

 

3.0.1.56 running fine here.

I have been running Edge on medium self protection for ages but have now set it to maximum - are there any known issues / disadvantages with this? The only other AM I have is Windows Defender.

 

No, that should be fine We've done a significant amount of work in the more recent versions which reduces the chance of incompatibilities with maximum self protection so you should be safe to use it on maximum