Introducing, The New Prevx Edge.

Sent email. Thanks.

 

The settings are all on default, I never touched them...

The log shows this:
[29/5/2009 19:28] The file [D:\Own\d2007\ADS Scanengine\ads.exe] has been blocked because it contains a threat of type [Community.OuterEdge] - Identity: 5AA9ABA30058BB23AE5C063223C8740010F08754

They are plain delphi 2007 programs, just compressed with upx or pecompact2 to reduce their size.

And about the digital ID, its far too expensive to get a digital ID. Consider this are all freeware application, I do not make any money with them...
And the requirements are just plain stupid to get a digital ID... I was already talking to comodo regarding this.

 

The warning which we are showing is correct - the file should have a Community.OuterEdge detection in this case. Very very rarely would an average user actually encounter software only ever seen by themselves. The file which you have pasted above is flagged because it is packed/encrypted and absolutely brand new - you were the first user to ever see it (and the only user still). Therefore, because of the age/spread heuristics, the file is logically flagged before any further data is gathered from the file.

You can circumvent this warning by not packing your software or by sending us download links when you release a new version - this is a common practice by software developers when dealing with AVs (we have to do it with every new release or update).

 

Sure I am the first user who "see" it. I guess every programmer is the first user...

That it is packed does not mean its malware. You cannot consider that a brand new packed program is malware, without analyzing / unpacking it, like other av scanner do.

And sending download links... I update at least 2-3 times a day my programs... I would have to hire somebody just for keeping you updated about new releases...

Look at the VT report here: http://www.virustotal.com/analisis/...65d922cf2a387b9416565a02d324d530c7-1243599386

...

 

Joe,
A question about the new Secure Browser/Sandbox feature.
If I am browsing with Firefox using the Secure Browser and I get a warning that I have malware etc. in the Sandbox - how is it cleaned up. Do I:
a) clean it up with Prevx as is done at the moment - or
b) just close the Secure Browser/Sandbox and its gone as it is with Sandboxie

 

.
PrevxHelp

Outstanding Prevx Customer Service )


I had hesitated to buy a license for Prevx because of my concerns about activation issues after reinstalling my OS.

Well, turns out my concerns were totally unjustified.

I had to reinstall Windows this AM.

Sent a message to PrevxHelp requesting a new license.

My license was reactivated within an hour

(I suspect that if my request was made during normal business hours. the reactivation would have been done even sooner.)

Thanks

.

 

will prevx detects active hiden rootkits?thanks

 

We aren't saying its malware, we're saying it is blocked by the Age/Spread detection, which is correct.

 

Yes, that's one of our strong points You can read about one of our more recent conquests from: http://prevx.com/blog.asp

 

I indeed would have gotten it sooner but I've been stuck in a hotel with poor internet service You can always write into our customer service inbox if I'm not responding fast enough as well, or with a license key issue like you had, you can sign up for MyPrevx (http://my.prevx.com) and use that interface to deactivate your current computer, which should allow you to enter it in a new computer.

Let me know if you need anything else

 

thanks i am running malware defender with prevx in one of my pc's and it is fast

 

PrevxHelp, as a consequence of this enhancement, Prevx will now be able to be compared to other “non-cloud” anti-virus vendors using methodologies such as those employed by AV Comparatives – correct?

Thank you.

 

No, the offline support is only in as a backup in the event that the internet is unreachable (i.e. if an infection is blocking us from connecting). It does not have anywhere near the strength of the whole Prevx database and is just a list of simple signatures of known malicious programs.

 

Have you tried adding your Delphi app's folder to the excluded list in Prevx's Detection Overrides?

That works for me when running console-mode apps created with a C++ compiler.

 

We've decided to centralize the sandboxing around cleanup rather than true sandboxing for usability reasons. This way the user won't be interrupted if they do want to keep the program and they will be able to remove it if wanted (so the answer is A )

 

Is there any chance of a Prevx Forum here at Wilders?
When threads grow this long,it is near impossible
to see if ones queston or comment has not already
been "done to death" twenty pages back.

thanks

 

Ok, i have an issue that bugging me. I'm signed up on myprevx and i get email updates if one of my system is infected. Well, i keep getting a notice that one of my systems is infected. I look on the system and prevx says clean and the status doesnt show any cleaned threats in the last 60 scans. i just did a deep scan and it came back clean, but then i get another email saying my system is infected. Ideas? i've tried looking at the log, but its not entirely intuitive as it looks like a couple places it detects malware, but it doesnt say it cleaned anything and in the main screen it doesn't list any detected threats. i've included the beginning of the log where and the last line.


Some non-malicious files are not included in this log.
Heuristics Settings: Age: 2, Pop: 2, Heu: 4 (Dir: 1)
Last Scan: Fri 2009-05-29 10:10:44 US Mountain Standard Time. Number of Scans: 60. Last Scan Duration: 3 minutes 34 seconds.
[DN] (ACTIVE) c:\windows\system32\etdcoinst.dll [PX5: 8231E96B009B55F3069F03D7EEC2D700641EE0B9] Malware Group: Community.OuterEdge
[D] (ACTIVE) c:\windows\system32\btbigbmp.dll [PX5: CBAD643300FE9C7FE02F01413D1A7900694AD5A4] Malware Group: Community.OuterEdge

----------------------
Previously Detected Files:
[DN] (ACTIVE) c:\windows\softwaredistribution\download\593d5ddb620b1f1b4bef986c655fd062\sp2qfe\mswrd8.wpc [PX5: 7D4A2B01000D9F3144CD0444FAEE87007220EF06] Malware Group: Community.OuterEdge

 

Hello phxcobra,
Those lines in the log don't necessarily mean it was detected as infected. Could you please PM me your license key so I can try to see what is causing the warning?

 

This is indeed a great point as well as a great idea!!

 

What, you don't like scrolling through 170 pages of posts? However, if anyone has any questions which they suspect have been hashed through already on the forum, feel free to PM me

 

Joe - Hoping you keep the new version as lite and compatible as Prevx 3 is now. It works well with my other security, does not slow down my machine as very early versions of Prevx did (a few years ago). It is a simple, eloquent security product. Hoping it stays that way.

 

Don't worry - if the new version was to hurt system performance or get larger than 1MB, I would be looking up at the guillotine being prepared to fall on my outstretched neck

 

I agree 100% with this idea. The longevity of this thread and obvious interest in Prevx here at Wilders makes this a great idea...

 

I think a Prevx support forum on Wilders is a good idea, and in my opinion, one the Prevx folks should consider.

 

Haha true

"What is your security setup" was started Dec. 15, 2005 - 1261 days ago. This thread was started Nov. 13th, 2008 - 197 days ago. If measured from the start, the "What is your security setup" thread has an average of 3.85 posts per day (with 4855 posts as of now) and this thread has an average of 21.5 posts per day (with 4236 posts now).

Therefore, if the growth is completely constant from the start of each (which it obviously isn't but it would be too hard to snapshot the acceleration from a post-by-post basis ), we should catch up with the "What is your security setup" thread in 35.07 days