Prevx on GpCode, Stuxnet and Blackday trojans

Discussion in 'Prevx Releases' started by constantine76, Apr 29, 2011.

Thread Status:
Not open for further replies.
  1. constantine76

    constantine76 Registered Member

    Joined:
    Dec 18, 2010
    Posts:
    178
    Hi;

    Lot of talking over here about Stuxnet, Blackday, GpCode trojans here and here


    Are we PrevxSOL users safe using default settings?

    If not is there a good setting to adapt that we may know?

    What is the behavior or how will Prevx act upon presence of these trojans?


    Thank you.
     
  2. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    Prevx should block these without a problem :) Feel free to forward any samples to report@prevxresearch.com in case you aren't sure but there is nothing technically difficult about any of them that would require non-default samples.
     
  3. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,011
    Location:
    Ontario, Canada
    Would the Free Facebook version of PSO protect these users or would they need a full License to Block? I'm assuming that's what the OP was asking but to make it clear!

    TH
     
  4. constantine76

    constantine76 Registered Member

    Joined:
    Dec 18, 2010
    Posts:
    178
    Yes I meant that. Thanks TripleHelix :)

    Also, I do not have the samples. Aigle was the one who actually did the test. Maybe Prevx can have the same samples used through/from Aigle so we will know the results. Fans will be grateful with it:)
     
  5. PrevxHelp

    PrevxHelp Former Prevx Moderator

    Joined:
    Sep 14, 2008
    Posts:
    8,242
    Location:
    USA/UK
    Thanks for the clarification - I misread it :) No, the free version of PSO will not block these in realtime. You will need a license key from the paid version to block them.
     
  6. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,057
    Location:
    North Carolina
    Good reason to have the paid.
     
  7. CloneRanger

    CloneRanger Registered Member

    Joined:
    Jan 4, 2006
    Posts:
    4,833
  8. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,011
    Location:
    Ontario, Canada
    I have merged the threads as it's on the same subject! I have also sent the undetected file to Prevx as the OP gave me a copy!!

    TH
     
  9. CloneRanger

    CloneRanger Registered Member

    Joined:
    Jan 4, 2006
    Posts:
    4,833
    So i see ;) Sorry didn't notice the other/this thread :(
    Good man :thumb:
     
  10. Habakuck

    Habakuck Registered Member

    Joined:
    May 24, 2009
    Posts:
    544
    How is it possible that PrevX detected BD if CloneRanger only opend the foldero_O

    I thought PrevX is only scanning on-execution?!
     
  11. vojta

    vojta Registered Member

    Joined:
    Feb 26, 2010
    Posts:
    830
    Blocking on execution is its main strength, but it's not limited to that.
     
  12. aigle

    aigle Registered Member

    Joined:
    Dec 14, 2005
    Posts:
    11,047
    Location:
    Saudi Arabia/ Pakistan
    Yes, it,s v strange.
     
  13. trjam

    trjam Registered Member

    Joined:
    Aug 18, 2006
    Posts:
    9,057
    Location:
    North Carolina
    Maybe a sign of things to come.;)
     
  14. Triple Helix

    Triple Helix Webroot Product Advisor

    Joined:
    Nov 20, 2004
    Posts:
    12,011
    Location:
    Ontario, Canada
    I can confirm that this variant of gpcode is now detected!

    TH
    [FONT=&quot][/FONT]
     
Thread Status:
Not open for further replies.