Avast WEBforum
Other => General Topics => Topic started by: Lisandro on September 23, 2004, 11:58:37 PM
-
Does anybody know about this software?
(https://www.prevx.com/)
The Home version is a freeware (https://www.prevx.com/homeoffice/prevxhome/prevxhome.htm)
They claim to be an essential complement to existing signature based Anti Virus and Personal Firewall products, the Host Intrusion Prevention capabilities of Prevx Home are the only realistic defense against the latest breed of fast moving attacks.
Within the simple yet powerful user interface of Prevx Home reside multiple layers of dynamic security settings. These enable Prevx Home to catch and stop new, never before seen attacks at many points where they may attempt to compromise your machine.
And, more than this, Prevx Home would be able to:
• Stop ‘Buffer Overflow’ attacks used by Internet worms (such as Sasser) and hackers
• Stop the installation of malicious files
• Stop malicious modification of critical files and directories
• Stop frequently used attacks on Internet Explorer
• Stop unauthorized changes to critical areas of the registry
• Stop covert modification of start-up scripts
The main reason, is because Home computer users remain vulnerable to each new (‘Zero Day’) cyber-attack during the critical period between the launch of a new attack and a “signature” update becoming available. Spyware tools only detect and clean up installed malware AFTER the infection has happened. Often threats are missed entirely by traditional security tools.
-
Here is a screenshot...
-
Technical
I read the same thing you did. It just sounded to good to be true so I passed it by. Sure would be nice if it turned out to be something.
-
It's used (pro version) by at least 1 of our police forces here in the U.K.
Here's the link
https://www.prevx.com/prevxenterprise/casestudies/casestudies_avonsomerset.htm
-
Well it's on my puter and behaves itself on SP2 and ZA and Avast.
Can't tell if it's doing anything guess I'll find that out if catches something.
-
Well it's on my puter and behaves itself on SP2 and ZA and Avast.
Can't tell if it's doing anything guess I'll find that out if catches something.
Works fine for me, no outward connections. Checks for any changes to the registry. No usage hog, all the time I'm not getting a warning I'm happy.
-
inthewildteam
Teatimer does that and it's extreamly small. This is supposed to do more than just monitor the reg. for changes.
-
Technical, thanks for the information concerning Prevx. I have WinXp Home, SP1, Outpost 1.0, WinXp firewall activated and my system does not show any problems from having downloaded Prevx. ;D Thanks again for the tip. :)
-
More info I found here:
http://www.wilderssecurity.com/showthread.php?t=47773&highlight=Prevx
Can anybody comment?
Best opinions (in my opinion ;D):
1. There's nothing magical about Prevx, it just monitors several areas of the system that are often manipulated by malware, but does require extra user interaction when activities (often legitimate) are detected.
2. Prevx is generic detection that requires no signature updates. I would guess that is uses behaviour monitoring and some sort of heuristic anylisis to prevent malware infection. It also monitors registry activity, prevents buffer overflow attacks, and prevents dll modification. This software is ment for prevention as opposed to detection.
3. Prevx Home doesn't rely on signature-based method but detects potential attacks by their behavior so it can detect (theoretically) malware that can bypass your traditional anti-virus/anti-spyware/anti-trojan.
About being free...
4. Prevx makes their money from their corporate product and soon to be release Pro version of the home product. It's almost too good to be true, but it's true and pretty damn good.
-
It can be also found on my webpage for quiet some time :)
-
It can be also found on my webpage for quiet some time :)
Yeah, I know you posted about it in Wilders too...
Do you have anything negative to comment? Does it work? TeaTimer can be replaced with profit?
-
Nothing negative. Its quiet good package,can't wait to get hands on pro version (free for Home users weeee) ;D
It also controls startup section,so you don't need any other Startup section monitor :)
-
Nothing negative. Its quiet good package,can't wait to get hands on pro version (free for Home users weeee) ;D
It also controls startup section,so you don't need any other Startup section monitor :)
Thanks... I'll wait more brave people to download and install and, after, comment...
Maybe Bob will be one of them ;D
-
Hehe no need to be brave,Prevx is not some kind of strange company... Their products are used in many large companies...
-
Technical. I also have Prevx and so far nothing negtive to say about it. Just sits in the background and does what it is suppose to do is what I have observed.
-
Thanks Neal and all others...
I downloaded it and will give a try tomorrow ;)
-
Technical
I have one thing thats annoying. I installed ACDSee today and had to give permission to about 40 changes. Teatimer asked once only for the app. itself. Prevx asked for every reg. change.
-
Technical
I have one thing thats annoying. I installed ACDSee today and had to give permission to about 40 changes. Teatimer asked once only for the app. itself. Prevx asked for every reg. change.
They explain in their website that if you're installing a 'trusted' software you should disable it... Well, makes sense: security depends on reliability, confidence, good habits, software protection... It's not a mechanical solution 8)
-
Thanks Technical
I didn't see that. It's actually easy enough to do. Just a right mouse click away. ;D
-
Everything working fine with Prevx untill now...
A little bit more information:
Prevx Home protects three main areas:
Memory Protection
Memory protection prevents against buffer overflow attacks, and because different programs behave differently, several different security settings are provided.
File System Protection
File system protection is designed to prevent attackers from accessing your computer's file system, but still allowing legitimate programs to continue normally. Attackers are prevented from installing malicious code on to your computer and stop legitimate programs from being hijacked. For example, Prevx Home will stop unauthorized modification of important system files, such as Autoexec.bat.
Registry
The registry is a key component of Windows. Making changes to the registry can allow an attacker to modify system behavior, cause programs to behave in unusual ways, not to load, allow malicious code to be automatically run, and so on. Numerous security settings are provided to protect the Registry from such unauthorized changes, but ensuring normal access by legitimate programs are not affected.
For each of these areas a number of security settings are available, and when combined, provide comprehensive protection.
Most attacks will violate multiple security settings and in more than one area. Prevx Home provides robust protection through applying multiple security settings in a layered security model. This means that if an attack is not caught by one security setting, it is caught by another.
-
I think the confusion is coming from the warnings Prevx gives.
It should serve as a reminder when we download a programme, how many changes it can make to the p.c. without our knowledge.
At the risk of upsetting some members who don't understand the English sense of humour ......... rtfm ......... about Prevx that is!
Be honest, how many of us get sick of the pop-up windows we get when installing programmes or on pages on the web and just take the easy route and click OK.
I have found it a very useful addition to my on-line security and have no problems with Prevx running along with Adaware Spybot Tauscan and avast!
-
Be honest, how many of us get sick of the pop-up windows we get when installing programmes or on pages on the web and just take the easy route and click OK.
inthewildteam, you're right :-[
Now more pop-ups that we just click ok... Oh, God :-\
-
Be honest, how many of us get sick of the pop-up windows we get when installing programmes or on pages on the web and just take the easy route and click OK.
There are many on these forums who want to know how to stop the avast virus warning they have encountered a virus. Now that is one popup box I certainly don't want to simply click OK. I want to know what is going on with my system. Surely people are not geting so many infections as to be bored with the popup? If they are than it's time to review their security proceedures.
But as someone mentioned it fires for every registry change (and there can be many) when a new program is installed. So there are times when it is recommended to disable whilst installing a trusted program.
-
David,
I think you used the magic phraze:
So there are times when it is recommended to disable whilst installing a trusted program.
That also holds true for upgrading a trusted program. Provided the download is from a trusted source.
-
Well, I have had Prevx for several days now and it works just fine. I do not mind the pop up alerts it gives me as I can make several choices when they do appear according to my preferences. It does what it says it will do, co-exists with all of my other security measures without any problems. I appreciate finding out about this program and will continue to use in with my WinXp Home, SP1. Thanks again. ;D
-
neal
will continue to use in with my WinXp Home, SP1
Now all you need to finish updating your security is SP2. ;D
-
Just a thought for any readers of this thread who still use dial-up, Prevx should notify of any changes if you inadvertantley install a premium rate dialler. That's got to be a good thing being as how one Irish telecoms provider is blocking premium rate numbers by default since last week because of the number of customers being hit with unexpectedly high 'phone bills.
I said "should" as I can't test it as I don't have any machines using dial-up.
-
*
I installed this a couple of days ago. It seems to be working fine for me on my W98SE computer ... also using ZA4.5, Ad-aware, Spybot ... and avast!4 Home, of course. :D
*
-
The best thing about prevx is how they managed to wrap a tiny, almost trivial set of utils to a nicely-looking package and furnished it with an aura of almightiness... :)
But it's interesting to look at, that's for sure...
BTW it keeps crashing one of my machines badly (it reboots even before the boot Windows XP logo shows). Maybe it's because it's WinXPSP2 + AMD64... Never mind. :)
-
The best thing about prevx is how they managed to wrap a tiny, almost trivial set of utils to a nicely-looking package and furnished it with an aura of almightiness... :)
But it's interesting to look at, that's for sure...
BTW it keeps crashing one of my machines badly (it reboots even before the boot Windows XP logo shows). Maybe it's because it's WinXPSP2 + AMD64... Never mind. :)
I heard that Microsoft were making a SP2 for AMD 64 processors and it was comming out in october ???
-
I'm talking about the regular 32-bit version of Windows XP, not Win64.
BTW Win64 release was again rescheduled - the last news is that it should be out by January 05.
-
The best thing about prevx is how they managed to wrap a tiny, almost trivial set of utils to a nicely-looking package and furnished it with an aura of almightiness... :)
Yeah, seems too good to be truth... ::)
Anyway, it does not 'mess' anything in a non-AMD processor. Working fine at XP SP2 here... ;)
-
If you have it on your system, its time for an update. ;D
-
Thanks for the heads-up Bob ;)
-
Sounds and looks like a nifty program, I'm gonna download it when I get my computer back :'( ;D
-
I'm gonna download it when I get my computer back :'( ;D
Was it stolen from you? ;D
-
Prevx has tonight started interfering with Avast updates generating 14 of these alerts within 2 seconds of boot and without giving the option to deny or allow.
Prevx prevented process ASHSERV.EXE[672] accessing a protected system file
Process: ASHSERV.EXE
Path: C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHSERV.EXE
Pid: 672
Parentprocess: SERVICES.EXE
Parentpath: C:\WINDOWS\SYSTEM32\SERVICES.EXE
Pid: 696
tried file: C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\SETUP\SETIFACE.DLL
AccessFlags: 0x130196
ParentAccess: 0x0
CreateDisposition: 0x5
Security Setting causing this alert: DLL modification protection
This only started tonight after I updated Prevx, so I guess it's somthing in the way prevx monitors the system rather than a change in the way avast updates that is causing the problem. Anyone getting the same problem?
If I update avast manually Prevx gives me the option to allow.
-
@ GF
Just above the "block" button in the pop-up warning window is a box. Click it and choose from the options to allow the process (avast! is trusted :)
You'll probably have to do this for each avast! process that you listed.
I did this and it's allowing manual and auto updates again.
-
I'm gonna download it when I get my computer back :'( ;D
Was is stolen from you? ;D
nope, my brother took it because my LG cd-rom drive was crashing my computer when a CD was put in it and my LG CD-RW drive was burning at very low speeds even when nero was set for it to burn a highest speen and the CD=RW wasnt reading program installers off cds :'(
-
Apparently the update must have gotten rid of all or some of the info reguarding allowed sites and programs. I've had to give permission on a lot of things again not only avast.
-
@ Bob3160, it's only been avast! so far, but it'll probably be the same for some of my other programmes too. I'll try updating Tauscan, Adaware and Spybot and see if that triggers the alarm window.
Small price to pay for having the system files etc. protected I think!
:) :) :)
Quick edit, just had to do it for adaware update Bob.
-
inthewildteam:
I've also had to do it for each instant messaging program as sombody sent me a message. This thing doesn't miss a trick. (sometimes it's a pain in the duper but I guess that's the price of having protection.)
-
inthewildteam:
I've also had to do it for each instant messaging program as sombody sent me a message. This thing doesn't miss a trick. (sometimes it's a pain in the duper but I guess that's the price of having protection.)
:D Had no problems updating Spybot or Tauscan, and I don't use any i.m clients myself. Probably have the same problem if my youngest daughter logs on here though, she uses them and also p2p!
I think you've hit on something important here though. You or I work through the warning pop-ups no problem, a new user with this installed might be very confused or worried by them. Personally I'd rather have the programme do it, but I can see a downside for some users being quite panicked by the warning windows especially if they are new to computers.
-
just a qucik question, how much RAM does prevex use?
Watchthisspace
-
PXAgent.exe is using 2.70MB and SAGUI.exe is using 2.44MB until I bring up the GUI for PrevX then it goes up to 3.31MB.
-
Hi everyboby!I've noticed that since last update(yesterday) Prevx is more fussy .And,actually,i had to permit once more avast! update;now all is ok,and no problem with avast! and sygate.Since I installed it already two updates for this product.Only one remark:tray icon a little long to appear bye
-
There apparently was another update today.
-
I've noticed that since last update(yesterday) Prevx is more fussy.
Me too :'(
Even with avast ::)
-
Hmmm... I took PrevX off of my system. For some reason it was preventing avasts modules from starting up when I would boot up. I took it off my system and avast started working again. :( Weird.
-
Negeltu
After the update to Prevx, all you would have had to do was to grant permission to avas! you didn't have to remove it.
-
Not necessarily true. I've set prevx to remember my answer to allow the avast mods but it still causes an error when avast tries to auto update on startup. I can still only update avast manually on my system.
I'm a bit reluctant to turn prevx off now. It's log lets me see the damage my girlfriend causes by not reading any dialog boxes and just clicking yes to everything.
-
GF
If you update the program, I apparently doesn't retain old permission info and will ask for permission again.
A reminder to all, If you start reading in the middle of a post, don't just read the last post, look at all of them to understand what's been dicussed. :) :)
-
Bob
I'm aware how it's supposed to work, but on my system prevx still causes avast auto update to fail even after I've given it permission again after updating prevx.
-
GF
What's your operating system and kind of computer do you have?
-
Actually bob... it's NOT working like that on my system. It will NOT retain most of the answers I give it. I've told it about 6 or 7 times to allow the things I know are ok... and it still won't remember. This all started WHEN I updated the 2nd time. And it gave me no warning or dialog on avast... nothing... Avast just wouldn't become active at startup.
-
Bob, standard P4 XP SP2.
Negeltu, sounds like you had a similar problem to me. Did you get multiple entries in your Prevx event log in quick sucession? It was avast itself that told me it had failed not Prevx.
-
Yes... I became very frustrated with the whole program and decided I didn't need it anyway. I use Spyware Guard...Spyware Blaster... Avast (Primary scanner), Antivir (Secondary OD Scanner), AdAware, Spybot S&D, AnalogX Script Defender and Sygate Personal FireWall. I think I'm pretty secure... I'm also behind a router...NAT... So... I'm not worried. Once a program like PrevX starts acting buggy like that... and preventing needed programs from running without my knowledge or permission... it's time for it to hit the road. :-D
-
Hi Negeltu !be carefull by using avast! & Antivir together.
I think you're SUR-protected .You aught to ask opinion others guys (Bob,Eddy,Technical....)It is possible that such a plethoric protection is dangerous.too much may be too bad!
-
I think the problem on my system is that avast tries to auto update before Prevx is even fully up and running. Order of startup is Sygate, avast and then Prevx.
-
No.. it is safe to use Antivir as OD scanner... You must make sure that during install you make sure you have the resident guard unchecked. All of those progs play very nicely together if configured properly. I never scan with multiple av progs at the same time. If I'm gonna do a system scan with antivir then I Pause avasts resident module.
-
Hi Negeltu !be carefull by using avast! & Antivir together.
I think you're SUR-protected .You aught to ask opinion others guys (Bob,Eddy,Technical....) It is possible that such a plethoric protection is dangerous.too much may be too bad!
No need to worry.
Antivir could be used as a backup scanner (not resident) and works with avast! as the on-access (primary) scanner.
Just be careful, some 'macro viruses' discovered by AntiVir are just false positives ;)
Runnind an on-demand with AntiVir does not require to shut down avast! Standard Shield provider, at least, not necessarily ;)
-
Can anybody comment this?
The 'Alert details' button will be posted soon...
-
'Alert details'...
Igor or other Alwil programmer, is this relevant?
-
Must stop speed reading, thought this thread said 'perv x' oops :-[