Prevx - Intrusion Prevention

Does anybody know about this software?

(https://www.prevx.com/)

The Home version is a freeware (https://www.prevx.com/homeoffice/prevxhome/prevxhome.htm)

They claim to be [i]an essential complement to existing signature based Anti Virus and Personal Firewall products, the Host Intrusion Prevention capabilities of Prevx Home are the only realistic defense against the latest breed of fast moving attacks.

Within the simple yet powerful user interface of Prevx Home reside multiple layers of dynamic security settings. These enable Prevx Home to catch and stop new, never before seen attacks at many points where they may attempt to compromise your machine. [/i]

And, more than this, Prevx Home would be able to:

• Stop ‘Buffer Overflow’ attacks used by Internet worms (such as Sasser) and hackers
• Stop the installation of malicious files
• Stop malicious modification of critical files and directories
• Stop frequently used attacks on Internet Explorer
• Stop unauthorized changes to critical areas of the registry
• Stop covert modification of start-up scripts

The main reason, is because Home computer users remain vulnerable to each new (‘Zero Day’) cyber-attack during the critical period between the launch of a new attack and a “signature” update becoming available. Spyware tools only detect and clean up installed malware AFTER the infection has happened. Often threats are missed entirely by traditional security tools.

Here is a screenshot…

Technical
I read the same thing you did. It just sounded to good to be true so I passed it by. Sure would be nice if it turned out to be something.

It’s used (pro version) by at least 1 of our police forces here in the U.K.

Here’s the link

https://www.prevx.com/prevxenterprise/casestudies/casestudies_avonsomerset.htm

Well it’s on my puter and behaves itself on SP2 and ZA and Avast.
Can’t tell if it’s doing anything guess I’ll find that out if catches something.

Works fine for me, no outward connections. Checks for any changes to the registry. No usage hog, all the time I’m not getting a warning I’m happy.

inthewildteam
Teatimer does that and it’s extreamly small. This is supposed to do more than just monitor the reg. for changes.

Technical, thanks for the information concerning Prevx. I have WinXp Home, SP1, Outpost 1.0, WinXp firewall activated and my system does not show any problems from having downloaded Prevx. ;D Thanks again for the tip. :slight_smile:

More info I found here:
http://www.wilderssecurity.com/showthread.php?t=47773&highlight=Prevx

Can anybody comment?

Best opinions (in my opinion ;D):

  1. There’s nothing magical about Prevx, it just monitors several areas of the system that are often manipulated by malware, but does require extra user interaction when activities (often legitimate) are detected.

  2. Prevx is generic detection that requires no signature updates. I would guess that is uses behaviour monitoring and some sort of heuristic anylisis to prevent malware infection. It also monitors registry activity, prevents buffer overflow attacks, and prevents dll modification. This software is ment for prevention as opposed to detection.

  3. Prevx Home doesn’t rely on signature-based method but detects potential attacks by their behavior so it can detect (theoretically) malware that can bypass your traditional anti-virus/anti-spyware/anti-trojan.

About being free…

  1. Prevx makes their money from their corporate product and soon to be release Pro version of the home product. It’s almost too good to be true, but it’s true and pretty damn good.

It can be also found on my webpage for quiet some time :slight_smile:

Yeah, I know you posted about it in Wilders too…
Do you have anything negative to comment? Does it work? TeaTimer can be replaced with profit?

Nothing negative. Its quiet good package,can’t wait to get hands on pro version (free for Home users weeee) ;D
It also controls startup section,so you don’t need any other Startup section monitor :slight_smile:

Thanks… I’ll wait more brave people to download and install and, after, comment…
Maybe Bob will be one of them ;D

Hehe no need to be brave,Prevx is not some kind of strange company… Their products are used in many large companies…

Technical. I also have Prevx and so far nothing negtive to say about it. Just sits in the background and does what it is suppose to do is what I have observed.

Thanks Neal and all others…
I downloaded it and will give a try tomorrow :wink:

Technical
I have one thing thats annoying. I installed ACDSee today and had to give permission to about 40 changes. Teatimer asked once only for the app. itself. Prevx asked for every reg. change.

They explain in their website that if you’re installing a ‘trusted’ software you should disable it… Well, makes sense: security depends on reliability, confidence, good habits, software protection… It’s not a mechanical solution 8)

Thanks Technical
I didn’t see that. It’s actually easy enough to do. Just a right mouse click away. ;D

Everything working fine with Prevx untill now…

A little bit more information:


Prevx Home protects three main areas:

Memory Protection

Memory protection prevents against buffer overflow attacks, and because different programs behave differently, several different security settings are provided.

File System Protection

File system protection is designed to prevent attackers from accessing your computer’s file system, but still allowing legitimate programs to continue normally. Attackers are prevented from installing malicious code on to your computer and stop legitimate programs from being hijacked. For example, Prevx Home will stop unauthorized modification of important system files, such as Autoexec.bat.

Registry

The registry is a key component of Windows. Making changes to the registry can allow an attacker to modify system behavior, cause programs to behave in unusual ways, not to load, allow malicious code to be automatically run, and so on. Numerous security settings are provided to protect the Registry from such unauthorized changes, but ensuring normal access by legitimate programs are not affected.

For each of these areas a number of security settings are available, and when combined, provide comprehensive protection.

Most attacks will violate multiple security settings and in more than one area. Prevx Home provides robust protection through applying multiple security settings in a layered security model. This means that if an attack is not caught by one security setting, it is caught by another.