Sophos SafeGuard Disk Encryption, Sophos SafeGuard Easy Demo guide
Product Overview - Core Functionality April, 2009pxnow.prevx.com/zerol/prevx_3.0.pdf · including...
Transcript of Product Overview - Core Functionality April, 2009pxnow.prevx.com/zerol/prevx_3.0.pdf · including...
Prevx 3.0 v3.0.1.65
Product Overview - Core Functionality
April, 2009
includes overviews of
MyPrevx, Prevx 3.0 Enterprise,
and Prevx 3.0 Banking and Ecommerce editions
©Copyright Prevx Limited 2007,2008,2009
Prevx 3.0 Anti-malware
Prevx 3.0 Anti-malware is a powerful security application with exceptional ability to protect, detect
and remove rootkits and ‘early life’ malicious software including Viruses, Trojans, Worms, Spyware,
and Bots.
Prevx 3.0 Anti-malware can be used as a stand-alone security application or as part of a ‘defense in
depth’ approach alongside other antivirus, antispyware or internet security suites. It is compatible
with Windows 98, NT4, 2000, 2003, 2008, XP, Vista and even Windows 7. Both 32 bit and 64 bit
versions are available. It is also designed to be interoperable with most leading security products
including those from Symantec, McAfee, Trend Micro, CA, Sophos, Kaspersky, Panda, Bit Defender,
ESET, AVIRA, AVAST, AVG, Norman and F-Secure and many others.
Prevx 3.0 Anti-malware has the following key features:
- Comprehensive support for all Windows environments (32 and 64 bit)
- Ultra fast, class leading scan speed
- Powerful, signature-less rootkit detection and removal
- Strong ‘early life’ malware detection and removal
- Powerful, generic clean up of even advanced rootkit and malicious software
- Tiny, class leading, agent size
- Light, class leading, low system resource utilization
- Powerful anti-phishing
- Comprehensive ‘man-in-the-browser’ protection with its universal secure browser feature
- Real-time, always up to date connection to the World’s largest online threat database
- Class leading interoperability with other security applications
- Supports scheduled, rapid on-demand and right click scan options
- Supports full cleanup roll back
- Simple, easy to use interface
- Powerful but simple user controls allow the user to choose the level of heuristic protection
- Unique age and spread detection controls allow the user to defeat low volume and targeted
attack malware by prohibiting execution of ‘early life’ and/or ‘low usage’ programs
The Prevx 3.0 Anti-malware agent download is just 800 kilobytes. It installs in seconds and will scan
an average PC in around 2-4 minutes on install. Once installed scan times reduce dramatically with
typical PCs being scanned in around 30 to 60 seconds.
There are 4 key elements of the Prevx 3.0 product set the Ultrafast Scan engine, the rootkit and
malicious software detection and removal engine, the real time protection agent and the secure
browser. Collectively, these provide a powerful level of protection against today’s advanced
malicious software.
Prevx 3.0 Ultrafast Scan Engine
We believe that security products must have minimal impact on the normal use and enjoyment of
your PC. The scan engine of Prevx 3.0 sets new standards in scan speed and detection rates of
advanced rootkit and early life malware. The scan engine incorporates ‘raw’ disk and registry access
technology which has the simultaneous benefits of dramatically reducing scan times and allowing
much more effective detection of rootkits and stealth malware.
Prevx 3.0 will scan an average PC in around 2 to 4 minutes immediately on installation. Thereafter,
scan times reduce even more due the caching techniques used by the scan engine. After the very
first scan a typical PC scan will take around 30 to 60 seconds.
With ultrafast scans you will be much more likely and willing to scan your PC more often. Daily scans
taking around 20 to 40 seconds hardly affect your enjoyment of your PC at all. Once you get
confidence in the consistently rapid scan times you will find yourself running scans whenever you
have any concerns about security, for example, before logging onto your Internet banking or when
purchasing online.
The more often you scan your PC the less time any malicious software has to steal your information.
We call this reducing the Time Exposed to Danger or T.E.D.
Prevx 3.0 Rootkit and Malicious Software Detection and Removal Engine
The Prevx 3.0 Ultrafast scanner has access to the World’s largest online threat database. The Prevx
threat database receives billions of threat events every day and learns of more than 250,000 new
executable objects every 24 hours. The events and data that define the emergence, existence,
propagation and behavior of the these objects is correlated, aggregated and reviewed in real time by
the World’s most powerful automated malware research operation.
The vast database of more than 100 million unique executable objects allows the Prevx 3.0 Rootkit
and Malicious Software Detection and Removal Engine to quickly identify infections and know
exactly what is required to remove them and restore the PC to safety and good health.
Leveraging the penetrating vision of the raw disk and registry reading technology of the Ultrafast
scan engine the detection and removal engine is capable of quickly pinpointing rootkits and stealth
software hiding from the operating system services or user environments.
The detection and removal engine in Prevx 3.0 also includes a complete fail safe roll back feature
which allows you to restore any program or roll back an entire cleanup should this be necessary.
Prevx 3.0 sets new standards for rootkit and ‘early life’ malware detection and removal enabling it to
fix issues that defeat conventional antivirus, internet security, or end-point protection suites.
Prevx 3.0 Real-time Protection Agent
Prevx 3.0 incorporates a powerful real time protection agent which sets new standards both in terms
of ‘early life’ malware protection and in its ultra-low use of system resources. In simple terms it
provides powerful protection with minimal impact on system performance.
The real-time protection agent also leverages the Prevx online threat database shared with the
detection and removal engine. However, it goes much further in its protection against ‘early life’
malware. This allows it to provide strong protection against targeted or low volume malware as well
as so called zero-day attacks.
The real-time protection agent incorporates three separate layers of protection. A powerful heuristic
layer which attempts to identify new malicious software based on its behavior e.g. browser based
downloads. There are then two further layers of protection which we call age and spread. Age based
protection allows Prevx 3.0 to hold the execution of any program which is relatively new, from a few
seconds to a few days. This immediately makes your PC impervious to new or even unique targeted
malware during its early life. Used on its own, or in combination with Prevx 3.0 heuristics and age
controls, spread detection allows you to ring fence your PC from software which has only been seen
on a very few PCs within the Prevx community. Most users do not need to be a ‘guinea pig’ and can
afford to only run software which is popular.
Prevx 3.0 heuristics, age and spread detection offer a powerful and unique combination of defensive
measures with which to protect your PC from advanced and ‘early life’ malicious software.
Prevx 3.0 real-time protection agent does not work like an anti-virus program. It does not scan files
on their creation, or whenever they are opened. These methods are part of the reason why many
antivirus and internet security suites cause so much overhead and significantly slow your PC down.
Malicious software, at rest on disk represents no immediate threat. Prevx 3.0’s real-time protection
will stop these programs if ever they try to execute. Furthermore, Prevx 3.0’s ultrafast scan engine
will also detect these programs at rest as part of its scan operation.
Prevx 3.0 Secure Browser
No security product can ever be guaranteed to stop 100% of malicious software threats. Malicious
software developers are constantly testing and developing new methods to evade detection. Prevx
3.0 sets new standards in terms of early life malware detection but there is always the chance that
new malicious software might evade detection. When a PC is infected with a stealth piece of
malware it is possible that information entered on it, stored on it, or displayed on it, could be copied
and stolen. The Internet browser is an obvious target for stealing information, probably during an
Internet banking session or while buying online when bank account and credit card details may be
entered or displayed.
To better protect PC users from the potential of information being stolen while browsing on a PC
harbouring a hidden and undetected infection Prevx 3.0 includes a secure browser feature. The
Prevx 3.0 Secure Browser feature will protect your information entered in or displayed by your
Internet browser. The feature locks down the operating system and services to ensure that only
‘known good’ processes and services are allowed to run while you are running in secure browser
mode. The secure browser feature defeats attempts to log keyboard contents or screen contents by
white listing the browser and essential operating system components and inhibiting all other
processes and services from execution.
Prevx 3.0 MyPrevx
All Prevx 3.0 users have access to a free web based console feature via the http://my.prevx.com web
site. This web site holds a summary of known malicious software and rootkits identified on your PC.
It also allows you to set email and SMS alerts if any PC on your license key should be attacked by
malicious software. This enables you to be the first to know if any PC in your business or family is
attacked. You can also manage the PCs on your license(s) allowing you to remove the Prevx 3.0
software and transfer it to a direct replacement PC.
Prevx 3.0 Enterprise
Large enterprises should check out Prevx 3.0 Enterprise. It offers all of the benefits of Prevx 3.0 but
with the additional management capabilities necessary to control security across a very large user
base. Prevx 3.0 Enterprise includes a dedicated in-house management console allowing you manage
installation, removal, scan frequency and scheduling, review malware detection and set remediation
policies. Prevx 3.0 Enterprise is capable of managing very large installations and can be used in
detection only, detection and remediation or full real time protection modes.
Prevx 3.0 Banking and Ecommerce
Banks, financial institutions and those looking to verify the security status of customer or end user
PCs prior to performing secure transactions should check out Prevx 3.0 for Banking and Ecommerce.
This product extends the regular features of Prevx 3.0 to include protection against phishing, man-
in-the browser attacks, BOTs, DNS poisoning and other threats associated with advanced
information stealing malware and rootkits such as ZEUS and MEBROOT.
With Prevx 3.0 Banking and Ecommerce, you, and your online applications, are informed about the
risk factors associated with each connected PC at the most important point in time – immediately
before the customer enters their login credentials.
The banking and ecommerce product set includes powerful additional features such as an insightful
management console. This lets you immediately see all new threats to which your customer base is
exposed and provides you with the tools necessary to pro-actively manage and mitigate risk.
Prevx 3.0 feeds, and feeds off, the World’s most powerful real time threat database
Prevx is the World’s leading security vendor leveraging security intelligence to provide an innovative
and powerful suite of anti-malware technologies. As the pioneers of community intelligence
databases exploiting the obvious benefits of data correlation and centralized intelligence Prevx has a
proven track record of detecting advanced malicious software in its early lifetime. All of Prevx’s
security products feed and feed off this real-time threat database which processes billions of threat
events daily and tracks the emergence, existence, propagation and behavior of more than 100
million executable objects and a staggering 250,000 new unique executable objects every single day.
Prevx’s real time threat database relies on cloud based technology to deliver a 24/7 service
providing lightening fast OLTP response times. The database technology has been in development
for 5 years and continues to set class leading levels of performance and cost effectiveness. The
architecture provides linear scalability and has the existing capacity to manage a 100 fold increase in
current malware volumes.
Unlike conventional security vendors who are struggling to scale their operations to take account of
the exponential growth in malicious software volumes, Prevx’s real-time database technology and
automated malware research actually improves in line with increasing malware volumes.
Leveraging the Prevx 3.0 real-time threat database Prevx 3.0 provides always up to date protection.
It requires no signature file updates whatsoever. Once an object is determined as malicious all Prevx
3.0 agents are immediately protected.
Prevx 3.0 the ultimate in anti-malware, powered by the cloud.
For further details on Prevx 3.0 or other Prevx products:
Prevx Limited
3 New Park Place
Pride Park
Derby
DE24 8DZ
England