Prevx 3.0 v3.0.1.65

Product Overview - Core Functionality

April, 2009

includes overviews of

MyPrevx, Prevx 3.0 Enterprise,

and Prevx 3.0 Banking and Ecommerce editions

©Copyright Prevx Limited 2007,2008,2009

Prevx 3.0 Anti-malware

Prevx 3.0 Anti-malware is a powerful security application with exceptional ability to protect, detect

and remove rootkits and ‘early life’ malicious software including Viruses, Trojans, Worms, Spyware,

and Bots.

Prevx 3.0 Anti-malware can be used as a stand-alone security application or as part of a ‘defense in

depth’ approach alongside other antivirus, antispyware or internet security suites. It is compatible

with Windows 98, NT4, 2000, 2003, 2008, XP, Vista and even Windows 7. Both 32 bit and 64 bit

versions are available. It is also designed to be interoperable with most leading security products

including those from Symantec, McAfee, Trend Micro, CA, Sophos, Kaspersky, Panda, Bit Defender,

ESET, AVIRA, AVAST, AVG, Norman and F-Secure and many others.

Prevx 3.0 Anti-malware has the following key features:

- Comprehensive support for all Windows environments (32 and 64 bit)

- Ultra fast, class leading scan speed

- Powerful, signature-less rootkit detection and removal

- Strong ‘early life’ malware detection and removal

- Powerful, generic clean up of even advanced rootkit and malicious software

- Tiny, class leading, agent size

- Light, class leading, low system resource utilization

- Powerful anti-phishing

- Comprehensive ‘man-in-the-browser’ protection with its universal secure browser feature

- Real-time, always up to date connection to the World’s largest online threat database

- Class leading interoperability with other security applications

- Supports scheduled, rapid on-demand and right click scan options

- Supports full cleanup roll back

- Simple, easy to use interface

- Powerful but simple user controls allow the user to choose the level of heuristic protection

- Unique age and spread detection controls allow the user to defeat low volume and targeted

attack malware by prohibiting execution of ‘early life’ and/or ‘low usage’ programs

The Prevx 3.0 Anti-malware agent download is just 800 kilobytes. It installs in seconds and will scan

an average PC in around 2-4 minutes on install. Once installed scan times reduce dramatically with

typical PCs being scanned in around 30 to 60 seconds.

There are 4 key elements of the Prevx 3.0 product set the Ultrafast Scan engine, the rootkit and

malicious software detection and removal engine, the real time protection agent and the secure

browser. Collectively, these provide a powerful level of protection against today’s advanced

malicious software.

Prevx 3.0 Ultrafast Scan Engine

We believe that security products must have minimal impact on the normal use and enjoyment of

your PC. The scan engine of Prevx 3.0 sets new standards in scan speed and detection rates of

advanced rootkit and early life malware. The scan engine incorporates ‘raw’ disk and registry access

technology which has the simultaneous benefits of dramatically reducing scan times and allowing

much more effective detection of rootkits and stealth malware.

Prevx 3.0 will scan an average PC in around 2 to 4 minutes immediately on installation. Thereafter,

scan times reduce even more due the caching techniques used by the scan engine. After the very

first scan a typical PC scan will take around 30 to 60 seconds.

With ultrafast scans you will be much more likely and willing to scan your PC more often. Daily scans

taking around 20 to 40 seconds hardly affect your enjoyment of your PC at all. Once you get

confidence in the consistently rapid scan times you will find yourself running scans whenever you

have any concerns about security, for example, before logging onto your Internet banking or when

purchasing online.

The more often you scan your PC the less time any malicious software has to steal your information.

We call this reducing the Time Exposed to Danger or T.E.D.

Prevx 3.0 Rootkit and Malicious Software Detection and Removal Engine

The Prevx 3.0 Ultrafast scanner has access to the World’s largest online threat database. The Prevx

threat database receives billions of threat events every day and learns of more than 250,000 new

executable objects every 24 hours. The events and data that define the emergence, existence,

propagation and behavior of the these objects is correlated, aggregated and reviewed in real time by

the World’s most powerful automated malware research operation.

The vast database of more than 100 million unique executable objects allows the Prevx 3.0 Rootkit

and Malicious Software Detection and Removal Engine to quickly identify infections and know

exactly what is required to remove them and restore the PC to safety and good health.

Leveraging the penetrating vision of the raw disk and registry reading technology of the Ultrafast

scan engine the detection and removal engine is capable of quickly pinpointing rootkits and stealth

software hiding from the operating system services or user environments.

The detection and removal engine in Prevx 3.0 also includes a complete fail safe roll back feature

which allows you to restore any program or roll back an entire cleanup should this be necessary.

Prevx 3.0 sets new standards for rootkit and ‘early life’ malware detection and removal enabling it to

fix issues that defeat conventional antivirus, internet security, or end-point protection suites.

Prevx 3.0 Real-time Protection Agent

Prevx 3.0 incorporates a powerful real time protection agent which sets new standards both in terms

of ‘early life’ malware protection and in its ultra-low use of system resources. In simple terms it

provides powerful protection with minimal impact on system performance.

The real-time protection agent also leverages the Prevx online threat database shared with the

detection and removal engine. However, it goes much further in its protection against ‘early life’

malware. This allows it to provide strong protection against targeted or low volume malware as well

as so called zero-day attacks.

The real-time protection agent incorporates three separate layers of protection. A powerful heuristic

layer which attempts to identify new malicious software based on its behavior e.g. browser based

downloads. There are then two further layers of protection which we call age and spread. Age based

protection allows Prevx 3.0 to hold the execution of any program which is relatively new, from a few

seconds to a few days. This immediately makes your PC impervious to new or even unique targeted

malware during its early life. Used on its own, or in combination with Prevx 3.0 heuristics and age

controls, spread detection allows you to ring fence your PC from software which has only been seen

on a very few PCs within the Prevx community. Most users do not need to be a ‘guinea pig’ and can

afford to only run software which is popular.

Prevx 3.0 heuristics, age and spread detection offer a powerful and unique combination of defensive

measures with which to protect your PC from advanced and ‘early life’ malicious software.

Prevx 3.0 real-time protection agent does not work like an anti-virus program. It does not scan files

on their creation, or whenever they are opened. These methods are part of the reason why many

antivirus and internet security suites cause so much overhead and significantly slow your PC down.

Malicious software, at rest on disk represents no immediate threat. Prevx 3.0’s real-time protection

will stop these programs if ever they try to execute. Furthermore, Prevx 3.0’s ultrafast scan engine

will also detect these programs at rest as part of its scan operation.

Prevx 3.0 Secure Browser

No security product can ever be guaranteed to stop 100% of malicious software threats. Malicious

software developers are constantly testing and developing new methods to evade detection. Prevx

3.0 sets new standards in terms of early life malware detection but there is always the chance that

new malicious software might evade detection. When a PC is infected with a stealth piece of

malware it is possible that information entered on it, stored on it, or displayed on it, could be copied

and stolen. The Internet browser is an obvious target for stealing information, probably during an

Internet banking session or while buying online when bank account and credit card details may be

entered or displayed.

To better protect PC users from the potential of information being stolen while browsing on a PC

harbouring a hidden and undetected infection Prevx 3.0 includes a secure browser feature. The

Prevx 3.0 Secure Browser feature will protect your information entered in or displayed by your

Internet browser. The feature locks down the operating system and services to ensure that only

‘known good’ processes and services are allowed to run while you are running in secure browser

mode. The secure browser feature defeats attempts to log keyboard contents or screen contents by

white listing the browser and essential operating system components and inhibiting all other

processes and services from execution.

Prevx 3.0 MyPrevx

All Prevx 3.0 users have access to a free web based console feature via the http://my.prevx.com web

site. This web site holds a summary of known malicious software and rootkits identified on your PC.

It also allows you to set email and SMS alerts if any PC on your license key should be attacked by

malicious software. This enables you to be the first to know if any PC in your business or family is

attacked. You can also manage the PCs on your license(s) allowing you to remove the Prevx 3.0

software and transfer it to a direct replacement PC.

Prevx 3.0 Enterprise

Large enterprises should check out Prevx 3.0 Enterprise. It offers all of the benefits of Prevx 3.0 but

with the additional management capabilities necessary to control security across a very large user

base. Prevx 3.0 Enterprise includes a dedicated in-house management console allowing you manage

installation, removal, scan frequency and scheduling, review malware detection and set remediation

policies. Prevx 3.0 Enterprise is capable of managing very large installations and can be used in

detection only, detection and remediation or full real time protection modes.

Prevx 3.0 Banking and Ecommerce

Banks, financial institutions and those looking to verify the security status of customer or end user

PCs prior to performing secure transactions should check out Prevx 3.0 for Banking and Ecommerce.

This product extends the regular features of Prevx 3.0 to include protection against phishing, man-

in-the browser attacks, BOTs, DNS poisoning and other threats associated with advanced

information stealing malware and rootkits such as ZEUS and MEBROOT.

With Prevx 3.0 Banking and Ecommerce, you, and your online applications, are informed about the

risk factors associated with each connected PC at the most important point in time – immediately

before the customer enters their login credentials.

The banking and ecommerce product set includes powerful additional features such as an insightful

management console. This lets you immediately see all new threats to which your customer base is

exposed and provides you with the tools necessary to pro-actively manage and mitigate risk.

Prevx 3.0 feeds, and feeds off, the World’s most powerful real time threat database

Prevx is the World’s leading security vendor leveraging security intelligence to provide an innovative

and powerful suite of anti-malware technologies. As the pioneers of community intelligence

databases exploiting the obvious benefits of data correlation and centralized intelligence Prevx has a

proven track record of detecting advanced malicious software in its early lifetime. All of Prevx’s

security products feed and feed off this real-time threat database which processes billions of threat

events daily and tracks the emergence, existence, propagation and behavior of more than 100

million executable objects and a staggering 250,000 new unique executable objects every single day.

Prevx’s real time threat database relies on cloud based technology to deliver a 24/7 service

providing lightening fast OLTP response times. The database technology has been in development

for 5 years and continues to set class leading levels of performance and cost effectiveness. The

architecture provides linear scalability and has the existing capacity to manage a 100 fold increase in

current malware volumes.

Unlike conventional security vendors who are struggling to scale their operations to take account of

the exponential growth in malicious software volumes, Prevx’s real-time database technology and

automated malware research actually improves in line with increasing malware volumes.

Leveraging the Prevx 3.0 real-time threat database Prevx 3.0 provides always up to date protection.

It requires no signature file updates whatsoever. Once an object is determined as malicious all Prevx

3.0 agents are immediately protected.

Prevx 3.0 the ultimate in anti-malware, powered by the cloud.

For further details on Prevx 3.0 or other Prevx products:

Prevx Limited

3 New Park Place

Pride Park

Derby

DE24 8DZ

England