Softpedia >Windows >Antivirus >Dr.Web Security Space >  Changelog

Dr.Web Security Space Changelog

What's new in Dr.Web Security Space 12.0.5.11081

Apr 4, 2023
  • Internal changes to improve the security of the product. Thanks to the adjustments made to the firewall, the applications' processes under Windows 10 and later versions now start faster. Fixed an issue causing false notifications about a current license. Fixed an issue causing false positives.

New in Dr.Web Security Space 12.0.5.11080 (Dec 22, 2022)

  • Fixed an issue causing Dr.Web to shut down if a user moved the Temp
  • folder to the disk's root directory.
  • Enhanced threat detection and neutralization, and a lower memory footprint.
  • Adjusted the Preventive Protection component to achieve a higher detection rate with regard to encryption ransomware.

New in Dr.Web Security Space 12.0.5.8240 (Sep 13, 2022)

  • Dr.Web Thunderstorm Cloud Client SDK 12.0.26.08090 eliminates an issue
  • that causes Dr.Web Control Service to terminate abnormally during product
  • uninstallation.
  • Dr.Web Shellguard anti-exploit module 12.06.11.08022 resolves false positives that occurred when Vitacore AIS LPU Client is in operation.

New in Dr.Web Security Space 12.0.5.5230 (Jun 9, 2022)

  • Fixes to Dr.Web Anti-rootkit API (12.6.20.202205263): An error that might cause certain websites to become inaccessible. A defect that could result in false positives. An issue that under certain circumstances might prevent Microsoft Exchange Server from being installed in the system.

New in Dr.Web Security Space 12.0.4.12100 (Mar 17, 2022)

  • Fixes:
  • An issue causing errors to occur while threats were being neutralized.
  • An issue that might cause the driver to terminate abnormally.
  • A defect involving corrupt .pcap log files.

New in Dr.Web Security Space 12.0.4.7191 (Sep 21, 2021)

  • Added the "Dr.Web Update Mirror" folder for keeping files when a new
  • update mirror is created.
  • Fixed the following issues:
  • incorrectly displayed time in the Firewall packet filter log;
  • incorrect focus on menu items;
  • the service didn't start when a PC's system time was changed at startup.

New in Dr.Web Security Space 12.0.4.4261 (Jun 8, 2021)

  • Updated Anti-virus for Windows servers setup, Lua-Updater, Lua-script
  • For updater and email-templates.
  • Logs now provide more detailed information.
  • You can now use enableDebugLogs to toggle on debugging log during installation.
  • Fixed the installation issue causing error 46.
  • Security improvements.

New in Dr.Web Security Space 12.0.4.2201 (Mar 10, 2021)

  • Fixed the compatibility issue involving Valorant's anti-cheat software
  • Vanguard
  • Fixed the high memory usage issue involving peer-to-peer applications
  • Fixed errors involving Promise FastTRAK RAID controllers
  • Fixed errors when using Logitech G Hub software in the system
  • Security improvements

New in Dr.Web Security Space 12.0.2.9280 (Dec 7, 2020)

  • The update resolves known issues and delivers upgrades:
  • Dr.Web Thunderstorm Cloud Client SDK module (12.0.12.10190)
  • Dr.Web Protection for Windows module (12.05.09.10090)
  • Dr.Web Updater module (12.0.26.09160)
  • Internet service Dr.Web AV-Desk 10.1

New in Dr.Web Security Space 12.0.2.5250 (Jun 4, 2020)

  • Updated Dr.Web Device Guard for Windows module (12.05.02.04210),
  • Dr.Web Anti-rootkit API (12.5.11.202005110),
  • Dr.Web Scanning Engine (12.5.3.202005120), the
  • Dr.Web Updater module (12.0.22.04220),
  • Lua-script for antispam (12.5.6.04290). This
  • Update delivers minor upgrades and fixes of known defects.

New in Dr.Web Security Space 11.0.0.10191 (Oct 27, 2015)

  • Version 11 has an extended arsenal of protective technologies that provide enhanced protection against zero-day exploits and other deceptive techniques that criminals use today and will use in the future. Dr.Web utilises state-of-the-art hardware capabilities to control the operation of all the installed applications and the operating system.
  • Our preventive protection is based on an analysis of the behaviour of malicious, suspicious or untrusted scripts and processes. Today it complements the traditional signature-based scanning and plays an essential part in neutralising brand new malware. The risk of an unknown Trojan attacking a user’s machine before it can be analysed by anti-virus vendors is growing. It's no secret that most of today’s popular programs have flaws that can be exploited by intruders to penetrate a system. Even though the discovered vulnerabilities are closed promptly by the respective software developers, users often fail to install updates in a timely manner, leaving their systems at risk of infection.
  • That's why Dr.Web developers paid special attention to upgrading the Dr.Web Process Heuristics Heuristics behaviour analyser and enhanced Dr.Web Preventive Protection with the new Dr.Web ShellGuard technology which protects systems from zero-day attacks against the most common applications. The updated heuristic analyser can end suspicious and malicious processes and is even more effective at detecting threats, including those not yet in the virus database—encryption ransomware, injectors and spyware. In addition to the local database, the new Dr.Web ShellGuard technology uses the Dr.Web reputation cloud which provides up-to-date information about potential threats involving software vulnerabilities.
  • The new Dr.Web HyperVisor component runs on the lowest level in the system which greatly enhances threat detection and neutralisation and guarantees that all attempts by malware (including malware that has yet to be discovered) to get into a protected system or disrupt Dr.Web's operation will be thwarted.
  • Other important innovations speed up anti-virus scanning without compromising PC security. Gamers and frequent users of online media streaming will surely appreciate that audio and video playback is now delivered without delays. And large files are also downloaded much faster. Thanks to the brand new back-up routines that have been added to the Data Loss Prevention component, Dr.Web now boasts lower memory usage and higher usability. Additional parameters (including those of the Parental Control) and UI tweaks make Dr.Web protection even easier to control. Thanks to the optimised updating routine, certain Dr.Web components can be updated without a system restart.
  • Remember that the HTTP monitor SpIDer Gate, Parental Control and Data Loss Prevention are only available in Dr.Web Security Space.
  • As it works to resolve current threats, Dr.Web is also able to anticipate future ones. This approach ensures that the security of systems protected with Dr.Web 11.0 won't be circumvented by intruders.
  • Enhanced Dr.Web Process Heuristic technology protects against attacks involving zero-day exploits
  • The new technology Dr.Web ShellGuard blocks routes into the system so that programs that exploit vulnerabilities can’t get in. Exploits are malicious objects, that take advantage of software flaws, including those not yet known to anyone except for the intruders who created the exploits (i.e., zero-day vulnerabilities). The vulnerabilities are used to gain control over a targeted application or the operating system.

New in Dr.Web Security Space 10.0.0.10280 (Oct 28, 2014)

  • Key innovations include a radically redesigned interface and vastly simplified configuration and administration that align even more perfectly with the user’s day-to-day requirements.

New in Dr.Web Security Space 9.0.1.04071 (May 19, 2014)

  • Detection of new, unknown threats
  • New level of effectiveness in the neutralisation of unknown threats and the protection of data
  • Comprehensive analyser of packed threats—unique Dr.Web technology!
  • Increased performance
  • Full scan of all traffic
  • With Dr.Web Parental Control, removable devices and computers can be protected against unauthorised use.
  • Protection of copyrighted content
  • New Dr.Web firewall databases herald a new, ultimate user-friendly approach to protection

New in Dr.Web Security Space 8.1.0.06250 (Jul 8, 2013)

  • The new installer:
  • The new installer of Dr.Web 8.0 doesn't use the Microsoft Windows Installer, no additional services are required to install the product.
  • Integration with the updated Dr.Web anti-rootkit allows you to cure your PC during installation, even if the computer is infected with sophisticated malware.
  • Installation is much faster.
  • New installer features:
  • The revamped installation wizard interface reduces the number of steps required to install Dr.Web and therefore makes installation quicker.
  • The updated Dr.Web anti-rootkit allows the wizard counter active threats and install Dr.Web onto computers infected even with complex malware.
  • Enhanced interaction with already installed Dr.Web (for example, toggle on/off the self-protection module during installation).
  • Incremental installer updating to ensure that the user always has the latest distribution file.
  • Import settings of your installed Dr.Web to get the security you need.
  • Faster installation:
  • The new installation wizard no longer scans the system, which also reduces the installation time.
  • Instead a background search for active threats is initiated upon scanning completion and disarms all threats without interrupting user experience.
  • Background anti-rootkit scan and new arkapi:
  • The Anti-rootkit API used in Dr.Web 8.0 provides background scan and neutralization of active threats.
  • The resident background scan routines search for active threats among start-up objects, running processes and modules, system objects, RAM, MBR/VBR and BIOS. If threats are detected, Dr.Web can notify the user about the danger, cure the infection and block malicious activities.
  • One of the key criteria of this resident subsystem is its carefully measured consumption of system resources (CPU, IO, RAM), and intelligent assessment of hardware capabilities.
  • Preventive protection:
  • Dr.Web 8.0 blocks automatic modification of critical Windows objects and controls certain routines that can be exploited to undermine the system security thus expanding preventive protection even further
  • Dr.Web 8.0 blocks automatic modification of critical Windows objects and controls certain routines that can be exploited to undermine the system security thus expanding preventive protection even further
  • Minimum (Recommended) — prohibit low-level disk access, modification of the HOSTS file and critical operating system objects often compromised by malware. So objects whose modification is a clear indication of a malicious activity are kept secure
  • Medium — in addition to objects protected in the recommended mode it disables modification of objects that could potentially be used by malicious programs. Since enabling this option can affect operation of some legitimate programs, running the anti-virus in this mode may cause compatibility issues
  • Paranoid — in this mode a user is prompted when a driver is loaded or a program is launched automatically
  • Custom — adjust Dr.Web's response to various events in the system as you see fit
  • The same set of system objects and routines is available for protection in all modes, and includes:
  • HOSTS file
  • Low-level disk access
  • Driver loading
  • Access to the Image File Execution Options
  • Access to User Drivers
  • Winlogon shell settings
  • Winlogon dialogue windows
  • Windows shell autorun
  • Executable file associations
  • Software Restriction Policies
  • Internet Explorer BHO
  • Autorun
  • Automatic implementation of policies
  • Safe mode settings
  • Session Manager settings
  • Dr.Web Cloud:
  • Similarly to the Dr.Web Cloud Checker available in Dr.Web for Android, Dr.Web 8.0 permits the parental control and SpIDer Gate to check URLs with the Dr.Web Cloud service on Doctor Web's servers.
  • As a user goes to a web-site, the respective URL is sent to Doctor Web to determine if the site is safe to visit.
  • The URL is checked in real time regardless of updating settings or how up-to-date the virus definitions on the user's computer are.
  • No information that may help identify the user is transmitted to Doctor Web by Dr.Web Cloud.
  • Updated Dr.Web Parental control
  • Limiting Internet and computer time.
  • The minimal period of usage is one hour.
  • When the allowed period ends, a corresponding notification is displayed and all connections are interrupted.
  • When access to a site is blocked, a notification similar to hose displayed by SpIDer Gate or parental control appears in the browser window.. When access to the computer is blocked, the Windows welcome screen is displayed.
  • Windows accounts support
  • This feature allows you to configure filtering web pages and limit computer land the Internet time individually for each user.
  • The list of existing accounts is generated in the parental control settings automatically.
  • This feature does not enamble to manage access to local files, folders or devices.
  • Restrict access to devices
  • In the local access settings you can now also restrict access to the following types of devices:
  • Disk drive
  • CD/DVD-ROM
  • Keyboard
  • Mouse
  • Network adapter
  • Audio and video device
  • Game controller
  • USB-device
  • COM / LPT port
  • Two device access modes are available: completely ban access for all processes of the operating system or use the user-prompt mode in which the user will be notified whenever a process attempts to access adevice.
  • Device access settings are applied under all user accounts.
  • New customization features and a single Dr.Web (control center (except Scanner settings):
  • In the version 8.0 you can right-click on the SpIDer Agent icon in the system tray to invoke the settings window that permits you to adjust general settings of the anti-virus and configure all its components, including the Firewall. Only the scanner settings are available in a separate window.
  • New anti-virus configuration features:
  • An expanded list of on-screen notifications:
  • Enhanced logging configuration:
  • The standard mode available in Dr.Web 7.0 is no longer used. Information is logged in a mode similar to the extended mode (the default) or debug mode of the version 7.0.
  • By default, detailed logging is conducted until a reboot to reduce the log file size. if necessary, the detailed logging period can be extended.
  • Now you can save memory dumps upon scanning errors.
  • A link to the logs folder is now available in the anti-virus settings window.
  • The anti-virus also enables you to collect pcap-logs and detailed firewall logs.
  • Detailed logs of Dr.Web services (Dr.Web Control Service) are now also available.
  • New quarantine settings:
  • The quarantine folder size on each drive is displayed.
  • Upon detection of infected files on hard or removable drives you can now choose the quarantine location.
  • You can limit the size of the quarantine folder and clean it on each hard drive.
  • Single network configuration for all Dr.Web components:
  • All the settings are aggregated in the Proxy-server section.
  • You can specify settings for several proxy servers.
  • Import and export anti-virus settings and reset them to default.
  • New parental control settings:
  • Limit Internet and computer time.
  • The Web filter and Internet time and computer time settings are defined individually for each user account in Windows.
  • Block access to files and folders as well as devices.
  • Black and white lists of sites are created in the same window and addresses are checked for collision as you type.
  • Simplified SpIDer Mail configuration.
  • Black and white lists of e-mail addresses are created in the same window and addresses are checked for collision as you type.
  • Settings for automatic and manual interception of connections have been merged.
  • Separate settings for scanning archives and containers.
  • SpIDer Gate configuration simplified
  • The scanning priority slider is now available in the Advanced settings section. A drop-down list is used instead.
  • The option to use SpIDer Gate as a local proxy server has been removed.
  • Separate settings for scanning archives and containers.
  • The new notification system. Notifications can be sent via e-mail:
  • The list of events upon which Dr.Web 8.0 sends notifications:
  • A threat is detected.
  • A URL is blocked.
  • A spam message is detected.
  • A mass mailing is detected.
  • Access to a site is denied.
  • Access to a device is denied.
  • Allowed Internet time is over.
  • Allowed computer time is over.
  • Preventive protection
  • Self-protection status has changed.
  • Access to a protected object is blocked.
  • Connections awaiting firewall's reply are detected.
  • Updating
  • Virus databases have been updated.
  • Update error
  • Virus databases are outdated
  • There is a new version of the product
  • The license has expired
  • The license is expiring.
  • On-screen notifications:
  • Notifications are divided into modal and ordinary.
  • Modal notifications require user input and close only upon an appropriate action on the part of the user. An example of such a notification is a reboot prompt.
  • Ordinary notifications inform a user about events that do not require input and close after some time. One ordinary notification can be displayed for similar events, i.e. one message and the event counter are placed in the same window.
  • Modal notifications do not interrupt ordinary ones but are placed in the queue for display, that is only one notification window is displayed at any time.
  • If needed, a notification window can contain a link to a window with more information about the event (for example, with a list of infected objects, names of viruses and performed actions, etc.), or to the notifications configuration window.
  • Notifications appear over the Windows notification area.
  • E-mail notifications:
  • E-mail notification can be sent upon the same events upon which on-screen notifications appear.
  • Yet you can select to be notified upon some events by e-mail and display on-screen notifications for other events.
  • Notifications are sent only at one e-mail address.
  • A single statistics window:
  • In the version 8.0 statistics of all Dr.Web components, including the firewall logs, is displayed in a single window. Statistics is displayed for the current session. Only scanning results are displayed in a separate window.
  • Other changes:
  • Dr.Web LinkChecker has been removed from the distribution because most popular browsers only install plugins from approved sites.
  • License Manager UI tweaks:
  • A list of components allowed under the license has been removed.
  • Information about the license type is displayed.
  • License Manager and Register license items in the SpIDer Agent menu are now available in the user mode.
  • The option Allow/block once set in the firewall's prompt now applies to all events during the process's lifetime. In the version 7.0, such rules were applied only until the next connection to the port, which could lead to repeated requests for permission.
  • Quarantine Manager UI tweaks:
  • Improved usability (similarly to CureIt! 7.0)
  • Quarantine settings are included into general Dr.Web settings.