WiseVector Stop-X

Discussion in 'other anti-malware software' started by bellgamin, Aug 10, 2020.

  1. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    543
    Location:
    China
    WVSX can work well alongside most other AV programs, except Avast and AVG.
    Before having WVSX registered in Windows Action Center as an AV, we should become a MVI partner first and we would like to achieve it in this year.
    Yes, there is just streaming updates without clould protection in the current version.
     
  2. lucd

    lucd Registered Member

    Joined:
    Jan 30, 2018
    Posts:
    782
    Location:
    Island of Woman
    these kind of messages indicate corruption, almost never they are malware, who does buffer overflow ? btw. I believe your programme would spot such a thing, I scan system and yet to see any problem
    good to know because I do run avast with WVSX on 1 host with no visible issues so far

    but running two AVs is always bad idea, better leave WVSX as standalone, I feel confident enough now to use WVSX as main thing (main and only AV)
    I would disable ransomware and leave it to other AV if you insist at using a modular approach, I have no idea how WVSX fairs against ransomware so I don't fully trust it yet, eg. you can try checkmal or blackfog for anti ransom if you really need two things running
     
    Last edited: May 3, 2021
  3. drhu22

    drhu22 Registered Member

    Joined:
    Aug 21, 2010
    Posts:
    585
    Wisevector service is shown as not running under w10 services, but is shown as running in process explorer... any explanation/ideas why?
     
  4. avman1995

    avman1995 Registered Member

    Joined:
    Sep 24, 2012
    Posts:
    944
    Location:
    india
    Your right but considering the way WSVX is right now (no web guard and no registering in action center so it leaves defender on anyways) and that they say it will play along with most avs.

    Its advanced modules barely interfere or use any resources so it isnt a bad idea overall. Its like running MBAM alongside your AV from the old days. Of course when WSVX adds cloud and web protection i will seriously consider leaving it alone and pair it with some HIPS or something else. WSVX will raise alarms if some process tries to inject code or move it around in memory (process/code injection In simple tems). I would guess they are monitoring those API calls especially if it comes from a unknown/untrustworthy application (correct me if i am wrong). These things are always 99% malicious. I have seen WIBD immediately flag even the silent of the malware loaders (bazar) when it tries to do shellcode injection or start anything else thats suspicious.

    Which also makes me wonder why WSVX doesn't turn off defender if its going to be a first line of defence? Is this planned to be implemented? @WiseVector
     
    Last edited: May 3, 2021
  5. lucd

    lucd Registered Member

    Joined:
    Jan 30, 2018
    Posts:
    782
    Location:
    Island of Woman
    @ avman1995
    in that case blackfog would integrate nicely as it has the networking component but its not an AV (blackfog+WVSX is blazing fast)
    I have experience in running WVSX alongside other AV, it's difficult to measure but I think ESET+WSVX is sluggish for instance (ESET alone is very performant), seriously I think it's terrible idea (2 avs), it begs for trouble
    if you need to do something risky (like doing research and visiting unknown sites) why not virtualize browser instead or jump-in a virtual machine or just wait for the pro version of WVSX which is around the corner
     
    Last edited: May 3, 2021
  6. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    543
    Location:
    China
    Hi,

    It's normal. When WiseVectorSvc.exe stars up successfully, the WiseVector Service will stop automatically.
     
  7. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    543
    Location:
    China
    After WVSX is registered in Windows Action Center as an AV, the defender will be disabled automatically.
    When our new version with manually hips mode is released, I think there is no need to have another HIPS working alongside WVSX. Please refer to the screenshots of our next release below.
    https://ibb.co/yX7y4Px
    https://ibb.co/80J7nNw
    https://ibb.co/TLyJgmY
    https://ibb.co/bz5gPn6
    https://ibb.co/M9KX7Zp
     
    Last edited: May 4, 2021
  8. drhu22

    drhu22 Registered Member

    Joined:
    Aug 21, 2010
    Posts:
    585
    Thanks very much for your reply.
     
  9. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    543
    Location:
    China
    @lucd
    Once there are malware trying to delete WVSX from the task scheduler, it will be stopped at once automatically. This feature has been added in V2.67 and V2.73 already.
    But if this action is performed by a user manually, WVSX would have no reaction.
     
    Last edited: May 5, 2021
  10. Melita

    Melita Registered Member

    Joined:
    Nov 20, 2014
    Posts:
    138
    Location:
    Spain
    How many GBs of your disk that it took over one hour to scan?
    How many GBs of your disk did it scan in 14 mts.? Was it a full scan?
    Because of the conflicting information about scan time I just need to get an idea about it :)

    Any information from other members about scan time is also welcome.
     
    Last edited: May 4, 2021
  11. cruelsister

    cruelsister Registered Member

    Joined:
    Nov 6, 2007
    Posts:
    1,649
    Location:
    Paris
    WV- Regarding manipulation of the task scheduler, please note the file submitted in the PM. Tested on Win 8.1 and Win10H2. You can have Windows Defender enabled if you like as it is currently undetected by Microsoft.
     
  12. Osaban

    Osaban Registered Member

    Joined:
    Apr 11, 2005
    Posts:
    5,614
    Location:
    Milan and Seoul
    About 50 GB. I did it out of curiosity, I stopped scanning my system many years ago, basically a waste of time as my computer runs virtualized most of the time. If something feels odd in its performance, restoring a system image takes 3 minutes max...
     
  13. stapp

    stapp Global Moderator

    Joined:
    Jan 12, 2006
    Posts:
    23,933
    Location:
    UK
    It was last year that I did that scan. System has changed since then.
    Very rare that I do full scans.
     
  14. lucd

    lucd Registered Member

    Joined:
    Jan 30, 2018
    Posts:
    782
    Location:
    Island of Woman
    I agree scans are slow even quick scans but they are done thoroughly, they resemble kaspersky's scans but tad faster. They are like eset scans but slower, in general speed is normal. Only the quick scan could be faster imo
     
    Last edited: May 5, 2021
  15. roger_m

    roger_m Registered Member

    Joined:
    Jan 25, 2009
    Posts:
    8,627
    Scan times are not an issue for me, as I never run scans. I ran a Quick Scan after installing WiseVector and have done none since as I don't feel I need to. I'm just happy to let WiseVector run in the background and alert me when it needs to.
     
  16. Melita

    Melita Registered Member

    Joined:
    Nov 20, 2014
    Posts:
    138
    Location:
    Spain
    These scan times are not unreasonable for me. Specially so because "they are done thoroughly". I have done both Kaspersky and Eset scans. So, now I have a good idea about what to expect. Thank you.
     
    Last edited: May 6, 2021
  17. avman1995

    avman1995 Registered Member

    Joined:
    Sep 24, 2012
    Posts:
    944
    Location:
    india
    Hey @WiseVector does WSVX detect potentially unwanted programs/adware right now? Along with malware such as file infectors, autorun USB threats etc. I would guess yes? Because these are pretty rampart threats.
     
  18. Sir Percy

    Sir Percy Registered Member

    Joined:
    Apr 22, 2010
    Posts:
    289
    It's not because it is done thoroughly and the speed is certainly not normal. It's simply by design according to WiseVector (i asked previously) because they do not use all CPU cores or hyperthreading when scanning so users are not annoyed it's taking up resources.

    I agree there probably aren't much need for full scans with WiseVectorX, but the option to scan is there, why not simply use all cores and hyperthreading and have an option in the setting to use for example 25, 50 or 75% of the CPU during scans? Then all would be happy.

    My scans took 1 hour & 15 mins btw, that's just outrageously slow, even WD which is a slow scanner only takes a few minutes with the full WD scan
     
  19. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    543
    Location:
    China
    Of course, WVSX detects PUP.
     
  20. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    543
    Location:
    China
    Thanks! It's a very good suggestion. We would like to add the option in the future. Making WVSX more user-friendly is always our goal!
     
  21. lucd

    lucd Registered Member

    Joined:
    Jan 30, 2018
    Posts:
    782
    Location:
    Island of Woman
    good info, I said speed is normal for full scans (nothing I haven't seen before or out of the ordinary), I appreciate the fact that I can work and still use WSVX in the background doing full scans, I expect quick scans to be faster. Maybe they can add "use all cores" option under each of the scans, that'd be very cool and would accomodate for both needs. Btw. aren't scans slower if you use "aggressive heuristics"?
     
  22. solitarios

    solitarios Registered Member

    Joined:
    Mar 28, 2016
    Posts:
    230
    When they make some money with the product it would be very good if they participate in tests like AV-Comparatives, this would initially be very beneficial for their venture.

    Edit: Is WV capable of detecting a man-in-the-middle attack?
     
    Last edited: May 10, 2021
  23. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    543
    Location:
    China
    There is no connection between the scan speed and the heuristics level.
     
  24. drhu22

    drhu22 Registered Member

    Joined:
    Aug 21, 2010
    Posts:
    585
  25. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    543
    Location:
    China
    Yes, I agree with you. We would like to take part in such test in the future.
    The man-in-the-middle attack. Do you mean by the supply chain attack? If yes, there is high probability that WVSX can detect this type of malware. If you mean by ARP Poison, WVSX does not have protection layer for it, but it's rarely seen in modern attacks, .
     
    Last edited: May 10, 2021
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.