Discussion in 'other anti-malware software' started by bellgamin, Aug 10, 2020.
No they where not.
Yes i did.
Im still having a problem with certain installers not running on w10 including StopX for reasons I still havent resolved.
I have extracted the files from the installer with winrar and put the folder in program files. Everything seems to be working perfectly... is it ok to run it this way or is there some issue I should be aware of ?
The main program and the service are autostarting with Windows ok, updates and interface are working with no apparent problems, and no problems are shown in the log.
To install WVSX, try disabling temporally W10 ASLR...
Truly harlan4096, you are a prince among men... thank you!
oohhh, nice. Application Network Access Control, NIDS sounds very interesting. Can you describe what the WiseVector version of these mean? What is specific in your version of Network Intrusion Detection? Would Application Network Access Control acts as a sort of firewall?
Thanks for the head up! It was actually some sort of stealer/rat didn't look into the sample in depth to get a vision of what it was but certainly not ransomware.
It was a very new sample and i am still running quite fresh new threats through WSVX (detected by very few engines on vt) and performance has been consistently great. I cant wait to see this program grow and mature with website blocking and cloud and get even better. Behaviour detection is pretty strong even against notoriously silent malware like bazarloader which otherwise gets a long time to get on a lot of vendors radar. Last time i conducted against a fresh bazar varient it got blocked behaviour detection possibly when it tried to start injecting code or running other processes.
The main program window showing " You are protected", right? Can WVSX update successfully？
Can you please test WVSX with some samples (no need to run) to ensure whether the Real-time Protection is working well or not?
I temporarily disabled W10 ASLR as per harlan4096's advice which fixed the installer not working problem, after which I reinstalled and everything is good now. Thanks again harlan4096!!
I can tell you that StopX was showing "you are protected" and that updates were working.
Also, about a week ago Stopx and 360Total Security popped up at the same time to stop a perceived threat, so the protection was working when I was running it from the manually extracted files. Unfortunately I dont have the log file from that event.
Thanks for your positive feedback!
The alert is from Threat Remediation, which commonly appear when ransomware is detected. I couldn't use "Must".
Yes, it should be a stealer ( Agent Tesla, Formbook, Nanocore or Remcos). You're quite a professional.
Thank you very much!
You are welcome, I had the same issue when trying to install WVSX some time ago
Yes, Network Access Control acts as a sort of firewall.
Actually, network protection will be a complementary of our behavior detection and most new features are designed for experienced users.
With network protection, deep memory inspection, thread hijack detection, events monitoring, WVSX can detect whitelisted applications abusing which other traditional firewalls can't. When all the features work together, WVSX will perform like a whole package of Secret Weapons to prevent users from threats.
I will post the pics of these features here when it's available.
Re: Can you please test WVSX with some samples (no need to run) to ensure whether the Real-time Protection is working well or not?
Sorry for the omission in my previous response... the truth is I dont have any knowlege/experience testing samples and am not sure if I want to jump into it just now.
Awesome! Thanks. I look forward to the screenshots.
drhu22- The real time protection is excellent. If you want, please refer to post #16 in this thread for a summary of a test done.
your points are valid, but there are many security products untested and uncertified by third party that do network stuff. Many operating on company level. I believe you can't always get the money upfront, it depends. It is not easy and not for everybody, maybe he is good programmer and terrible entrepreneur, maybe the gov. did not want to finance him for some reason, consider many factors. I believe he wants/will certify at some point
I have been using it for a while now partly due to your recommendation, and am happy with it as an extra layer of protection. Im unsure though if I still need another av/antimalware running as well... have been using KSC or 360total. I know ComodoFW with your rules is strong, but I still found their popups too annoying to deal with even with your settings. Maybe Ill give it another try.
You really shouldn't have gotten many CF popups at all with the HIPS disabled (which I strongly suggest). Give the combo another try- they actually enhance each other yielding Optimal protection.
I should note that there isn't anything wrong with being fond of KSC, but I feel that this should be an either/or decision and not an additive consideration.
cruelsister, thanks very much for your reply... re CFW: maybe I didnt get your rules applied properly. Ill have to find a text version so I can check and verify steps more easily.
We are not funded by any third parties at present. Each company has its own different way of operating and how to deploy the resources available to it.
It's great for the development of a security company to be certified by MS and we plan to become a partner of MVI this year. Because of the 2019-nCoV, Microsoft seems to have become less efficient（ we sent an email to them on 19th, but no reply still now). I don't know if our plan can be done as scheduled.
Before WVSX is certified, users can make their own choice to use it or not. Thanks.
Right. But AVs can actually do much more than those types of software. WiseVector is becoming a full-fledged AV now, so it has become important. But yeah, I hope they do so very soon, but I won't let a totally unknown AV be my main AV just because it has decent protection.
Sadly you stated similar excuse/reasoning before also. Only the date changed this time. I also have other valid reasons to be suspicious about (No, it's not because you are from China) which I won't mention here. Anyway, I'm leaving this topic. "Wise" users would know it's "Wise" not to use WiseVector at the moment. See you again if WiseVector ever gets certified.
Why should i, anyone, choose WVSX instead of WD strengthened with Andy Ful`s Configure Defender set to high and with all the rest of W10`s security?
The conversation was specifically regarding WiseVector. A comparison with WD(AF) was neither implied nor intended.
Well, i know that.
I should not have quoted that post but instead posed this question as a separate question, because it was meant to be a question all on it`s own. So please, kindly, how do they compare. WD is very god nowadays so why should someone replace it with WVSX?
Against forum policy:
Separate names with a comma.