WiseVector Stop-X

Discussion in 'other anti-malware software' started by bellgamin, Aug 10, 2020.

  1. pb1

    pb1 Registered Member

    Joined:
    Apr 4, 2014
    Posts:
    786
    Location:
    sweden
    No they where not.

    Yes i did.
     
  2. drhu22

    drhu22 Registered Member

    Joined:
    Aug 21, 2010
    Posts:
    531
    Im still having a problem with certain installers not running on w10 including StopX for reasons I still havent resolved.

    I have extracted the files from the installer with winrar and put the folder in program files. Everything seems to be working perfectly... is it ok to run it this way or is there some issue I should be aware of ?
    The main program and the service are autostarting with Windows ok, updates and interface are working with no apparent problems, and no problems are shown in the log.
     
    Last edited: Apr 21, 2021
  3. harlan4096

    harlan4096 Registered Member

    Joined:
    May 6, 2008
    Posts:
    213
    Location:
    Almería (Spain)
    To install WVSX, try disabling temporally W10 ASLR...
     
  4. drhu22

    drhu22 Registered Member

    Joined:
    Aug 21, 2010
    Posts:
    531
    Truly harlan4096, you are a prince among men... thank you!
     
  5. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,986
    Location:
    Location Unknown
    oohhh, nice. Application Network Access Control, NIDS sounds very interesting. Can you describe what the WiseVector version of these mean? What is specific in your version of Network Intrusion Detection? Would Application Network Access Control acts as a sort of firewall?
     
  6. avman1995

    avman1995 Registered Member

    Joined:
    Sep 24, 2012
    Posts:
    944
    Location:
    india
    Thanks for the head up! It was actually some sort of stealer/rat didn't look into the sample in depth to get a vision of what it was but certainly not ransomware.

    It was a very new sample and i am still running quite fresh new threats through WSVX (detected by very few engines on vt) and performance has been consistently great. I cant wait to see this program grow and mature with website blocking and cloud and get even better. Behaviour detection is pretty strong even against notoriously silent malware like bazarloader which otherwise gets a long time to get on a lot of vendors radar. Last time i conducted against a fresh bazar varient it got blocked behaviour detection possibly when it tried to start injecting code or running other processes.
     
  7. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    496
    Location:
    China
    Hi,
    The main program window showing " You are protected", right? Can WVSX update successfully?
    Can you please test WVSX with some samples (no need to run) to ensure whether the Real-time Protection is working well or not?
    Thanks!
     
  8. drhu22

    drhu22 Registered Member

    Joined:
    Aug 21, 2010
    Posts:
    531
    I temporarily disabled W10 ASLR as per harlan4096's advice which fixed the installer not working problem, after which I reinstalled and everything is good now. Thanks again harlan4096!!

    I can tell you that StopX was showing "you are protected" and that updates were working.

    Also, about a week ago Stopx and 360Total Security popped up at the same time to stop a perceived threat, so the protection was working when I was running it from the manually extracted files. Unfortunately I dont have the log file from that event.
     
    Last edited: Apr 22, 2021
  9. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    496
    Location:
    China
    Thanks for your positive feedback!
    The alert is from Threat Remediation, which commonly appear when ransomware is detected. I couldn't use "Must". :D
    Yes, it should be a stealer ( Agent Tesla, Formbook, Nanocore or Remcos). You're quite a professional.:thumb:
     
  10. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    496
    Location:
    China
    Thank you very much!;)
     
  11. harlan4096

    harlan4096 Registered Member

    Joined:
    May 6, 2008
    Posts:
    213
    Location:
    Almería (Spain)
    You are welcome, I had the same issue when trying to install WVSX some time ago :)
     
  12. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    496
    Location:
    China
    Yes, Network Access Control acts as a sort of firewall.
    Actually, network protection will be a complementary of our behavior detection and most new features are designed for experienced users.
    With network protection, deep memory inspection, thread hijack detection, events monitoring, WVSX can detect whitelisted applications abusing which other traditional firewalls can't. When all the features work together, WVSX will perform like a whole package of Secret Weapons to prevent users from threats.
    I will post the pics of these features here when it's available.:)
     
  13. drhu22

    drhu22 Registered Member

    Joined:
    Aug 21, 2010
    Posts:
    531
    @WiseVector

    Re: Can you please test WVSX with some samples (no need to run) to ensure whether the Real-time Protection is working well or not?
    Thanks!

    Sorry for the omission in my previous response... the truth is I dont have any knowlege/experience testing samples and am not sure if I want to jump into it just now.
     
  14. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,986
    Location:
    Location Unknown
    Awesome! Thanks. I look forward to the screenshots.
     
  15. cruelsister

    cruelsister Registered Member

    Joined:
    Nov 6, 2007
    Posts:
    1,519
    Location:
    Paris
    drhu22- The real time protection is excellent. If you want, please refer to post #16 in this thread for a summary of a test done.
     
  16. lucd

    lucd Registered Member

    Joined:
    Jan 30, 2018
    Posts:
    686
    Location:
    Island of Woman
    your points are valid, but there are many security products untested and uncertified by third party that do network stuff. Many operating on company level. I believe you can't always get the money upfront, it depends. It is not easy and not for everybody, maybe he is good programmer and terrible entrepreneur, maybe the gov. did not want to finance him for some reason, consider many factors. I believe he wants/will certify at some point
     
    Last edited: Apr 22, 2021
  17. drhu22

    drhu22 Registered Member

    Joined:
    Aug 21, 2010
    Posts:
    531
    I have been using it for a while now partly due to your recommendation, and am happy with it as an extra layer of protection. Im unsure though if I still need another av/antimalware running as well... have been using KSC or 360total. I know ComodoFW with your rules is strong, but I still found their popups too annoying to deal with even with your settings. Maybe Ill give it another try.
     
    Last edited: Apr 22, 2021
  18. cruelsister

    cruelsister Registered Member

    Joined:
    Nov 6, 2007
    Posts:
    1,519
    Location:
    Paris
    You really shouldn't have gotten many CF popups at all with the HIPS disabled (which I strongly suggest). Give the combo another try- they actually enhance each other yielding Optimal protection.

    I should note that there isn't anything wrong with being fond of KSC, but I feel that this should be an either/or decision and not an additive consideration.
     
  19. drhu22

    drhu22 Registered Member

    Joined:
    Aug 21, 2010
    Posts:
    531
    cruelsister, thanks very much for your reply... re CFW: maybe I didnt get your rules applied properly. Ill have to find a text version so I can check and verify steps more easily.
     
  20. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    496
    Location:
    China
    We are not funded by any third parties at present. Each company has its own different way of operating and how to deploy the resources available to it.
    It's great for the development of a security company to be certified by MS and we plan to become a partner of MVI this year. Because of the 2019-nCoV, Microsoft seems to have become less efficient( we sent an email to them on 19th, but no reply still now). I don't know if our plan can be done as scheduled.
    Before WVSX is certified, users can make their own choice to use it or not. Thanks.
     
  21. SeriousHoax

    SeriousHoax Registered Member

    Joined:
    Mar 27, 2019
    Posts:
    29
    Location:
    Bangladesh
    Right. But AVs can actually do much more than those types of software. WiseVector is becoming a full-fledged AV now, so it has become important. But yeah, I hope they do so very soon, but I won't let a totally unknown AV be my main AV just because it has decent protection.
    Sadly you stated similar excuse/reasoning before also. Only the date changed this time. I also have other valid reasons to be suspicious about (No, it's not because you are from China) which I won't mention here. Anyway, I'm leaving this topic. "Wise" users would know it's "Wise" not to use WiseVector at the moment. See you again if WiseVector ever gets certified.
     
  22. pb1

    pb1 Registered Member

    Joined:
    Apr 4, 2014
    Posts:
    786
    Location:
    sweden
    Why should i, anyone, choose WVSX instead of WD strengthened with Andy Ful`s Configure Defender set to high and with all the rest of W10`s security?
     
  23. cruelsister

    cruelsister Registered Member

    Joined:
    Nov 6, 2007
    Posts:
    1,519
    Location:
    Paris
    The conversation was specifically regarding WiseVector. A comparison with WD(AF) was neither implied nor intended.
     
  24. pb1

    pb1 Registered Member

    Joined:
    Apr 4, 2014
    Posts:
    786
    Location:
    sweden
    Well, i know that.

    I should not have quoted that post but instead posed this question as a separate question, because it was meant to be a question all on it`s own. So please, kindly, how do they compare. WD is very god nowadays so why should someone replace it with WVSX?
     
  25. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    8,399
    Location:
    U.S.A.
    Against forum policy:
    https://www.wilderssecurity.com/threads/posting-policy-recommended-threads.180128/
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.