WiseVector Stop-X

Discussion in 'other anti-malware software' started by bellgamin, Aug 10, 2020.

  1. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    482
    Location:
    China
    Hi Baldrick,

    Did you install WVSX in your production machine or in a virtual machine?
     
  2. Hiltihome

    Hiltihome Registered Member

    Joined:
    Jul 5, 2013
    Posts:
    1,036
    Location:
    Baden Germany
    Thank's for looking into this.

    Actual WIN W10-21H1-19043.1081

    Config:
    https://abload.de/img/screenshot2021-06-231w0jus.jpg

    https://abload.de/img/screenshot2021-06-2317hkfn.jpg

    https://abload.de/img/screenshot2021-06-231r4k7o.jpg

    https://abload.de/img/screenshot2021-06-2313cknn.jpg
     
    Last edited: Jun 23, 2021
  3. Baldrick

    Baldrick Registered Member

    Joined:
    May 11, 2002
    Posts:
    2,590
    Location:
    South Wales, UK
    Hi WV

    Not on a VM...I say that because the system is not a Production system per se, just one I use for testing...but not a VM.

    Regards, Baldrick
     
  4. Tarnak

    Tarnak Registered Member

    Joined:
    Feb 5, 2007
    Posts:
    4,966
    @WiseVector

    Hi, I did that just a short time ago, as suggested by you, but it just comes back.

    WiseVector_v3.00 install_15.JPG
     
  5. newbino

    newbino Registered Member

    Joined:
    Aug 13, 2007
    Posts:
    460
  6. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    9,703
    Location:
    U.S.A. (South)
    @WiseVector- I wish to make Exclusions in Custom Scan for ALL image extensions (I have tons that just eat time for the scanner) How I wish to do this. Thank You and as always wish much success in this AV AI program + New Features.
    sshot-2021-06-23-16-38-12.jpg
     
    Last edited: Jun 23, 2021
  7. Hiltihome

    Hiltihome Registered Member

    Joined:
    Jul 5, 2013
    Posts:
    1,036
    Location:
    Baden Germany
    I wish to keep WVSX straight forward, and not customized for geeks.
     
  8. Lyx

    Lyx Registered Member

    Joined:
    Apr 4, 2009
    Posts:
    137

    I'm on W10 20H2 Home, with KTS, NVT OSArmor 1.4.3, MBAE 1.13.345, WSB 4.36 and Win10Privacy 3.7.0.8. Ah, and Kerish Doctor 4.85 too.

    1) OK. It would be useful

    2) The problem with blank characters appeared after I installer v3 on v2.73. After completely uninstalling and performing a clean reinstall of v3, I have no more these problems.

    3) I didn't see the destination the program was trying to connect to, but maybe because the popup disappeared too fast?

    4) After running WSVX a couple of hours, I regularly got BSOD due to WisevectorFW64.sys. Moreover, with WXSVX running, my Vpn Provider app (based on openvpn 2.4) regularly disconnect/reconnect (in best case, but it happens that the app is no more able to reconnect after disconnecting). However, I have whitelisted this app (as well as bin.openvpn.exe and tapinstall.exe), in exclusions, and allowed them in the WSVX's firewall rules. This problem very specific to WSVX usage: I have disabled WSVX since 3 days, and had have no vpn problem since.
     
  9. drhu22

    drhu22 Registered Member

    Joined:
    Aug 21, 2010
    Posts:
    515
    Thanks for replying... what Im curious about is, which element of the WV firewall component is not covered by Commodos firewall. I get that the two programs are complementary but recommending having both firewall components running makes me wonder what WV's brings that is different. Im talking about the firewall components only.

    In other words, if not redundant, how are the two firewall components complementary?
     
  10. solitarios

    solitarios Registered Member

    Joined:
    Mar 28, 2016
    Posts:
    199
    When is WV going to register in the Windows security center? So we don't have two antivirus running at the same time.
     
  11. paulderdash

    paulderdash Registered Member

    Joined:
    Dec 27, 2013
    Posts:
    4,391
    Location:
    Under a bushel ...
    Or rather the other way round, WSVX incorporate Cruel-only CF - peerless product, with great and responsive devs!
     
  12. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    482
    Location:
    China
  13. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    482
    Location:
    China
    Thanks for your feedback, we will release the next version asap, then you can install it again to see if there the problem persists or not.
     
  14. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    482
    Location:
    China
    It seems that the temp folder and all its sub folders have been set to read-only, please try to remove the read-only attribute of the temp folder manually and try again.
     
  15. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    482
    Location:
    China
    This is not possible, although you can not execute the image file directly, but the malicious program may save the code to the image file, please search "Image Steganography" in google to learn more info.:rolleyes:
     
    Last edited: Jun 24, 2021
  16. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    482
    Location:
    China
    I'm so sorry for all the trouble, I think the root cause of everything should be a conflict with openvpn, we will do testing with openvpn and release the next version asap to solve this problem.
     
  17. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    482
    Location:
    China
    I don't know much about Comodo's firewall, but you can trust WVSX's firewall. Which is powered by AI, can give you maximum protection with fewer pop-ups. :D
     
  18. WiseVector

    WiseVector Registered Member

    Joined:
    Aug 16, 2020
    Posts:
    482
    Location:
    China
    We will register in the WSC as soon as possible and will let you know if there is any new info, thanks.
     
  19. cruelsister

    cruelsister Registered Member

    Joined:
    Nov 6, 2007
    Posts:
    1,518
    Location:
    Paris
    This seems to be quite true (so far). Although direct comparisons are difficult as WV has more Firewall restriction levels then does the firewall of Comodo, at the default levels (CFW at Safe Mode vs WV at Automatic Mode) CFW is more restrictive whereas WV is more specific to malicious connections. But the important thing is neither in any way inhibits the other.

    The best example would be a quickie test that I ran on a WVSX + CF(cruel) system: Selected were two trojan downloaders each of which I re-coded and insured FUD status (so I had 4 samples). I then disabled WV real-time protection as well as Comodo's viruscope.

    1). for the 2 known files, WV acted first, detecting and deleting the malware files prior to them even making it into CF.
    2). for the 2 FUD files, CF acted first by Sandboxing the malware with a simultaneous firewall alert. One of these was subsequently detected and deleted by WV after a few seconds delay.
    With CF totally disabled and WV real-time enabled, the two older malware files were deleted and both FUD files were blocked from connecting out by WV, although one was still hanging out in memory (but not doing anything).

    Further, I tried something easy- a Seamonkey browser nightly (which is unsigned but legitimate) was installed. WVSX allowed Seamonkey to run and connect. CF sandboxed it with a concurrent FW alert. Anyway, WiseVector is really a remarkable application by itself. In combination with CF it is Extreme

    Hope this helped and hope I wasn't confusing (which would be a first for me).
     
    Last edited: Jun 24, 2021
  20. Baldrick

    Baldrick Registered Member

    Joined:
    May 11, 2002
    Posts:
    2,590
    Location:
    South Wales, UK
    Thanks WV

    I look forward to the next version and hopefully...no issue.

    Regards, Baldrick
     
  21. rollers

    rollers Registered Member

    Joined:
    Sep 13, 2004
    Posts:
    501
    Location:
    UK
    Not confusing at all but spot on as usual
     
  22. drhu22

    drhu22 Registered Member

    Joined:
    Aug 21, 2010
    Posts:
    515
    That answers my original question... thanks
     
  23. paulderdash

    paulderdash Registered Member

    Joined:
    Dec 27, 2013
    Posts:
    4,391
    Location:
    Under a bushel ...
    I have a Win 10 instance now with only CruelCF and WVSX (still 273, but may try new beta). Does one have to set any mutual exclusions (exclude WVSX in CF, and vice versa)?
     
  24. Tarnak

    Tarnak Registered Member

    Joined:
    Feb 5, 2007
    Posts:
    4,966
    I went and changed something in that temp folder, and I finally have it installed. But, I immediately after the reboot, exited from WVSX. I will then enable WVSX, the next time I restart my laptop. So, it is installed but not active.
     
  25. newmember88

    newmember88 Registered Member

    Joined:
    Dec 25, 2008
    Posts:
    13
    i added this into exclusion. Just got it minutes ago. Is it a false positive?

    virus.PNG
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.