Some people use WV as a complement to Windows Defender. I have F-Secure Safe on my PC and it runs smoothly. Would adding WV be a plus to my security? I'm wary of 2 realtime scanners..But I like the fact that it's not based on signatures.....
WiseVector Free AI Driven Security
- Thread starter Thirio
- Start date
- Jun 22, 2014
- 864
You could run WV on demand as that`s what I do as I have K7 as the main protection ?
Regards Eck
- Mar 29, 2018
- 7,613
It looks like @WiseVector might make a very nice product even better:
Thanks for your feedback.
Our AI in the cloud runs without too many resource constraints compared with local AI, so it can try its best to extract family signatures from the missed samples and then deliver them to the endpoint immediately, that is the reason why the malware can be detected quickly.
We are considering to develop a feature like Avast CyberCapture: Prevents suspicious program from running and sends them to cloud for static and dynamic analysis. Once it finish it will tell the endpoint to block the program or not. This process will take a short time (0-2 minutes). But we are not sure whether it's acceptable for our users.
Last edited:
hello
can WiseVector StopX be use as the only av on a system ?
is it mandatory to add WD or another av?
What about WV + Comodo FW?
Ty a lot for your the answers
can WiseVector StopX be use as the only av on a system ?
is it mandatory to add WD or another av?
What about WV + Comodo FW?
Ty a lot for your the answers
- Apr 28, 2015
- 8,910
Yes, but for now WV can't register as the main security provider in W10 Security Center, but tagged to be added in the future...
No, but You can use WV + WD without issues...
Why not? just try
- Apr 13, 2013
- 3,224
They work excellently together, with the protection additive.
But please note (if you try this combo) that Comodo still has not vetted WVSX yet, so you would have to manually Trust it as WV is still viewed as Unrecognized.
- Apr 17, 2020
- 542
- Dec 14, 2018
- 643
Thanks for sharing the video.
This video is probably made by a member in Wilderssecurity.
"conres.dll" was not detected in his video, but I'm pretty sure this sample can be detected by WVSX even two years ago. It's an old sample which is dropped from files infected by Floxif virus. There might be something wrong with basic real-time monitoring during his test. Maybe a quick scan can help.
I have suggested him to test the sample again with the old version of WVSX which was signed in Sept with network disconnected to prove that WVSX can detect it with old database.
Last edited:
- Apr 17, 2020
- 542
@WiseVector I am getting this alert last few days at computer startup. And a full system scan with Wisevector StopX finds nothing.
Neither does other third party AV scanners.
I tried to go into Windows features and uncheck powershell and then rebooted and tried to install latest stable Powershell 7.1 (I was apparently using 5.0 i believe) AND now when trying to install new Powershell version 7 (while it is installing...) I get a new alert stating:
Is this false positive? I have all settings on (advanced detection also) and realtime at startup. Heurestics set to normal. Thanks!
Neither does other third party AV scanners.
I tried to go into Windows features and uncheck powershell and then rebooted and tried to install latest stable Powershell 7.1 (I was apparently using 5.0 i believe) AND now when trying to install new Powershell version 7 (while it is installing...) I get a new alert stating:
Is this false positive? I have all settings on (advanced detection also) and realtime at startup. Heurestics set to normal. Thanks!
- Dec 14, 2018
- 643
Hi@Tutman
"WIBD:StealthInjector" means PowerShell is creating remote thread in another process. Honestly the first alert looks very suspicious, since normally PowerShell does not start automatically at startup. And PowerShell does not usually inject code into another process. Have you keep WVSX's behavior detection open all the time?
"WIBD:Heur.Injector.F0" means PowerShell is injecting code into system process. I just downloaded and installed PowerShell 7.1 X64 in Windows 10 2004. The installer did not execute "RegisterManifest.ps1" during installation. I manually executed "RegisterManifest.ps1" but no alert from WVSX. I also checked the source code of the file but can't find any function related Process Injection. It seems that this issue is related to your specific computer configurations.
Have you installed any other security software?
Please download Autorun from sysinternals. And then check if any PowerShell script is executed at startup.
"WIBD:StealthInjector" means PowerShell is creating remote thread in another process. Honestly the first alert looks very suspicious, since normally PowerShell does not start automatically at startup. And PowerShell does not usually inject code into another process. Have you keep WVSX's behavior detection open all the time?
"WIBD:Heur.Injector.F0" means PowerShell is injecting code into system process. I just downloaded and installed PowerShell 7.1 X64 in Windows 10 2004. The installer did not execute "RegisterManifest.ps1" during installation. I manually executed "RegisterManifest.ps1" but no alert from WVSX. I also checked the source code of the file but can't find any function related Process Injection. It seems that this issue is related to your specific computer configurations.
Have you installed any other security software?
Please download Autorun from sysinternals. And then check if any PowerShell script is executed at startup.
- Oct 18, 2016
- 73
wise vector and this could be a good combination, one of the best firms in the industry like eset and wisevector's behavior analyzer which eset does not have.
- Apr 17, 2020
- 542
I have been also using/testing Mcafee Stinger with real protect. (But it never shows an alert and nothing in the logs.) And I already checked Autoruns but checked it again. I will try to turn off real protect and run the installer again for Powershell and see if it still gives the alert. Thanks for the fast response. You are always helpful and prompt on here and Wilders Security also! *Update I removed McAfee stinger from running and installed powershell 7.1 again with no alert this time! * I will keep watch and see if it pops up again.
Last edited:
- Dec 14, 2018
- 643
Hello Everyone,WiseVector StopX V2.70 is here,
What's new:
1. Added lightweight rollback to roll back changes caused by some destructive malware, such as ransomware. This feature has been designed to remain lightweight and users can hardly notice any performance degradation.
2. Redesigned the real-time file monitoring, it is more sensitive and faster than before.
3. Redesigned the Behavior Detection. Now the Behavior Detection can identify more unknown file infector viruses, being more capable of detecting advanced threats.
4. Improved Memory Protection to detect RAT trojan abuses legitimate processes to hide their malicious implants, such as Gh0st, Meterpreter and CobaltStrike.
5. Malware quarantine is now sorted by date. Quarantine reason is added.
6. The UI is not transparent now, so that the interface can be displayed more clearly. Some new skins are added.
7. Improved the ability to delete malicious files being locked.
8. Now users can select whether or not to automatically download and install program updates.
The download link:
https://update2.wisevector.com/WiseVector_StopX_V27.exe
https://www.wisevector.com/WiseVector_StopX_V27.exe
Please pick up the faster one.
After a few days of testing, V2.67 can update to V2.70 automatically. Now you can perform an overwrite install or fresh install.
Cheers & Best Regards,
WiseVector
Last edited:
I did the manual update from v2.67. I even close and exit v2.67 but it's still showing v2.67? Do I need to restart my laptop to show the new change?
Last edited:
- Dec 14, 2018
- 643
Hi,
Sorry, you can't update from V2.67 at present.
After a few days of testing, V2.67 can update to V2.70 automatically. Now you can perform an overwrite install or fresh install.
Ok did an overwrite install using v2.70 now everything is ok. Thanks
Some suggestions
The thin and light black and blue text on the white background in the Settings page is too light as age is catching up on me. Bold the text to make a better contrast
No dark mode?
Some suggestions
The thin and light black and blue text on the white background in the Settings page is too light as age is catching up on me. Bold the text to make a better contrast
No dark mode?
Last edited:
- Mar 16, 2019
- 3,862
Isn't there any way to exclude folders? I'm only seeing .exe based exclusion.
- Dec 14, 2018
- 643
Sorry, no dark mode at present. Thanks for your feedback!
- Dec 14, 2018
- 643
Yes, there is a way to exclude folders. Please click "Exclustions" in the yellow circle > click Add > Add directory
- Apr 17, 2020
- 542
WIll you be adding the network feature you discussed some time ago soon? Will it be a firewall or just network inspection?
WiseVector StopX V2.70 is here,
Cheers & Best Regards,
WiseVector
Similar threads
