Jump to content

Most Liked Content

#59026 How to translate Emsisoft Anti-Malware and Emergency Kit into a new language...

Posted by Fabian Wosar on 27 September 2012 - 07:26 PM

Emsisoft Anti-Malware and Emergency Kit use a text file based translation system. Such language files have the extension .LNG and can usually be found in the Languages sub-directory of the installation directory (for example "C:\Program Files\Emsisoft Anti-Malware\Languages\"). Since a lot of strings are shared between the products, all products use the same language files. So there is no need to translate the language files of each product separately.

We maintain the English as well as the German translation ourselves, so we can guarantee that those files are always up to date and they therefore should be used to base new translations upon. To make sure that you have the latest languages files please run the online update before you start your translation.

The language files adhere to the Windows INI file standard and in general are made up of the following parts:

  • [Sections]
    Sections are enclosed in square brackets and are used to seperate various areas within the language files. Sections must not be translated.
  • //Comments
    Comments always start with two forward slashes. They are completely ignored by the application and can be used to keep notes. Translation of comments is completely optional.
    Note that all lately modified lines in en-us.lng are copied and commented too. They are just for reference to track modifications on the original file.
  • Key=Value
    The actual language strings are contained within the language file as key value pairs. The key part (which is the part before the equal sign) is used by the application to identify where the string is used and therefore must not be translated. The value part (everything after the equal sign) is the actual text displayed by the application and therefore must be translated.
  • Keep in mind that Language files are plain text files. So if you want to edit a file make sure you do so with a plain text editor like Notepad. Text processing software like Microsoft Word or Works will not work.

Creating a new translation
The first step in creating a new translation is to make a copy of the language file you want to base it upon (either "en-us.lng" or "de-de.lng"). The copy should use the ISO language code as a file name. If you want to translate the product into Dutch for example it should be named "nl-nl.lng". Keep in mind that while Emsisoft Anti-Malware is running you are unable to change any of the installation directory's content. To create the copy in the Languages directory and edit it you will have to close Emsisoft Anti-Malware first or alternatively disable the self protection in the Configuration section.

At the top of the file you will find a special section called "LanguageInfo". This section contains various information used by the application to determine how to parse and display the language file. The section contains the following values:

  • Version
    The product version number this translation is based upon. Keep in mind that this is always the Emsisoft Anti-Malware version number, as Emsisoft Emergency Kit is a stripped down Emsisoft Anti-Malware version.
  • Language
    The English name of the language this language file contains.
  • LanguageLocal
    The native name of the language.
  • Author
    The name of the author of this file. This should be your name if you create a new translation.
  • Email
    The email address of the author. This should be your email address if you create a new translation.
  • Date
    The date when this file was last edited. Make sure to update this value whenever you change the file.

The LanguageInfo section of the German language file for example looks like this:

author=Emsisoft Ltd

Once you have adjusted the LanguageInfo section of your new language file, you can start translating the other sections.

Updating an existing language file
Language files do change whenever new user interface controls or features are implemented. In these cases it is not necessary to translate the entire language file again. Instead you can just add the new values to an existing language file. To facilitate this process we have added an overview that shows you which languages aren't up-to-date and exactly which strings need translation:

Simply click on the language to see which strings are missing. The format of the returned strings is "[section] valuename=string". We recommend that you make translation updates on a copy of the file. This is to prevent the online update from overwriting your changes on the next update. You also might find the tool WinMerge very useful to highlight added and removed lines.

Testing your new or updated language file
To test your new or updated language file simply restart the application and select the language you added or updated from the language selection drop down menu.

Submitting your translation
Once you have created a new translation or updated an existing translation, feel free to submit it here in the forum. Just create a new thread for your language if it doesn't exist yet and attach your language file to it. If a thread for this particular language already exists, add your updated language file as a reply to the existing thread.

As a little thank you for your effort we are handing out free licenses for all our products to translators. This applies not only to full translations but to updates and corrections of existing translations as well :).

Reporting errors or problems with translations
If you find an error in a particular translation or if you run into any problems, please feel free to post them in the translation's forum thread.

#136485 Internet Security & Windows 10

Posted by GT500 on 05 August 2015 - 04:45 AM

Official word is, "yes". We will give free license extensions to anyone who upgraded to Windows 10 and was unable to use the firewall.

Once the issue has been resolved, please either submit a support ticket in our helpdesk system, or send a Private Message on the forums to me (English Support) or Thomas Ott (English/German Sales). Be sure to mention that you would like to have your license extended due to the Windows 10 issues and include in your message any license keys that were in use on a computer with Windows 10. Feel free to link to this forum post if you would like to.

#129706 EAM 10 Beta

Posted by Fabian Wosar on 12 April 2015 - 12:15 PM

Actually, there is a system behind it:

  • My workstation computers are named after noble gases, like Krypton or Helium.
  • Computers that I only use temporarily or belong to guests are named after transition metals like Titanium.
  • Non-computer devices like smartphones are named after non-metals like Oxygen.
  • All systems and VMs that are used for malware testing are named after radioactive elements like Uranium.

Needless to say my WLAN and local workgroup is called "Periodic Table". And yes, I spent a significant amount of time coming up with that system and I am proud of it :P.

#129059 Little disappointed

Posted by Christian Peters on 03 April 2015 - 06:08 PM



please send me your license key via PM (personal message). I will add some days to your key as a sign of goodwill.

#113760 Is your Antivirus software tracking you?

Posted by Elise on 13 July 2014 - 09:41 AM

What I find interesting is that many security-conscious users do not consider this. Some people do everything to make sure no personal data is being collected by applying the most complicated security settings (both in Windows and third-party applications), but they do not consider even for a moment what their AV might transmit.

On the other hand I find it sad to see that programs that are supposed to protect you, and that are trusted by the ones using (and often paying for) them, in fact collect so much personal data. In my opinion if you commit to protecting a computer you should apply the rules to your own product as well.

Ironically, many PUP products are accused of collecting personal data and they all do their best to convince us that they really don't do this. There are cases where security products actually collect more data than the PUP programs they detect.

#48817 ¥akuza112's malware submissions

Posted by ¥akuza112 on 28 April 2012 - 02:11 AM

Java Drive by .jar file

Posted Image

File Info

Report date: 2012-04-28 03:03:39 (GMT 1)
File name: signedcryptosuite-jar
File size: 20878 bytes
MD5 Hash: 1b52adfc6ef974be633b3ce82bb35af7
SHA1 Hash: e0123af7329e12c7172dafc2bee83bee7614313f
Detection rate: 0 on 14 (0%)
Status: CLEAN


Asquared -
Avast -
Avira -
BitDefender -
ClamAV -
Comodo -
DrWeb -
Fprot -
IkarusT3 -
Panda -
STOPZilla -
TrendMicro -
VBA32 -

Scan report generated by


#46011 Automatic game/full screen mode...

Posted by Fabian Wosar on 09 March 2012 - 11:24 PM

This feature has already been implemented in the current development version and will be available in the next version :).

#132108 Can emsisoft has option like signature option (1) bitdefender (2) emsisoft?

Posted by Peter2150 on 25 May 2015 - 01:45 PM



You are indeed becoming most wearisome.  There is an old expression among diehard Texans.  "No matter how much you kick a dead horse it won't get up"  This is exactly what you are doing.

#132063 Can emsisoft has option like signature option (1) bitdefender (2) emsisoft?

Posted by Fabian Wosar on 24 May 2015 - 11:13 AM

better i would suggest you to ask internally to your decision maker.

Which for everything related to our core technologies (engine, behavior blocker, cleaning engine) would be me. Hi, nice to meet you! Next time someone looks strange at me for talking to myself I can now point them to this post and tell them you asked me to talk to me ;).

Your argument is that we chose Bitdefender because it is "the best". Both Kaspersky as well as Avira consistently score higher in pure on-demand tests than Bitdefender does. If you consider PUP detection ESET is a superior contender as well. We considered all of them at one point or another but they were discarded for various reasons.

so it meant emsisoft/you might have some detection result document or anyting basis which you posted that article.

The article is based on the submission we got through the "Submit information about detected Malware" option in all our products, which reports back meta data (infection names, number of infected objects) about all infections found by our products.

#128888 Emsisoft Online Armor support roadmap

Posted by Christian Mairoll on 31 March 2015 - 09:49 PM

The Emsisoft Online Armor product has been an integral part of our product portfolio for almost five years. It served us and our customers very well in complementing Emsisoft Anti-Malware with a rock solid standalone firewall. Emsisoft Online Armor’s biggest strength has always been its HIPS (Host based Intrusion Protection/Prevention System) components, which are meant to alert any potentially dangerous actions executed by programs on the operating system.

As the internet threat landscape changes over the years, our response to these new challenges needs to adapt as well. Security software needs to be even more powerful, yet less intrusive to avoid any unnecessary annoying alerts. That’s why we at Emsisoft believe that a smart Behavior Blocker, as incorporated in Emsisoft Anti-Malware and Emsisoft Internet Security, that watches the system as a whole, is significantly better than a HIPS, which sees each action on the system individually and therefore always causes much more alert popups by design. You can read more about the differences in this article.

For the above reason, we have decided to not spend any more development time on Emsisoft Online Armor, but instead focus on improving the award-winning protection of Emsisoft Anti-Malware and Emsisoft Internet Security, which we are certain have a great future ahead.

Sales end date and support roadmap

As of today, we have stopped selling Emsisoft Online Armor. New license activations will only be possible until the end of May 2015. The official end of technical support will be March 31, 2016. Though, we will still provide updates for critical issues that may be discovered until then. At the moment we can say with certainty that we will not add Windows 10 compatibility, since that requires several major changes to the codebase.

Free upgrade to successor Emsisoft Internet Security!

The official successor product of Emsisoft Online Armor is our recently released Emsisoft Internet Security. We are happy to exchange any actively used license keys of Emsisoft Online Armor to Emsisoft Internet Security for free. Please contact our support team for an individual swap offer. If the available upgrade options don’t satisfy you for any reason, we’ll of course offer a proportionate refund for the amount paid.

We would like to thank all users for their loyalty and their support over the past years with Emsisoft Online Armor and are looking forward to a malware-free future!

View the full article

#127263 care about privacy

Posted by Christian Mairoll on 23 February 2015 - 07:20 PM

The Shariff solution looks very elegant and I'm watching the project for quite some time. They released a new version a few months ago https://github.com/heiseonline/shariff


It doesn't 100% meet our requirements but we may adapt some things from it and replace our current social media buttons. It's already in the works.

#115910 Request for adding aditional skins to Emsisoft Anti-Malware Version 9

Posted by Fabian Wosar on 18 August 2014 - 04:05 PM

In general we won't add skinning support to EAM or any of our products anytime soon. They are just bloat. We are an AV software, not an MP3 player ;).

#115340 a lot of False positives ?

Posted by Elise on 09 August 2014 - 04:30 PM

Hi G-hot,

All these files are detected as PUP/adware (Application/Adware prefix), this means they're not malicious, but may exhibit possible undesired behavior. For example, offer the installation of third-party toolbars or application during setup. For this reason these are not false-positives and detection will not be changed.

#113704 Is your Antivirus software tracking you?

Posted by stapp on 12 July 2014 - 07:21 AM

Only 2 av's were listed as the most privacy conscious... and Emsisoft was one of them





Emsisoft also comes out looking good. They send a bit more information when you encounter malicious files — for example, they’ll send suspicious executable files to the antivirus company — but they’ll never send a list of websites you visit or your documents over the Internet


#112593 License Key from 2.0.2 won't work in V9

Posted by Fabian Wosar on 25 June 2014 - 09:43 AM

Have a current license for and it is working fine. Downloaded V9 update and copy/pasted the key I received when I purchased V2 but V9 says it is invalid.

It appears you are mixing up Malwarebytes Anti-Malware (current version is and Emsisoft Anti-Malware (current version is Since Malwarebytes and Emsisoft are entirely different companies, the license keys aren't interchangeable. However, if you want I can send you a free 1 year license of our product :).

#111165 SVP FP AGAIN!

Posted by Siketa on 05 June 2014 - 09:11 PM

I'm also a customer, so what?


It seems you don't understand the way things work.

Each new version of unsigned application has to be manually added to AMN.

Emsi team is doing great job (I have bad experience with Comodo) but they can not trace all existing apps in the web!

Like I already recommended you, turn off behavior blocker module while installing known good software and then enable it again after the installation is finished.


It's that easy!

#109461 [How To] use Emsisoft OA /Emsisoft IS v9 with Virtual Box

Posted by Umbra on 09 May 2014 - 11:42 AM

hi, as you know Online Armor and the latest Emsisoft Internet security v9 can't be installed when Virtual box is present (it will generates a BSOD) ; so there is the procedure to to have them both.

If Virtual Box is not installed yet (and was never installed)

1- Install OA/ EIS
2- install Vbox

If Virtual Box was installed before but removed

2- open "Regedit" (via Run)
3- check this registry key : HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\VBoxNetFlt
4- if it's still present, delete it
5- reboot (not necessary, but better if done)
6- install OA/EIS
7- install Vbox

If Virtual Box is already installed

1- uninstall Vbox
2- open "Regedit" (via Run)
3- check this registry key : HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\VBoxNetFlt
4- if it's still present, delete it
5- reboot (not necessary, but better if done)
6- install OA/EIS
7- install Vbox

hope this will help you


note: i did this procedure since ages so it really works ^^

#108153 AV-Comparatives Real-World Protection Test March 2014

Posted by Fabian Wosar on 17 April 2014 - 05:21 PM

Great to see that FPs are decreasing.....

False positives didn't change compared to last year at all actually. We just had a lot of catching up to do. The false positive test set AVC compiled contains files, that even VT hasn't seen yet (which is quite an accomplishment) and that aren't even available online any longer. If you throw a product into that test for the very first time, it is bound to have higher false positives than other products who had the chance to scan earlier revisions of the collection before. That is a fact that AVC itself recognizes and is the reason why the false positive results for our product included a disclaimer.

My question is - why Emsisoft does not participate in these tests

They are simply too expensive and don't reach nearly as many people as AVC does. We may take part in those tests eventually, but in the end it comes down to either take part in this one test that most magazines don't really care about, or hire a new full time employee for a year.

It is no longer so good and colorful.
Whom to believe? Can do your own individual tests and see your scores?
I would recommend it just to do ....

CRDF is unreliable. The way it works is, that they query VT to see if they have seen a file before and if so, get the last scan results.

The problem with that approach is, that malware or files that have never been seen on VT, won't be included in the results, because CRDF does not submit any files to VT. One could argue that those are the most interesting ones as they are more likely to be new malware.

If files have been submitted before, no rescan is issued. That means, the scan results they use for the statistics can potentially be days or even weeks old.

Their sample set also contains a ton of PUPs. I can't talk for other companies, but we specifically asked VirusTotal not to enable the PUP detection. It just saves us a ton of hassle having to deal with PUP companies all day, as most of them just check if their crap is detected on VT. Out of curiosity I downloaded their samples for February and March a few weeks ago (12,756 files in total, 1,270 of which aren't PE EXE files) and just judging by the digital certificates and version info alone at least 6,800 of the remaining 11,486 executable files are PUPs.

We talked to CRDF in the past, to maybe provide some more details in their statistic, but in their opinion these statistics shouldn't be used by anyone, so they have no intention to fix them.

#138698 EIS cause Windows Update unable to connect to the internet.

Posted by HAWKI on 02 October 2015 - 03:36 AM

Similar issue here.


I had strayed and had been using a trial of another product.


Reinstalled the latest EMIS very early this AM - 3AM EST.


Tonight I have been unable to download the 1 new Important Windows Update for 8.1. Have tried several times. Can see that there is zero incoming traffic. Finally get an error that Windows Update failed.


I suppose it is possible that the issue is on the Microsoft side.

#138256 AVC Real-World Protection Test August 2015

Posted by Elise on 17 September 2015 - 07:56 AM

So because Bitdefender updates slightly quicker, does that explain the 0.7% difference. 


No, this has nothing to do with Bitdefender's signatures, Emsisoft only uses Bitdefender's detection signatures, behavior blocking has nothing to do with classical signatures and the adjustments being made aim to improve behavioral detection, not signature detection.