Leaderboard


Popular Content

Showing content with the highest reputation since 01/24/18 in all areas

  1. 3 points
    Please note that Emsisoft Anti-Malware for Windows XP hasn't been updated (as in program updates) in over 2 years, and we never intended on continuing long-term database update support for it. In fact, we discontinued our own database updates for it over a year and a half ago, and those still running Emsisoft Anti-Malware on Windows XP have only been receiving BitDefender database updates. We've decided that it is time to stop redistributing those BitDefender updates for Windows XP, as all they are doing is giving those on Windows XP a false sense of security. In addition, it is extremely dangerous to continue using Windows XP. It has (for several years now) had well-known and major security vulnerabilities that Microsoft will never fix. These vulnerabilities make it trivial to infect a Windows XP system, and there is no security software in the world that is capable of preventing it. We can not, in good conscience, continue to provide any support for this version of Windows, as we announced on December 31st, 2015: https://blog.emsisoft.com/2015/12/02/why-we-believe-its-not-ethical-to-sell-antivirus-software-for-windows-xp-any-longer/ We highly recommend that you upgrade to a newer Operating System that is still supported. It doesn't matter if that's a newer version of Windows, or something free like Linux or BSD, as long as you'll be receiving security updates from whoever makes it. New vulnerabilities are discovered almost every day for every major Operating System (Windows, Linux, BSD, MacOS, Android, etc) so it is absolutely critical that you are able to receive security updates from whoever made the Operating System to help keep you and your data safe.
  2. 2 points
    We had to turn off XP updates because the latest scan engine and its signatures are no longer compatible with it. Instead of pretending that we could protect you from malware (which we effectively can't because XP is full of holes and flaws that aren't gonna be fixed at all) we would rather strongly recommend you to upgrade your computer. If that is for any reason impossible and means that you can't use our software anymore at all, we're happy to issue a refund for the remaining period.
  3. 2 points
    You can see this on several programs. Service and drivers are up, but GUI hasn't caught up. It's not a problem.
  4. 2 points
    It is not the UI doing the protection, it is the service/driver, and they are the first things to be loaded during boot even before your desktop appears.
  5. 1 point
    Smooth update, no issues so far. (P.S. Please include some bugs in the beta builds... it's getting boring )
  6. 1 point
    Did you ever hear about April Fools day
  7. 1 point
    Vielen Dank für die zeitnahe Hilfe, der Fehler wurde behoben, somit ist alles wieder wie vorher. MfG
  8. 1 point
    The following batch file should be able to automate it for you: @ECHO OFF :: Set variable to define EEK installation folder for later usage. SET "EEKFolder=C:\EEK" :: Checking for admin rights takes a moment, so display a message to make sure Command Prompt isn't sitting there empty with no explanation. ECHO. ECHO Checking for Administrator rights. ECHO This may take a moment. :: Check if we have admin rights. FSUTIL DIRTY QUERY %SystemDrive%>NUL IF %ERRORLEVEL% NEQ 0 (GOTO PromptForAdmin) ELSE (GOTO ContinueProcessing) :PromptForAdmin :: Launch CMD with Administrator rights using PowerShell, making sure CMD exits when done. POWERSHELL.EXE -Command Start-Process '%~f0' -Verb RunAs && EXIT :ContinueProcessing CLS :: Switch to folder that contains EEK IF DEFINED ProgramW6432 (CD "%EEKFolder%\bin64") ELSE (CD "%EEKFolder%\bin32") :: Run update with A2CMD. A2CMD.EXE /Update :: Clear screen. CLS :: Run Malware Scan with A2CMD. A2CMD.EXE /Malware /PUP :: Pause Command Prompt so that it remains open until a key is pressed. PAUSE
  9. 1 point
    You could also use a third-party DNS service that has DNS filtering and protects against DNS security issues. A popular example is OpenDNS (although there should be others as well): https://www.opendns.com/home-internet-security/
  10. 1 point
    That article only described 2 different methods to filter web traffic. One with SSL inspection performing MITM and the other by filtering DNS requests. Emsisoft uses built-in filtering of malicious websites that is conducted via DNS requests being filtered. You don't need specific additional DNS server to improve filtering.
  11. 1 point
    We understand that this isn't convenient, and it certainly isn't what everyone wants, but once Microsoft discontinued support for Windows XP and Vista this situation became inevitable. If we continue to provide updates for products that ran on Windows XP and Vista, and people continue using it without realizing the danger, then they could suffer serious security breaches or even lose all of their documents/pictures/videos/etc. to a ransomware infection. The only reason we kept the update feeds online as long as we did was to give everyone a reasonable amount of time to upgrade to newer and safer Operating Systems, and we don't want to put our customers at risk and lull them into a false sense of security by keeping those update feeds online any longer. As for an announcement, we did publish announcements over 2 years ago that we were ending support. We hoped that customers would understand that database updates for Operating Systems we were discontinuing support for would also end eventually.
  12. 1 point
    We shut down all update feeds for these old and unsupported versions of Windows (XP and Vista) on Thursday, February 15th. It is extremely dangerous to continue using Windows XP. It has (for several years now) had well-known and major security vulnerabilities that Microsoft will never fix. These vulnerabilities make it trivial to infect a Windows XP system, and there is no security software in the world that is capable of preventing it. We can not, in good conscience, continue to provide any support for this version of Windows, as we announced on December 31st, 2015: https://blog.emsisoft.com/2015/12/02/why-we-believe-its-not-ethical-to-sell-antivirus-software-for-windows-xp-any-longer/ We highly recommend that you upgrade to a newer Operating System that is still supported. It doesn't matter if that's a newer version of Windows, or something free like Linux or BSD, as long as you'll be receiving security updates from whoever makes it. New vulnerabilities are discovered almost every day for every major Operating System (Windows, Linux, BSD, MacOS, Android, etc) so it is absolutely critical that you are able to receive security updates from whoever made the Operating System to help keep you and your data safe. Please note that Emsisoft Emergency Kit for Windows XP hasn't been updated in over 2 years, and we never intended on continuing long-term database update support for it. In fact, we discontinued our own database updates for it over a year and a half ago, and those still running Emsisoft Emergency Kit on Windows XP have only been receiving BitDefender database updates. We've decided that it is time to stop redistributing those BitDefender updates for Windows XP, as all they are doing is giving those on Windows XP a false sense of security. If you'd like to see the official announcement about ending support for Windows XP and Vista, then you can find it at the following link: https://blog.emsisoft.com/2015/06/24/support-for-windows-xp-and-vista-will-end-april-2016/
  13. 1 point
    yes, we had to release the 2018.1.1 hotfix to stable asap. Both were released within one hour as the fix was safe. Thanks for your feedback
  14. 1 point
    I have to jump in and also say if OA was hugely popular they wouldn't have abandoned it, but sales kept dropping and the refund rate on those sales kept increasing so it made no sense to continue it. Also since XP is no longer compatible technology, slowly more and more companies are going to drop support.
  15. 1 point
    @DuroTech I can understand the sadness that you feel now that you are no longer able to use EAM and perhaps even XP now. Over the years many softwares change and users move on .. it is the nature of things. (Online Armor was also one of my favourite all time apps ! ) It was in 2015 that Emsisoft first announced their intention to cease support for EAM and EEK on XP and Vista in 2016 https://blog.emsisoft.com/2015/06/24/support-for-windows-xp-and-vista-will-end-april-2016/ I think it is to their credit that they have continued to supply definition updates for a further 2 years after the product support ended. It may be they need those severs now for other things, we have to remember Emsisoft is not a huge company with unlimited resources. Win 10 isn't that bad and EAM works great on it. and don't forget we are always here to offer help and advice if you do decide to continue using EAM.
  16. 1 point
    Yes something changed. Updates for that obsolete version of EEK were turned off in the last couple of days. XP and Vista were no longer officially supported since 2016, and now the updates for it have been turned off.
  17. 1 point
    I'm really hoping not to find any more.
  18. 1 point
    Actually, if I remember right, protection stays paused after a reboot regardless of how the system restart. If you right-click on the Emsisoft icon in the System Tray and go to Protection status you can disable all protection without the little notice in the UI that says protection is paused. It's fairly normal for it to happen. How long protection appears to be off during startup/login depends on the computer, and how many services/drivers/startup items/scheduled tasks/etc. need to load. It looks like we had a bit of a misunderstanding here. Lets just try not to let things get too out of hand, OK?
  19. 1 point
    Yep. Good summary of the "problem". I have used lots of different anti-virus apps, and the GUI always needed some time to load. Nothing to worry about.
  20. 1 point
    The database is too large to load into memory and process quickly, so there can be a slight delay in protection showing as on when your computer first starts up. Due to the heavy system resource usage in general during startup, it might also take a minute or so for the Emsisoft Anti-Malware UI to be able to reliably communicate with the Emsisoft Protection Service and read that protection is online.
  21. 1 point
    He is, as far as I can recall, the first person to report such a problem. As I said earlier, the only way for large files like that to end up in the Quarantine is for someone to place them there manually, so it's not something that's going to happen on its own. Yes, that's how our scanner works. It loads a file for each thread that is processing scanned files, which means if your CPU can process 8 simultaneous threads, then the scanner will load 8 files into RAM at the same time for scanning. This is done to improve scanning performance, but it does cause scans to be rather resource intensive. Note that we don't recommend leaving files in the Quarantine for a long period of time. It's just intended as a temporary backup for deleted files, in case they need restored. If things are OK for a week or two after a file has been removed, then it's best to delete it from the Quarantine. It's an absolute size. I would believe it's hardcoded. The actual size limit has changed several times over the years (I'd have to ask what the current limit is), however I would believe it's more than 50 MB at this point. The size limit is set based on what our malware analysts see in-the-wild. Files over a certain size generally aren't malicious, simply because it isn't efficient to deliver payloads in large files, so we set the maximum file size for the scanner based on what size files we can expect real-world malware to be delivered in.
  22. 1 point
    Guten Tag, Vielen Dank für die Logs. Die Logs deaktivieren sich mittlerweile nach einem Tag selbst. Je nachdem wie schnell sich ein Problem reproduzieren lässt reicht aber auch ein kürzerer Zeitraum und dann kann man in der Tat die Logs deaktivieren. Ich werde den Hinweis wieder aufnehmen, da die Debug Logs doch sehr schnell sehr groß werden können. Mit freundlichen Grüßen Kathrin
  23. 1 point
    Analysis of the memory dump shows that there are two very large (roughly 2GB) files in your Quarantine, and when the memory dump was saved EAM was loading them into memory in order to scan them. In theory this is due to the Quarantine rescan that happens after updates are installed, however we are only assuming that since we don't have debug logs (the memory dump doesn't actually say why the Quarantined files were being scanned). If you delete those large files from your Quarantine, then that should resolve the issue.
  24. 1 point
    I see that stapp has already linked to the answer, but in case anyone else stumbles upon this the short explanation is that Windows has stricter code signing requirements for certain system files, so when Emsisoft Anti-Malware tries to inject its DLL file into a running system process with these stricter code signing requirements (and thus open a hook to them) there will be an error in the Event Logs due to the digital signature on our DLL file not meeting the same requirements as the process that is being hooked.
  25. 1 point
    See here..nothing to worry about. https://support.emsisoft.com/topic/27799-audit-failure-a2hooksdll/?tab=comments#comment-173431
  26. 1 point
    Do you know how to save a memory dump with Process Hacker? If so, then turn off the Self Protection in Emsisoft Anti-Malware's settings, and the next time you see the high memory usage try saving a memory dump of the process. You'll probably need to use 7-Zip so that you can compress it using LZMA2 compression to get the smallest file size (RAR may work as well, however I would believe that in most applications LZMA2 does compress better than RAR). You may also need to use a file sharing service such as WeTransfer, Mega, etc. to send us the file. If the file sharing service requires that you send the file via e-mail, then just enter [email protected] and be sure to include a link to this forum topic in your message. While I can't say that it is Firefox's fault, note that memory usage of a2service.exe _does_ increase based on running programs as it needs to load more and more of its database into memory. Although, that only applies if the memory usage optimization is turned on, since it offloads unused parts of the database into the pagefile to reduce memory usage.
  27. 1 point
    I dont have this option. It would also be nice if resellers are informed about this change because I was customers still giving there normal discount.
  28. 1 point
    There is currently no way to disable logging only specific events, nor is there any way to selectively delete/clear only specific types of log entries. I've forwarded the suggestion to QA that the "Clear" button only delete log entries displayed by the current search/filter.
  29. 1 point
    I will make sure to sneak in some bugs into the next releases so Peter has some excitement in his life
  30. 1 point
    Here's the links to all of our currently available installers: https://dl.emsisoft.com/EmsisoftAntiMalwareSetup.exe - Full sized original installer that contains both 32-bit and 64-bit files for all supported versions of Windows. https://dl.emsisoft.com/EmsisoftAntiMalwareSmallSetup.exe - Same as original full installer (containing both 32-bit and 64-bit files), but without signature/database files, so a much smaller download. https://dl.emsisoft.com/EmsisoftAntiMalwareWebSetup.exe - A ~2 MB version of the installer that doesn't come with any program files or signatures (it downloads everything during the install process). https://dl.emsisoft.com/EmsisoftAntiMalwareSetup32.msi - 32-bit MSI installer (contains only 32-bit files) which includes signature files. https://dl.emsisoft.com/EmsisoftAntiMalwareSetup64.msi - 64-bit MSI installer (contains only 64-bit files) which includes signature files. https://dl.emsisoft.com/EmsisoftAntiMalwareSmallWebSetup.exe - Also ~2 MB and downloads and installs the correct "small" MSI package for the system it's executed on. https://dl.emsisoft.com/EmsisoftAntiMalwareSmallSetup32.msi - 32-bit "small" MSI installer (same as above, but with no signature files). https://dl.emsisoft.com/EmsisoftAntiMalwareSmallSetup64.msi - 64-bit "small" MSI installer (same as above, but with no signature files).
  31. 1 point
    I recommend excluding the files you don't want quarantined. The Application Rules can be automatically changed (for instance if a file is no longer present the rule will be automatically deleted), whereas exclusions will always remain as you configure them. Exclusions can be found by opening Emsisoft Anti-Malware, clicking on Settings in the menu at the top, and then clicking on Exclusions in the new menu that appears right below the one at the top. There are two lists of exclusions, one for scanning, and one for monitoring. "Scanning" applies to on-demand scans and the File Guard, whereas "Monitoring" applies to the Behavior Blocker. Adding something to both lists will fully exclude it from protection, which can be useful if you are trying to resolve a compatibility issue.
  32. 1 point
    Old thread, but the most fitting one for my question: Is EAM compatible with Server 2016 by now ? I am wondering because the download page for EAM for Server (https://www.emsisoft.com/en/software/antimalwareforserver/) still says "For Windows Server 2008 R2/2012/2012 R2 "... I believe this is just an oversight, right ?
  33. 1 point
    Those files won't work for you. The decrypters that the criminals send to those who pay only work on one computer, because the ransomware generates different public/private keys for every computer it infects. On top of that, the opening poster said that the decrypter the criminals sent them didn't even work on the computer they were intended for. Those files are basically useless.
  34. 1 point
    OK, I recommend sticking to the troubleshooting steps that whoever you're in contact with on our Support or Sales team has recommended. We don't want to cause any confusion by having two or more of us sending you instructions or asking for information.
  35. 1 point
    I suggest implementing an option to hide security news section on Overview screen. Another option could be to show only new news, one that have not been read yet. You can probably also check how many users actually use those links to access news and remove this option if it's not popular.
  36. 1 point
    We decided internally to treat javascript-based crypto-currency miners as PUP. That means we started actively targetting these services via the surf protection.
  37. -1 points
    The maximum of 50% discount on renewals can still be received by selecting 3 years renewal. 2 years add 5%, 3 years add 10% to the loyalty discount.