andrey

Member
  • Content Count

    981
  • Joined

  • Last visited

  • Days Won

    7

Posts posted by andrey


  1. Hello!

    Happy New Year!:)

    Tell me, please:

    1) Is it correct for me to add folders to the exclusions of scanning and monitoring?

      I thought, will the EAM double-check the quarantine? After all, it's in the Emsisoft folder!:huh:

      Do we need such exclusions (folders Emsisoft) or is it not necessary?

    2) Is it more likely that the MBAM folder is moved to exclusions from scanning?

    ps. I use MBAM only as an on-demand scanner.

    2018-01-01 22_38_24-Emsisoft Anti-Malware.jpg
    Download Image


  2. Hello!

    In the blog Emsisoft among 10 New Year's gifts is offered and buying VPN.

    https://blog.emsisoft.com/2017/12/14/top-10-holiday-tech-gift-ideas/

    True, this is NordVPN.-_-

    I want to ask specialists about the possible problems and shortcomings of the CyberGhost VPN.

    Its merits and properties are well known.:ph34r:

    But, perhaps, there are problems and shortcomings? (open port 80, etc.)

    And how effective is the addition of EAM protection to work with VPN?


  3. Hello!

    Thanks.I understood correctly - is it normal that the EAM does not report (alert) a change in the program after its update?

    Specifically, worked Fx 56.02. Updated to Quantum (57.02). Should the EAM at the first start of a new, updated browser inform (alert) that the program has been changed? Now there are no such alerts ...

    p.s. of course, I know that EAM differs from EIS in the absence of a firewall. The rest is the same!-_-


  4. Hello!

    Earlier, when I was working for the EIS, he reported on the launch of any modified (updated) program.

    For example, after updating any browser-EIS reported on the first start of the updated program- "the program was changed"!

    I guess it was right!

    Now EAM does not say anything after updating the programs on the PC.:huh:

    So it should be? Is it done specifically to reduce the number of messages \ warnings?


  5. 5 hours ago, JeremyNicoll said:

    Yes, that's the right place.   If PowerShell isn't listed (I can't read the cyrillic parts of your screenshot), maybe it's not actually been installed?   According to 

    https://blogs.technet.microsoft.com/heyscriptingguy/2011/01/07/how-do-i-install-powershell-on-windows-7-and-other-questions/

    PowerShell, if you have it, will have shortcuts at  Start / All Programs / Accessories / Windows PowerShell.    Do you have those?

    Yes, in the list of programs, as you indicated, have the PowerShell.


  6. Hello all!

    The EmsiSoft blog https://blog.emsisoft.com/2017/11/17/fileless-malware-attacks/

    informs about fileless Malvare. And that more often in the Windows registry they hit Windows PowerShell and WMI.

    It is recommended that you turn off PowerShell.

    But I do not understand how to do this? From the above instructions, it is unclear ...

    In my computer(Windows 7x64), I do not find the ability to disable this application:huh:

    Just launch it as a command line!

    Please tell us more about the disable PowerShell!

    2017-11-20 20_29_50-Fileless malware_ Invisible threat or scaremongering_ _ Emsisoft _ Security Blog.jpg
    Download Image

    • Upvote 1

  7. Hi Kevin!

    Thank you for the clarification!

    My system works stably.

    All applications run and perform their functions.

    So I hope, you are right: you can ignore the testimony of the sfs / scannow utility.;)

    Of course, there will be a lot of next Tuesday's updates-whether they will all be fixed!
    Thanks again for the help!

    Can I contact you if there are problems with installing Windows updates?


  8. Hi Kevin!

    Thanks for the help! The system works.:D

    There is one small BUT:blush:: sfs / scannow sometimes infects corrupt files in the system.

    Sometimes he reports that he successfully restored them, and sometimes that some files could not be recovered ...

    I understand that this topic is already beyond the scope of this topic, so do not ask for help, but simply inform ...

    I can not understand why one scan-no damaged files, the other (on the same day!:huh:) - found corrupted system files, but the system can automatically restore them. And on the same day - reports after checking that the damaged files are damaged and some of them failed to recover ..

    I just do not understand why this happens?

    I did not install any new applications, only updates of Windows (not all, unfortunately, were installed) I'll wait for the monthly Tuesday patches - how to install updates.

    In any case, thanks again for the prompt help!

    p.s.Here, please look at the logs! The first one - sfc / scannow in it the system found corrupted files and successfully restored them! The second-in safe mode sfc / scannow can not repair corrupted files ... Why is it so?

    CBS.log

    CBS (2).log


  9. Hi!

    That's just terrible!:blink:

    Started flashing a notification every few seconds from the Windows security center! (in system tray)

    To stop this, I had to completely disable the service of the Windows Security Center (WSCSVC)!

    Can not anything be done? Why should this integration of the EAM into the Windows Security Center?:(

    How can I fix it or wait for changes in the program?