Oz Assassin

  • Content Count

  • Joined

  • Last visited

Community Reputation

0 Neutral

About Oz Assassin

  • Rank
    New Member
  1. PCMag seems to favor Norton (also in US products as Emsi has stated). According to their reviews, Norton seems to outperform every product in the market, but in my experience, it's decent but not worth being "the king of the hill"! I have 3 comps at home, 2 have Norton as main security program with MBAM and Emsisoft as backup (on-demand of course). On my PC, I use Emsisoft, MBAM and Norton together (as I'm a security conscious person ) without conflicts. Why so many someone may ask, simply because I don't trust Norton that much, wouldn't rely on Symantec products only as their products either are not as good as they used to be, or newer products from other companies are simply better. I trust Emsisoft more and I just don't know what the author of the mentioned article was talking about, if a installed security product is not sure about a program, it should notify the user and that's what Emsisoft does. Norton does it all the time when I download less-well-known programs, it doesn't even have a clue and lets the program go pass anyway. IMO that's dangerous, it should confirm with the user first, then let them decide and take actions later.
  2. I don't think the problem is with Malwarebytes, as I have both Emsisoft and Malwarebytes with ALL realtime residents on at the moment (although I usually turn off one or the other to make sure no conflicts will appear). But yeah, it's not a problem for me. I don't know about Geswall, but Online Armour should work fine with Emsisoft Anti-Malware as they are from the same company (aren't they?).
  3. Well, Emsisoft is pretty good at finding false positives in my opinion, but failed to detect a malware embedded in dll files (I got Photoshop portable from my friend, and one of those files was infected with a dll malware. I needed that program but can't afford to buy a full suite and my laptop can't run the full suite anyway. Maybe I'll have to use Paint.NET portable as an alternative). But yeah, Norton Internet Security 2010 on my other computer (not this one with Emsisoft on) detected a virus in the dll file, therefore removed it. I will never use pirated software again lol.
  4. I have installed the Emsisoft Anti-Malware 5 a few days ago, did an update and ran a full scan. There were something in the results window which got my attention. Emsisoft identified a game called Bus Driver (which i got from www.busdrivergame.com) as a threat (it didn't say Trojan or anything, just TRACE.FILE.BUS DRIVER 1.0!A2, plus TRACE.DIRECTORY.BUS DRIVER 1.0!A2 and TRACE.REGISTRY.BUS DRIVER 1.0!A2 which point to installation directory of the game). I was terrified for a moment because I thought I have downloaded a malware embedded in the game, so I did a research and found out busdriver was a name given for kinds of malware which modify and control computer's bus (or something like that). Therefore it could be a false positive in Emsisoft since the game is clean itself (tested with other security scanners and found nothing!), maybe the program misunderstood the game's directory and path with other malwares'. Another false positive is with Warcraft version switcher, a well known application for Warcraft's lovers and players. It switches between versions of Warcraft so players can update the game quickly but can also restore to previous versions so they can play with people with older versions, etc. This was being identified as TROJAN-BANKER.WIN32.BANKER!IK. I also did a research on this and found out that Warcraft version switcher has an executable named wvs.exe, there is also a Trojan with that name so I think that's why Ikarus engine thought this file is a trojan. I put this wvs.exe file to the test on VirusTotal and with several other security scanners on my computer just to be sure. The result came back as NEGATIVE. It's 100% clean (except on VirusTotal, Ikarus and A-squared flagged this file as TROJAN-BANKER.WIN32.BANKER!IK also). I did submitted these false alert via the program and added them as white list also. Hopefully this will be improved.