Jump to content


  • Posts

  • Joined

  • Last visited

Posts posted by mundial

  1. I'm an user like you, I turn on Learning Mode each time I install MS updates. Then I reboot the system once before turning Learning Mode off.

    That way I can suppress any pop-ups.


    Thanks for saving my hand! My only doubt is whether it is safe to do so. Since learning mode involves rule creations, I wouldn't fancy a rogue. I know they are MS Updates, but you never know! So do you first check the digital signatures of the updates and then allow them to install in learning mode? Of course you have to download the updates manually for that.

  2. Hi,

    You have to wait for some time (or a few days) for responses. I had this same problem for sometime. Try this and let us know. I could get the login page in banking mode (hotmail, yahoo). As soon as I put the username and pwd and clicked 'submit' the browser couldn't load the following pages.

    Yesterday I couldn't reproduce this though. None of the pages were accessible in banking mode. Do update OA regularly and see if it goes away.

  3. Microsoft and Emsisoft's sites are not fraudulent websites looking to steal your banking details.

    I didn't mean that at all, but yes if updates are the reason, then only updates.emsisoft.com and a few more (if you gather domain names for checking etc) and windowsupdate domains should be allowed, and not the entire Emsisof and MS domain. MS has come under attack quite a few times including loss of confidential data (customer details and financial details). Hence I, as an user would love to get a choice to block all domains during my banking transactions (may be except emsisoft updates, but then why not even that for the 10 mins of my secure banking).

  4. I have been using OA Premium for last 3 years. Everything has been working perfect. Suddenly after the quite a few things seem to be broken.

    1. Block all network trafic malfunctions. My dialer still can connect to the Net, though browser can't connect to sites. Earlier even dialer couldn't connect to the Net.

    2. Blocked domains just do not work, with/without *, even mentioning full top level domains. Again earlier this used to work perfectly. Only way to block is blocking by IP.

    The only change in my system is the replacement of Avira Antivir with Emsisoft Antimalware.

    No exclusions in any product. Win Vista SP2.

  5. Learning mode picked up the following:

    lsass.exe, services.exe, svchost.exe and wininit.exe. I know I need to allow svchost.exe. What about the rest? Can I block them or will that stop my Internet access at some point, even if not immediately?

    Also why do they need incoming connections as picked up by learning mode? Is there any way to stop incoming connections (like default deny all incoming connections) other than select Protocol: BOTH, Deny: INBOUND, Add ports: 0-65535 for each program?

  6. Suddenly I got this pop up in OA Premium that System (Protocol:RAW) wants to access the Internet. What exactly is this System? For svchost or any other program I can see the location and type (e.g. exe), but this is just system with no exe file mentioned. And why does it suddenly want to access Internet? Shall I allow or keep it blocked?

    Additional details:

    Win Vista SP2, OA Premium

    System requests: Once port 445, other times none, no destination IP (not even local host, protocol:RAW

    I have "intercept loopback interface" & "enable active subnet scan" ticked.


  7. Thanks for the explanation catprincess. As you mentioned there was a firewall rule from learning mode (always present with svchost, wininit, lsass etc). I have my doubts on this too, but I'll open a new thread for this.

    Are there any other domains other than MS that are accessible by default? So whats the way to disable them? Put *microsoft.com* in blocked list?

  8. Isn't it NOT supposed to connect to any site other than the protected/trusted domain list? And if thats the case, how did Windows connect to Microsoft and activate itself on my PC? Or does it work in some other way?

    1. Without asking for permission?


    2. When MS is not on my trusted/protected list?

    I have NOT checked 'automatically allow trusted programs to access the Net'.

    Thanks.OA Premium latest, Windows Vista SP2.

  9. I have started a trial of EAM a few days back. Meanwhile my PC crashed. Today i reinstalled and tried to update the signatures. The upload size shown was 89MB. I felt that the update size may be too big. So I started looking for MD5 checksums. I found 3 different MD5 checksums for the same versions.

    1. Could NOT find any on your web site for cross verifying

    2. 713D7B1CE5B697DEAA99976B9571E908 on filehippo.com for version

    3. E47F69F689AA4DC273569EEF51240424 for the SAME version downloaded from your site TODAY (size 15300 Kb)

    4. 1BD7688E571ACCE9CE2060330B02FF8F or the SAME version downloaded from your site on 13-FEB-2012 (size 15450 Kb)

    My query is why this difference? Do you update the file very often even for the same version? And do the file size vary with your updates in the SAME version? Or is my download malicious/contaminated?

    Other details

    OS: Win Vista Home Basic SP2. No other AV.

    Thank you,


  • Create New...