Jump to content

0strodamus

Member
  • Posts

    29
  • Joined

  • Last visited

  • Days Won

    1

Everything posted by 0strodamus

  1. So that explains why the Firefox alerts disappeared so soon. I learn more about this wonderful program every day. Thanks for the prompt response!
  2. Hi Arthur, after my last update (below), Firefox 19 has stopped prompting. However, Thunderbird 17.0.3 is still giving the same prompts. 3 modules, 1528303 bytes Signatures\20130220.sig (8358 bytes) - updated a2wl.dat (550781 bytes) - updated a2hosts.dat (969164 bytes) - updated
  3. Anyone else getting Behavior.Backdoor or Behavior.TrojanDownloader prompts for the firefox executable after updating to version 19?
  4. Fabian said that it was a result of classification changes to a lot of signatures of signatures at Wilders.
  5. I noticed this too and think that 2 context items would be nice. One to add the file to the whitelist and one to add the detection. I was surprised that the current default was for the detection and not the file. Thanks for submitting the feature request Arthur.
  6. Would it be redundant to use Malwarebyte's malicious website blocking with EAM7 or do they not overlap?
  7. No issues here with the beta. Installed and updated smoothly. Scans are fast. So far, this version feels as light on my system as v6. I like how the new menu minimizes to the left, but still shows the icons for each item. This is obviously minor, but IMHO on a system with antialiasing disabled, the old version had a more visually appealing font for the menu items. I'll report back if I encounter any issues, but so far another job well done to the Emsisoft crew!
  8. Is there a way to download the beta installer or is updating through the v6 interface the only way to do it? During the update, do the Ikarus definitions and leftovers get cleanly removed from the PC? Is there a way to manually verify that everything went smoothly during the update? Also any more details on the improved surf protection? Are you guys no longer using hphosts? Is it an in-house maintained list? Sorry for all the questions! :-)
  9. Thanks Fabian. I read this thread before reading the blog and finding out that the new beta was just released today. Oops. I can't wait to try the new beta later this week when I get back on my PC!
  10. Just to clarify, does this mean the current ongoing flash tests are using the beta version with the BD engine?
  11. Thanks Arthur. I really appreciate it. You guys are the best!
  12. Directory Opus responded to my inquiry at their support forum. I'm hoping this info helps you guys understand why this is happening in Directory Opus. I'm sure for a security program, this has to be a very low priority issue. Without sounding like this issue is caused by your program and not theirs, I'll keep my fingers crossed that this is an easy fix that will be worth your time to at least take a look at.
  13. Thanks Arthur! I also posted an inquiry at the Directory Opus support forum.
  14. Hi, I just wanted to let you guys know that in Directory Opus's context menu the "Scan with Anti-Malware" icon looks to be far off to the left of the menu. I have several other context menu extensions as seen in the attached screenshot and they are all fine. In Windows XP SP3 Explorer, the icon displays properly. This is not a high priority concern to me, but would be nice if it was fixed. Thanks and keep up the great work with this wonderful program!
  15. I'm not "advertising" anything. Are you "advertising" Comodo firewall and AVG antivirus here just because they're in your signature or you ask a question related to their interaction with an Emsisoft product?? And I didn't post here to "almost get" anyone. Malware Defender IS an established program and well regarded by those in the know. Fabian Woser seems to have found the MD I mean because he's not a noob like you guys are proving to be. I didn't come to this forum to be assaulted by other posters lack of knowledge and/or experience. I'm not sure how you ended up on the Staff as a moderator if this is how you treat all of Emsisoft's potential customers. Can a more responsible moderator please lock this post because I've gotten the answers to my questions thanks to Christian, Ayush, and Fabian. Darrell
  16. @Lynx: Some things are even beyond {N}0stradamus' predictive powers. I guess you don't spend much time in the Wilders forum or you would see that my setup is not that unique. You've got almost as many security applications as I do - a resident A/V, firewall, HIPS, sandbox (I think CIS has one built in, doesn't it?). All of my tests were done on virtual and real machines with only Emsisoft Anti-Malware 5.0 and Malware Defender - none of the other apps listed were installed. I've been a Malware Defender customer since version 2.0, so trust me it's not a "different MD". @Fabian Wosar: I'll take your word for it that there are more code changes to the latest version of Malware Defender than have been posted. One interesting thing is that in my testing Malware Defender was always installed first. I'll try installing Emsisoft Anti-Malware 5.0 first and see how that goes. I agree with your point regarding malware gaining kernel access being game over for any antivirus. I just found it interesting how Malware Defender caused your product to stop alerting for everything. Of course, I have no idea of how other vendor's products would react (other than avast! and Avira which I have used without any issues alongside Malware Defender). I'll try your suggestions and want to thank you for taking the time to test this on your side and for posting insightful replies to my inquiries. Darrell
  17. It's not MD 2009!! The developer sold the program and was hired by the company that bought it. They released it as freeware and it is available at 360.cn or you can get the version I'm running at download.com. The version at download.com is only a trial version with no way to pay for it now AFAIK. I'll update my signature.
  18. Hi Fabian! Thanks for the reply. Are you sure this was fixed in Malware Defender version 2.7.1? According to the developer there were no changes between versions 2.6.0 and 2.7.1, other than the main icon and copyright information as posted at Wilders. Also, I tried to install both Malware Defender 2.7.1 and Emsisoft Anti-Malware 5.0 on a real machine and as I noted in post #6, the problem still existed. I can't really explain why I was able to get the two to co-exist in a virtual machine, but not on a real machine. What if Malware Defender was malicious software? How would the user ever know they were infected with the entire alert system of Emsisoft Anti-Malware 5.0 being broken? This doesn't inspire much trust in the protection that Emsisoft Anti-Malware 5.0 provides IMHO. I'm hoping that your team will continue to investigate this and provide a viable solution.
  19. @zajic.v.pytli: 1. Yes 2. Yes ~~~~~~~~~~~~~~~~~~~ Any observations I've noted as to Emsisoft Anti-Malware 5.0 alerts failing will succeed when Malware Defender is not installed on the system - alerts due to manipulations with eicar.com and RkUnhooker occur normally. It is only after installation of Malware Defender that all alerts disappear. It doesn't matter whether or not Malware Defender is running or exited - Emsisoft Anti-Malware 5.0 will give no alerts when it should. My observations are not being caused by a failure in configuration or understanding of when or how Emsisoft Anti-Malware 5.0 should be alerting me, but thanks for the suggestions. I think is a major flaw in Emsisoft Anti-Malware 5.0 that I hope will be fixed. What if Malware Defender was actually malware that had initially evaded detection? Based on my observations, it would open the door to any and all subsequent malware.
  20. I installed Emsisoft Anti-Malware 5.0 trial today on a real machine under Windows XP SP3 and with both versions of Malware Defender, a2guard would not detect anything. I could manually scan eicar.com and it would be detected. However, if I zipped and extracted it there was no detection from a2guard. Likewise, clicking the processes tab in RkUnhooker generated no alerts from a2guard. It looks like I'm not going to be able to run Emsisoft Anti-Malware 5.0 and Malware Defender on my main machine after all.
  21. Hi Ayush! 1. Yes, Malware Defender does detect everything that hasn't had a prior rule created. 2. The output of fltmc is a2injectiondriver: 0 instances, 0 frame; a2acc 2 instances, 0 frame. After playing around with this some more today, I've observed the following things: 1. Disabling mdhook.dll does not help things with MD v2.6.0, but I can get a2guard to respond appropriately with MD v2.7.1. 2. If MD is stopped and then started with a2guard running, there is a VM reset error. If a2guard is exited, then MD can be started followed by a2guard without the error. 3. Running RkUnhooker with MD v2.6.0 and switching to the Processes tab results in no response from a2guard and all processes status is "Not accessible from User Mode". Doing the same with MD v2.7.1 results in a proper alert from a2guard and only the a2 and MD processes are not accessible. I'm still running MD v2.6.0 on my real machine. Based on my VM experiences, it's looking like the only way to get these 2 to run together at all would be to "upgrade" to MD Free v2.7.1. I'm still not feeling comfortable enough to do this though; I'm afraid that there could be a total failure in a2guard which seems to only be exhibited by no alerts to rogue files / activity. Thanks for looking into this. I'm still hopeful there's a way to run these together despite things looking more like the issue is on the MD side and the slowdown in MD's development since going free. Darrell
  22. You're very welcome! I'm hoping that your team will get this sorted and will eagerly await any updates. I'm very impressed with the behavior blocker and surf protection in this version. I really like the fact that the surf protection doesn't require a localhost proxy like most AV solutions. The behavior blocker doesn't appear to be using any kernel hooks which is pretty cool too. The options you have provided for advanced users (paranoid mode) is a nice touch. If the MD issues can be ironed out, you've got yourself a new customer here! Darrell
×
×
  • Create New...