Frank H

One more time then 1. browser or any other app that uses IOffice AV API to call EAM to scan a file, streams the file to EAM. 2. EAM returns: DETECTION OR NO DETECTION 3. if DETECTION, browser or any other app, deletes the file, not EAM. 4. if you set File Guard to Default, files are NOT scanned when they are saved, which does NOT interfere with IOfficeAV. 5. if you set File Guard to <> Default, files ARE scanned when they are saved, which interferes with IOffice AV, as EAM will try to Quarantine the file too. That is how it works currently.

It seems that you do not get the point. I've tried to explain how it works and why it works like this. maybe someone else can explain this better.

fyi: build 9869 has been released to stable on Dec 2nd Thanks for your feedback !

The Migration from EIS to EAM was done in the same folder where EIS was installed. This was required to not make the migration complicated/impossible by moving stuff to another folder or forcing a re-installation.

This happens because probably moving to quarantine doesn't succeed because the browser deleted the source file already. If you set File Guard to another scan level than Default, such issues are expected, when 3rd party apps take care for deletion of detections,. it's a similar situation when you have multiple AV installed. its a minor thing and most important is that the malware is catched and deleted before it can do harm.

Only files with the .EQF extension are correctly encrypted files and will be visible in the Quarantine panel. All other files are not correctly encrypted or had other issues. You can remove them manually. We keep such files in that folder for situations were (even faulty) files are so important that they require to be analyzed by our lab and eventually restored, although i never saw such request.

We’ve just released Emsisoft Anti-Malware 2019.11.0.9869 beta. You will have to enable beta updates to get this version. Several minor tweaks and fixes.

Jeremy, your example shows behavior that always was there, as you have *not* set your FileGuard scanlevel to 'Default'. Please note that this only works smoothly when you have set EAM File Guard to scanlevel 'Default', as it doesn't scan files while being saved by the browser.

just download the eicar virus testfile http://www.eicar.org/download/eicar.com.txt after download, IE/EDGE/CHROME (not supported by FF) calls EAM and the the browser deletes the file when tagged as malicious by EAM. EAM will show a notification and adds a record to forensics.

We’ve just released Emsisoft Anti-Malware 2019.11.0.9864 beta. You will have to enable beta updates to get this version. Fixed: Rare stalled automatic updates. Several minor tweaks and fixes.

taken from https://support.emsisoft.com/topic/30470-emsisoft-anti-malware-2019x-beta-releases/?do=findComment&comment=198443

We’ve just released Emsisoft Anti-Malware 2019.11.0.9857 beta. You will have to enable beta updates to get this version. Improved: Integration with IOfficeAntiVirus/AMSI. Third-party programs and the Windows operating system can access our scanner technology. Microsoft created specific interfaces called IOfficeAntivirus and AMSI that are used by most modern browsers, script interpreters, and Office programs to make sure the documents that are downloaded and opened do not contain any malware. Emsisoft Anti-Malware now displays related detection notifications and adds log records. Improved: Support for 4K monitors. Improved: License panel reworked. Improved: Detection of Windows Updates status. Changed service behavior in command line scanner.

Thanks stapp. i'm everywhere

FYI; 9803 is the EAM stable version since Oct 31st Thanks for your feedback anyway

Thanks for confirming.