Jump to content


  • Posts

  • Joined

  • Last visited

  • Days Won


m0unds last won the day on January 5 2019

m0unds had the most liked content!


4 Neutral

Profile Information

  • Gender
    Not Telling
  • Location
    Albuquerque, NM

Recent Profile Visitors

17288 profile views
  1. Yeah, I know - I mentioned it more for the peace of mind of the OP Quarantine isolates the file(s) in a controlled location to prevent "bad" stuff from being executed. If the file quarantined is a library (DLL) or binary (exe), the program will no longer execute. You can always submit suspected false positives to support using the in-product FP submission function or submitting virustotal results on the false positive part of this forum. From your post and screenshot, the files are being marked as safe by the anti-malware network, which implies they're whitelisted and not being quarantined. Hope this helps.
  2. Hey, old thread bump, but there's still stuff not being properly displayed on high res monitors. Here's a detection information window from the current product release (you can see the issue in the screenshot):
  3. If you could locate the file being quarantined on disk prior to it being quarantined and get the file hash, you could submit it along with the installer to Emsisoft to figure out whether it's a valid threat. I've had to do this for a couple customers who had software doing innocuous stuff like updating using an unsigned installer (Brother printer/scanner software) and installing TUN/TAP drivers (VPN software). EDIT: Just reproduced this using the ExpressVPN installer. It's likely a false positive: 10/7/2019 11:45:23 AM Behavior Blocker detected suspicious behavior "HiddenInstallation" of C:\Windows\Installer\MSI13C1.tmp (SHA1: 062D2E610620917996AA29B09A38CE2710E86739) Here's the virustotal for it: https://www.virustotal.com/gui/file/d1881c9e34d00005974197efd978611a5c96363e4b2e0ad52a15867a637786af/detection -- it's an installer for WiX Sharp: https://github.com/oleg-shilo/wixsharp EDIT: Nevermind - Anti-malware network is recognizing it as safe, the product is just logging the hidden installer part. It's not the same situation as my customers' issues, as the product was actually blocking the installation in their circumstance.
  4. Hey, had another feedback item regarding the console - currently, it indicates "unresolved issues" when a device hasn't updated in $somenumber of days, even if the device hasn't been online during that period of time. i.e. device 1 hasn't updated since June 17th, but also hasn't been online since that date; device 2 hasn't updated since June 30, and hasn't been online since then - the console shows device 1 hasn't updated in 15 days and device 2 in 2 days. It'd be great if it would show unresolved issues for devices that have been seen *and* not updated within the reported period of time, rather than just basing it purely on last update and not online status. That being said, the improvements to the console are pretty great, and my customers have been pretty pleased with it so far. Thanks!
  5. no problem - happy to hear that these enhancements are in the pipe. can't tell you how nice it is having a web panel vs having to deploy the on-premises enterprise console. thanks again.
  6. Hey, So far, I've been pretty happy with the cloud console (as have most of my customers) however, is there any chance of getting an MD5/SHA1/256 hash of a "detected" file in the log on the cloud console and/or email notifications? Additionally, do you guys have any plans of adding something like a daily/weekly digest of detections vs "as they happen" notifications? I don't mind being notified right away, but in a few cases (namely, an FP at this point) I received something like 150 emails in the span of 5 minutes. I submitted the FP, and it was fixed in a pattern update, but you can see how that's not an idea situation 😁 Thanks! Chris
  7. Sort of better - activation window is usable now, post-beta notification window is still screwed up, as is the product window itself. The product window is too small, and either requires resizing or scrolling, and the notifications aren't resizeable and are cut off. Progress is progress, though. Uninstall dialogue is still borked, but I'm not sure whether that was part of the beta.
  8. it looks like overriding the dpi settings for a2guard doesn't persist between reboots for whatever reason. i just reproduced that on my aforementioned customer's machine. the only one that sticks is a2start.
  9. a2start being set to "system" scaling should fix the primary product ui - if your issue is with the product alerts, change a2guard and commservice to "system" scaling as well, and the whole product will be scaled correctly for 4k display by windows. (i just had to do this for a customer of mine. please fix this as it makes folks selling your product, i.e. me, and others, look like an idiot when we have to hack away in order to make it display correctly on modern workstations)
  10. have you tried right clicking on the EAM UI application (a2start i think; don't have it installed on this machine) > clicking properties > compatibility tab > high DPI > change to system? the problem with this on a small (sub 22") 4k display is that it makes everything so small it's unusable. not a particularly suitable workaround, i'm sorry to say. overriding the dpi handling for the UI might help, though.
  11. hey, here's the blog post about it: https://blog.emsisoft.com/en/32517/new-in-2018-12-safe-web-browsing-with-emsisoft-browser-security/
  12. considering it was an issue with the mozilla browser addons page that has nothing to do with emsisoft, i think it's completely within the realm of "figuring it out" when resetting the browser to factory remedies the problem preventing him from installing an addon. (i.e. the browser malfunctioned and resetting it fixed it) additionally, firefox sync saves your settings if you allow it to, and it's a zero-knowledge (e2e encrypted) service so there's no reason not to use it unless you hate convenience.
  • Create New...