Offline Sword

Member
  • Content Count

    76
  • Joined

  • Last visited

Community Reputation

2 Neutral

About Offline Sword

  • Rank
    Active Member
  1. Thank you. It actually works. By the way, I find that whitelisting a folder from the Behavior Blocker now also works. For example, whitelisting the folder of Sandboxie could depress the alerts shown in #1. It is amazing to me, since in the past, @Fabain Wosar ever said that we could not whitelist an entire folder from the BB: http://support.emsisoft.com/topic/19719-eam-in-a-developer-environment/?p=147193 . I guess this problem was fixed in the recent versions?
  2. You are right. To solve this problem, I think EIS can reserve the behavior blocker rules & firewall rules for non-exist files rather than remove them automatically. If we really does not need an outdated rule, then we can remove it manually. You can also provide a button when allows the user to remove all the rules for non-exist files in a batch, like what we can do with Spyshelter and EXE Radar Pro.
  3. Which product, product edition and exact product version number your support request refers to: Emsisoft Internet Security 11.6.1.6135 (64-bit version) Your operating system including the edition, service pack level and the bit-depth (32 or 64 bit) if they apply: Windows 7 Pro 64-bit Other security applications you may have installed: Sandboxie (Invincea) and Novirusthanks EXE Radar Pro. If my memory serves me correctly, about one year ago, I found that EIS could automatically delete some rules (like Firewall rules) immediately after these rules were created by answering the alert window. This bug or feature caused a problem that some applications would frequently trigger alerts (like Firewall alerts or Behavior Blocker alerts). of EIS, which I think is disturbing. At that time, the staff here told me that this problem could not be reproduced, though I could reproduce it. Today, it seems that this problem persists. Please check the following screenshot. As you can see, the rule for "rmdir" is automatically deleted. So each time Sandboxie remove the contents in a sandbox, it will trigger an alert like this: How to reproduce this problem? 1. Create a sandbox in Sandboxie. Configure it such that all the contents inside this sandbox will be automatically deleted when the processes running inside this sandbox exist. 2. Running some applications, such as Chrome, in this sandbox. 3. Close all the applications running inside this sandbox. I think you should see the alert for rmdir like the screenshot above. Choose "Allow always " such that an allow-rule will be created by EIS for rmdir. 4. Open the "Application Rules" Tab in the main window of EIS. I do not mean that this step is essential. But with this step, I could definitely reproduce this problem. 5. Perform Step 2 and Step 3 again. Then you should see the alert window shown above again. If you still could not reproduce this problem...I give up...
  4. I think here you mean that if we whitelist a folder from the Behavior Blocker in the following manner, it will not work?
  5. Could EAM (or EIS) work along with EMET 5.5 or HitmanPro.Alert?
  6. With the new features you mentioned, especially the anti-exploit feature, could Emsisoft products still be used along with other anti-exploit products? Or would this cause compatibility issues? Thanks.
  7. I remember that in the past, it is claimed in the Q&A section that Emsisoft Anti-Malware can be used along with other antivirus softwares. But it seems that that claim has been removed from the current version of your website. I hope to know whether EAM still could be a companion antivirus. Thanks.
  8. Hi, Emsisoft Staffs. Maybe I found a bug of Emsisoft Internet Security v10. Just now, I downloaded a malware pack consisting of 50 samples. I decompressed it and scanned it with the option in the context menu. The detection result is shown in the following screenshot. Please pay attention to the items corresponding to 19.vir. (But the problem does not happen here). Then I clicked the buttion "Delete selected". After that, one item corresponding to 19.vir was left ! Then I clicked both "Quarantine selected" and "Delete selected", but none of them works. This is because, the file "19.vir" has actually been removed. So I think the problem that the item of "19.vir" was left in the detection list should be a bug. I have repeated this several times. I am 100% sure that I can reproduce it. The version number of EIS is 10.0.0.5735. My operation system is windows 7 x64.
  9. Yes, of course . In the current city I have no problem in updating any products of Emsisoft products. But according to some posts in some security forums, people who have problem in updating Emsisoft may be more than the users who have no problems. The problem is that even the ISPs generally have no interest in solving these issues, let alone the backbone provider. Could Emsisoft do something on this problem? Like providing offline updates? By the way, I notice that there is an option in EIS that "Using SSL encryption for all server communication". I hope to know that, whether the daily updates are also encrypted by SSL?
  10. Yes, I agree that this might be a problem caused by the ISP. But it seems that this is not a local issue that only appears in one city. As far as I know, many people in my country (China) find that they cannot update EEK without VPN. It is really a strange issue, because, unlike avast, Emsisoft has not been blocked by the ***. I hope to help to solve this problem, but I can only reproduce this problem in my hometown, not here...
  11. It happens most of time. Until now, only one update is completed successfully. There is no error messages. EEK just keeps initializing all the time. By the way, it seems that this problem only happens in my hometown. I will leave my hometown tomorrow because my vacation will end. So maybe we need to continue this thread three months later.
  12. Hi, staffs in Emsisoft. I have a problem in updating EEK. When I try to update EEK, sometimes it is stuck in the "Initializing" period. I am running EEK 10.0.0.5488 in Windows XP SP3 (x86). No firewall is being used. I would like to know how to solve this problem? Best regards.