The behavior blocker panel confuses me in Other Emsisoft products Posted May 26, 2015 · Report reply I agree that at the moment the rule dialog is a bit confusing. That is why we will likely drop it entirely in one of the next versions and essentially reduce it to either allow or block the entire process. At the moment essentially every behavior corresponds to a group of actions and triggers the behavior blocker uses internally to detect malicious behavior. Setting a specific behavior to block will essentially instruct the behavior blocker to prevent any of the actions that make up the group. We do not document the exact actions we are looking for and we never will. Doing so will only make it easier for malware authors to get around the behavior blocker by specifically avoiding the actions and conditions we are looking for. In general though the majority of all our users will never have to use the application rules as in almost all cases EAM/EIS will make the correct decision for them. At the moment they are only there to allow users to correct mistakes they made during rare manual decisions or in case they disabled all automatic decision making in EAM/EIS. Thank you for your response. I do not think that dropping the rule dialog entirely is a good idea. Could you consider to provide a new rule dialog in a more granular manner, just like online armor? I should say that I do not like the behavior blocker of online armor, since it lacks of intelligence and generates too many alerts. But I think the cloud-based behavior blocker of EAM/EIS is much more intelligent. In such case, adding a fine-grained behavior blocker will not disturb the users too much.