tallanvore

Member
  • Content Count

    4
  • Joined

  • Last visited

Community Reputation

0 Neutral

About tallanvore

  • Rank
    New Member

Profile Information

  • Gender
    Not Telling
  1. Hello, catprincess. I attempted to do just that after the problem occurred. By removing the Anti-keylogger entry for Foxit Reader I was alerted by Online Armor of key-logging activity, likely due to navigating Windows Explorer to open a PDF file. Then I set Foxit Reader to the Allowed status. Unfortunately, the file being read still rendered a black page and the History Log showed five entries all related to the anti-screenlogger and Access Denied. This is for Online Armor++ edition v5.0.0.1100 under Windows x64. I did get around the problem, though. The solution I suggested was to delete the Foxit Reader entry from the Programs list altogether and have Online Armor remap the executable permissions. The latter was merely a suggestion to have it listed somewhere under an appropriate heading for convenience. I can confirm that the anti-keylogger entry for Foxit Reader, in this case, prevents the auto-completion for a filename. By setting it to Blocked status, I executed Foxit Reader and attempted to open a PDF file. The pages were rendered black, but the auto-complete function used while typing a filename was blocked. This leads me to suspect that the anti-screenlogger is not directly related to the anti-keylogger protection module. However, the good news is there are no other issues that I have to contend with so I am still a very happy Emsisoft customer. Cheers Tallanvore
  2. Hello, There are two issues outlined in the topic title that I would like to report on. Firstly, I noticed an issue with the firewall status feature and how it would misread the uploaded/up speed units, the former being GB where it should be KB, and the latter Kb/s instead of MB/s (please see attached file). All internet-facing applications I have run exhibits similar behaviour. There are also occasions when I am playing an online role-playing game (MMORPG) where the graph reading shoots up to 500,000 KB/s and the downloaded and uploaded entries no longer contain units, but large 6-digit numbers. This issue relates to the x64 version of Online Armor. On another machine running the x86 version these issues do not occur. Secondly, will there be a section that lists screenlogger protected executables/dll's? I noticed on the Online Armor x86 version that if I had blocked an application from screenlogger activity, which in one instance was Foxit Reader, I could not revoke the deny permission and had to delete the executable from the Programs list and provide OA with an opportunity to re-learn the application. Since the anti-keylogger protection module is separate from the screenlogger protection module, I was hoping there might be an option to help simplify the process and provide a more user-friendly approach for OA subscribers. Thank-you for your time and the wonderful support you have been providing for it is most appreciated. Yours faithfully, Tallanvore
  3. Currently, it appears that all processes are affected, including OA's user interface as seen here: Furthermore, here is the screenshot of the country tab superimposed on the firewall rule editor: Finally, thank-you for the link to the documentation and your swift response.
  4. Lack of documentation Online Armor 5.0 now looks more like Mamutu. However, other than the change in skin, there is very little documentation that explains how to use the new features such as the File and Registry Shield, or the option to retain the Web Content filtering feature from previous versions. In addition, I would be grateful if anyone could explain why trusted programs have "Allow All" for remote code/data modification. My concern correlates with popular Instant Messaging programs for home and small business users. Suggestion An update on the FAQs section for OA 5.0 before the official release that includes examples on the functionality of the new features and any that have been removed. File and Registry Shield Firstly, would adding the entry "\Device\Usb#Vid*" to the File Shield list monitor and enumerate access to my webcam? Secondly, What about sites that have access to my system's peripheral devices? That is, would this inform the end-user even if an LSO/Flash cookie stored on the user's computer gave all sites access to his or her webcam/audio device. In the latter case, I would add the entry "\RPC Control\AudioSrv". I selected the radio button option "Ask" under Rule Scope. So far, on sites that host webinar sessions and whiteboard, there have been no alerts, so I have temporarily (hopefully) locked them down with ACLs. Thirdly, would this cause any incompatilibity issues with Mamutu? I'd like to know if adding "C:\Program Files (x86)\Mamutu" to the OA exclusion list would remedy any problems I might encounter when restricting access to common and less common autorun entry points in the registry. Counter-intuitive Design The improved speed in accessing the security options is - interesting, but there are some "small improvements" I'd like to see, so please take this part as a comment for feedback. When attempting to add entries to the whitelist/blacklist in the firewall rule editor I noticed that I could not select all the checkboxes at once. Also, in the firewall rule editor, the buttons are "OK" and "Cancel" left-to-right. Why is it that under the Select countries tab it is "Cancel" and "OK" right-to-left? I only ask this because there are certain IP addresses that are not included in the OA country list and are reported as "N/A" with a flag of Afghanistan (the old version of the flag), so when I attempt to check all of the checkboxes and leave a few countries unchecked, I accidently click Reset List or even worse, cancel. This is quickly followed by an exasperated sigh followed by CBS sitcoms. *sigh* After that, I noticed something extraordinary, I was uploading at 9.46 MB/s and 4.0GB to a total of 28.0 GB. At this point, I am flabbergasted. The OA Firewall Status was reporting with unusual units that should not occur on a home PC unless its connected to the Grid. I will provide the necessary screenshots to any one who is interested. Another issue is that when in Advanced Mode, the Run Safety Check Wizard in the Options side-panel causes the application to be unresponsive unless I open the GUI from the notification area. Closing the GUI and restarting the application brings it back to a normal state. I don't want to spend too much time on Banking Mode so I'll just say it also has interesting features. Would it be possible to access the OA domains list? I'm not sure if I should discuss hooks or APIs on this forum, so instead, despite all these upsetting new features, I am still a happy subscriber of Emsisoft's Online Armor++, Emsisoft's Anti-Malware and Emsisoft's Mamutu. On a final note, the issues above were encountered while MBAM processes including services were disabled, EMET entries removed, a clean installation of Online Armor on another computer and with Mamutu Behaviour Blocker on and off, during testing phase of the File and Registry Shield. Also, my comments are in no relation the opinion of Emsisoft, TallEmu or any other constituents. It is in no way meant to be offensive, and should be taken as honest feedback from a subscribed customer. And this is not an April Fools prank, so please take a look at these issues.