Zemana AntiMalware 2 BETA

If the files are dormant, it may be relevant to the type of scan you use (smart scan doesn't cover that much ).

 

I agree I grabbed a lifetime license for the heck of it but haven't used it, don't really need a on demand scanner with bit and MB running, maybe someday.

 

OK got it, but I will explain myself. I've noticed that you have mentioned this earlier, but I don't see this as the "killer feature" of ZAL, I think the HIPS/anti-logger functions are way more important. But perhaps it's also because I'm not into real-time Cloud AV'S.

 

It's a directory scan, so they scan the same files...

 

I, as a one more ZAL Pro user, also agree somewhat. I don't complaint about this project, but just hope they don't abandon or leave ZAL in current state (I have some suggestion).

Also no much interest in ZAM too. To be honest, I'll test it only because I want lifetime lic with a bit of hope that it might become super product in the future.

However, about the best benefit I agree with Rasheed, HIPS function is the main reason I've been using it and real-time VT is just an added bonus for me.

 

ZAM 2.1.1.929

Fixed an issue with safe mode
Added resize support to UI
Fixed an issue with temporary files folder path retrieval
Fixed an issue with boot record reading
Added check updates button to home page
Added "Create Restore Point" to settings
Removed "Last Update" value from home screen
Fixed MBR / VBR exclusion issue
Language improvements
Fixed recurring Back button not working issue
Clicking Zemana logo at the top of UI takes you to home page
Optimized CPU usage
Improved UX for cleaning actions
Fixed an issue with Rollback RX and EZ-FIX
Fixed "Send Feedback" link
Improved scan reports
Fixed an issue with browser extension cleaning
Added a link to version number
Fixed freeze issue on system start
Many other minor improvements and bug fixes

Known Issues:
Not scanning 16 bit executables

Credits: Zafer Balkan, dji09003, Lewis k Smith, Lucien Bautista

 

Salutations, Did anyone catch the new update today? Nice!

 

Hi there

Yes, I did and it is installed and looking good...just going through the list of changes/fixes to act as a check list for some quality testing time tonight. Not the option to indicate whether a System Restore POint should be created automatically or not...NICE!

Regards, Baldrick

 

They listen to our feedback.
And are really fast with fixes!

 

There all good outa the gate. Time will tell.

 

Hi,

After a full and smart scan i get the message your PC is safe. After clicking on report's in results it shows "Malicious Objects Detected" but there is nothing malicious in the logs


CUID has been redacted by me.

Code:

Zemana AntiMalware 2.1.1.929 (Installed)
-------------------------------------------------------
Scan Result  : Completed
Operating System  : Windows 7 64-bit / 2
Processor  : 2X Intel(R) Core(TM)2 Duo CPU  E8135  @ 2.40GHz
BIOS Mode  : Legacy
Scan Type  : Smart Scan
Duration  : 2m 10s
Scanned Objects  : 4941
Detected Objects  : 0
Read Level  : SCSI


Threats
-------------------------------------------------------

Code:

Zemana AntiMalware 2.1.1.929 (Installed)
-------------------------------------------------------
Scan Result  : Completed
Operating System  : Windows 7 64-bit / 2
Processor  : 2X Intel(R) Core(TM)2 Duo CPU  E8135  @ 2.40GHz
BIOS Mode  : Legacy
Scan Type  : Full Scan
Duration  : 7m 2s
Scanned Objects  : 11940
Detected Objects  : 0
Read Level  : SCSI


Threats
-------------------------------------------------------

 

I can confirm the same...did a drop & scan on a file I know to be clean and got the message that all was will with the PC but checking in the logs I get an ebntry for the time of the scan saying that 'Malicious Objects Detected'. Clicking on the entry reveals the same as that which ronald739 is seeing.

Baldrick

with Zemana AntiMalware 2.1.1.929 (Portable) under Win7 64bit

 

Also just installed and a first smart scan run on my Win8.1 (32bit) tablet...and running very nice and light indeed.

Baldrick

 

I'm also getting the "Congratulations your computer is safe" message after scan but, the log file shows "malicious objects detected" but no threats shown in the log...

Zemana AntiMalware 2.1.1.929 (Installed)
-------------------------------------------------------
Scan Result : Completed
Operating System : Windows 7 32-bit / 2
Processor : 2X Intel(R) Core(TM)2 Duo CPU P8400 @ 2.26GHz
BIOS Mode : Legacy
Scan Type : Smart Scan
Duration : 1m 20s
Scanned Objects : 3432
Detected Objects : 0
Read Level : SCSI


Threats
-------------------------------------------------------

 

This is a superb product so far!

I can't see the need for HitmanPro with this guy.

 

Tested the latest portable version and files are still written to:
C:\Users\USERNAME\AppData\Local\Zemana

I've also found that a driver file that is written to the system directory:
C:\Windows\System32\drivers\zam64.sys

Please write files to the .exe's directory when using portable mode.

Also the "Create Restore Point" setting should be added after the scan as an option. Not as a general setting.

 

We will add a "Clear reports" menu item in the next version; but as a workaround you can select all the items by pressing CTRL+A, then right click and select delete to clear all.

Currently this is only an on-demand scanner but we are planning to add an optional on-execute scans later.

We also have a support ticket for CryptoPrevent issue but so far we cannot reproduce it.

You are most welcome. We know that testing beta stage software can cause many problems, so we thank you for your time and your support in helping us improve our programs.

We have looked at many popular portable apps and decided to use AppData for Quarantine/Settings because these files can make your desktop look cluttered. Moreover, if the user moves the main executable to any location there will be no issues and support tickets. When you close the portable app, these files are not used in any way.

We are working on a semi-automated FP processing system. That system will be active very soon and we will respond very quickly to FP reports. Sorry for the inconvenience.

No worries -- we have allocated a dedicated team for the ZAM project and they are focusing only on ZAM. And I am sure that when the experts start to make live malware cleaning testing, we will obtain excellent results because we are using brand new techniques to detect and remove most sophisticated rootkits/bootkits. Zemana Antimalware is very good at removing unwanted apps, annoying toolbars and browser add-ons compared to other Antimalware tools. We must, however, wait for expert reviews on this subject as soon as our release version is out.

Yes, we will add command line support when the stable release draws near.

Thank you for your kind words; we are glad to hear our technology has helped you.

System-wide keystroke encryption is very risky and challenging since many software, such as DirectX games, do not use a standard keyboard input. This is the reason why we wanted to be sure that it is working properly on every system before adding it to our paid product.

When we have shared DLL loaded in other processes, we always enable ASLR for it but our GUI does not receive inputs from Internet nor does it run as admin rights. Therefore, I do not see how it can be an exploit vector. Anyway, after extensive tests we will mark our executable with an ASLR flag.

IntelliGuard usually checks for DB updates every half hour, but this was unavailable because we scheduled maintenance this month. The updates will resume at the end of this week.

No worries.

We have already added this option in the latest version . (By default, it is checked since we do not know who has disabled the shadow service.)

At this stage, I do not think it is necessary because we are creating very few files and folders and our setup script is just ~100 of lines so installation/uninstallation is not complicated.

We are using the most recent version and Bitdefender updates itself every hour.
There are several reasons for this but the most probable one is that this file was not detected by Bitdefender in the first scan and some other trusted AV detected it. We have cached this infected scan result for future scans so Bitdefender does not appear in the future scans. If you tell me the MD5 of the file I can tell you more. In the next release, we will add an optional re-scan function.

No worries ZAL is our flagship product and it's installed on more than 5m systems. We're actively working on it to improve. Soon we will release a beta with new features.
But please let focus on ZAM in this thread.

Thanks! That's because your feedbacks are really the best!

Thanks! This issue has been confirmed and will be fixed in the next version.

Unfortunately, we can't do that since many system admins makes rules to prevent driver loading from locations other than the system directory and this is also mentioned in MS guidelines for driver loading.

 

Thank you!

 

Three possible issues:

1) Open GUI and then make a context menu scan of a file or folder.
Another GUI window is opened. You can repeat this with another few scans and each will begin in new window.
Shouldn't it start a scan in already opened, first window? All other scans should be stopped and wait until first one is over.
Is this by design?

2) Start a scan.
While window is opened you can move through options/tabs and after you return to home page, the scan is still active.
Now minimize window and re-open it again.
Scan is no more active and home page is shown.

3) I choose "Report as safe" on single detected file and ZAM says "All detected objects cleaned succesfully!".
There are various actions beside "Delete" so I think more appropriate sentence would be "Selected action was performed succesfully!"

 

Thanks for making System Restore points configurable!

 

If you only look at the engines, ok. btw: Who needs those 10 Engines? If 2-3 top player find nothing, thats' enough
But main point is:
Hitman.Pro does lot more than just stupid scanning: own detections, the whole forensics, their repair and rollback capabilities...
That is what the real strengh of HMP is- why ignore it?
It's a lot more than ZAM (and not just a Metascan implementation )

 

I agree, HitmanPro is an excellent program, very stable, and I will keep it for sure...

 

@Emre TINAZTEPE
Regarding portable version. I think it is somehow misleading. Ok, there is no need for install but it's far away from beeing a real portable: it installs the driver, it writes to appdata folder. Any option to change something here? Maybe provide a batch to clean up those things?

 

We also love HMP and we have been selling it's rebranded version to our users but please do not convert this thread to "A vs B" as far as I know, it's against WS policy.

Thanks! Himm, we can provide a command line parameter to remove all remnants of the portable in the next release. (But this will delete the Quarantine, Reports, Settings and etc.)