Emsisoft Anti-Malware

I really wouldn't recommend running EAM with any other true AV, and it really isn't need.

As usual, MBAM and Webroot work perfectly with it, but I don't know if they even give you any more protection.

If you really want something for second opinions, keep Hitman Pro and Herd Protect installed, keeping in mind that not much gets past Hitman, but Herd Protect you've got to look into the false positives..

 

Try Emsisoft AntiMalware 9 later, it may fit your needs

 

I tried it 3 months back and loved it. Only stopped using it because they had an issue where on a Windows 8.1 system, the icon in the system tray would become hidden upon a reboot even though you have set it to always show. Do you think they fixed that yet?

 

Uhhh....now that was the reason to stop using it....

 

I do not accept using buggy software. Especially after reporting it on their forums and no action taken for more than 10 days

 

I think they have, take a look here:

http://changeblog.emsisoft.com/2014...alware-internet-security-9-0-0-4668-released/

"Fixed a disappeared icon in the notification area (...) "

 

Thanks a lot bro! Just bought a 3 year / 5 device license

 

LOL.. See you next week on the uninstall!

 

so far no disappearing icon and that was the only issue I faced before otherwise I liked it. so I think this time you may be wrong my friend

 

LOL..

No, I'll bet that Mayahana is right. I like Emsisoft quite a bit. I use the Freeware version on three computers. But the false positives you will encounter will not be to your liking.

 

that was true last year when I first used it, I found myself reporting FPs on the forums more than actually using my computer. Stuff like my VPN (Private Internet Access), Pale Moon, SVP (Smooth Video Project), like really popular stuff were flagged by their behavioral blocker. When I tested it again 3 months ago all that was gone thankfully with the exception of the disappearing taskbar icon that bugged the hell out of me and even though cosmetic, I just couldn't take it. The other bug wsa that the Windows 8 security center would sometimes report that EAM is off even thought it was on. haven't had that happen yet and according to the changelogs it should be fixed....

 

People leave security center running? That's one of the first services/icons I disable.

 

I haven't encountered any false poisitives with Emsisoft at all after they spotted using Ikarus.

 

Guys also consider BB alerts as false positives.

 

Please forgive my ignorance but why?
Is it a security threat?

 

Same here, no FP's.

 

Special: backup software for free with your order at Emsisoft
http://blog.emsisoft.com/2015/02/19/special-backup-software-for-free-with-your-order-at-emsisoft/

 

No it is not a security threat. IMHO, you should leave it enabled, and just untick some option in the control panel and deactivate the icon why?

1- WSCSVC, use about 10 mo (less or plus depend of machine).
2- This service have components dependencies, for example on Windows 7_X64, they have two.
3- Some security scanner could alert you (Malwarebyte's if i correct remember and....), if you're a novice user you could think that is a threat and delete the registry entries.
4- If for some reasons you decide to re-enable it sometimes you could get a error code that the security center could not start, because of (cleaning software, major windows updates) this is related to the connexion tab in the service.

@Mayahana
Of course you could disable-it.

 

No security risk. I disable it on my personal machines. But I turn off the System Icon for it so the flag goes away on most machines. The flag generates quite a number of 'useless' support calls usually pertaining to windows update mis-reads because we're pushing from a GP or something. But generally the flag goes off for me as well.

 

This is not a false positive with the signature-based side of things (in the case of them being able to do further analysis on the program and then decide whether they wish to whitelist the file or keep the SHA-256/SHA-1/MD5 signatue in their virus definitions database), but a behaviour-side detection (the case where they won't release an update whitelisting this file in the Behaviour Blocker protection module, specifically).

The detection name: "Behaviour.TrojanDown" suggests that it was trying to "invisibly" download data to the computer (a suggested trait of what a Trojan Downloader may attempt to do). The only way around this, would be for the developer to overview his code and change it so it doesn't become detected whilst downloading (update information, new versions) or to whitelist the program completely with the Application Rules area on Emsisoft Anti-Malware.

The Emsisoft Anti-Malware Behaviour Blocker is very sophisticated, to an extent. I'd rather have a few false positives in the behaviour detection and a greater detection of live threats - especially when you have the ability to know if a file is malicious by analyzing the program yourself if it detects something you did not expect.

Anyway, if you are wondering, "well why can't they whitelist Potplayer in the Behaviour Blocker?" - the answer to this is because this would be going against the point of a behaviour blocker (since it's not meant to be working with a blacklist of signatures, nor a whitelist made by them), and if in the future Potplayer decided to do something malicious and join the bad guys (which I doubt would happen but it's an example and something which could potentially happen with anyone's product), then a lot of users may become infected by it using Emsisoft products unless the Emsisoft staff managed to release a new update removing the whitelist quickly, in which may be too late having not known about it starting to do malicious things.

Point is, it's a great product. Whitelist Potplayer and everything should be fine.

 

That issues was fixed in an update

I never have that issue though I suppose YMMV.

Also for a time Windows Action Center was not reporting EMIS as being on until you did an update, ALTHOUGH IT ALWAYS WAS on - had to do with a change in the order WAC looked for an av and the timing of when EMIS reported to WAC it was on, --that too was fixed)

 

yes been running it for more than 3 days now and very happy all the quirks that I had were ironed out, no false positives, light, excellent PUP detection. Truly pleased with this

 

Emsisoft finally got a good score on PC Mag:

http://www.pcmag.com/article2/0,2817,2477035,00.asp
EDITOR RATING: EXCELLENT

 

I recently went back to Emsisoft on one of my computers. One of the first scans came up with this, some of which is in this screen shot. What is this?

 

I suggest to ask about this on Emsisoft forum.