Jump to content

Lynx

Member
  • Posts

    2532
  • Joined

  • Last visited

  • Days Won

    19

Posts posted by Lynx

  1. Hi Mike,

    Welcome to the forum

    Your logs show that you have pirated / patched Software on your system and using keygens for generating illegal product keys.

    Please read special clause of the the instruction about that (see the reference below)

    You must not just remove kegens / patches / cracks modules, but uninstall all illegal Software before posting reports, otherwise you will not be assisted by malware fighter.

    I have manually removed the ImTOO and Alcohol associated files from my system, but cannot the ones in system volume info...

    You will be advised about the way to turn off Restore Point later

    After unistalling illegal software update a-squared, Deep rescan and repost

    all required log files into this thread as per instruction

    =======

    Read the instructions in http://forum.emsisoft.com/Default.aspx?g=posts&t=1930

    Prepare and post the required log files into this thread

    Wait for reply from ShadowPuterDude, Katana, or JeanInMontana for assistance and further instructions.

    =======

    My regards

    P.S. If you have any Antivirus with it's real-time resident being active - disable it when you are performing Deep Scan by a-squared. That will substantially decrease total time of the scan

  2. Hi sir_gwayne,

    Welcome to the forum

    If you want to find out whether it is FP or not, please submit the file to EMSI developers. Create the case in the respective section if you have questions about the procedure

    Since you posted into this section (and/or your system is misbehaving):

    =======

    Read the following instructions

    START HERE, if you don't we are just going to send you back to this thread <--click

    Prepare and post the required log files into this thread

    Wait for reply from ShadowPuterDude, Katana, or JeanInMontana

    for assistance and further instructions.

    =======

    My regards

    P.S. Posting just the file name or the alleged infection name does not provide any information

    The location of the files / precise names of files and/or Registry Entries ; processes, etc. are required. The same applies to the detections names. All that info should be in the saved report produced by a-squared. That will be one of the steps in the instruction

  3. Hi Richard,

    Welcome to the new forum.

    Was the log file you attached created as a <>.doc file?

    Since it is a new forum that will be discussed internally but I am under impression that posting doc format is not acceptable for security reasons.

    DOC files can contain macroses & so on... basically - there are known vulnerabilities

    Well, sure we all can scan after downloading but still that is not 100% safe and not what's expected

    I think - it has to be <>.txt

    That is not your fault . We are all new here ;)

    My regards

  4. Hi Darren,

    Welcome to the forum.

    Since Christian Peters replied to your request there, please send PM to him.

    That could be many things including this new forum and many other novelties.

    Probably it has something to do with it

    I could be wrong... we all are "new" here now :) and it will take some time to adjust

    I am sure Christian will reply to your PM and explain the situation with your "Notepad request"

    My regards

    P.S. Please reply here or PM to me or any other moderator if you have difficulties contacting Christian

  5. Greetings all,

    For future reference follow these guidelines when using any security Software to scan data:

    1) Always save any reports from the scan results screen

    2) Never quarantine/delete anything identified without thoroughly investigating the files and the name of the detection

    Quarantining is a process where files and/or registry entries are physically removed from their original location and are moved into a 'safe-zone'. They are encrypted and are unable to be accessed until restored or deleted. Sometimes security software falsely identifies important crucial system components as a threat (hence the term False Positives - FP).

    Removing/deleting critical system files, even temporarily, can make a system crash. Sometimes the system will recover after a reboot, and sometimes it will not. Therefore, you may not be able to start your system. Special system restore measures may be needed, or even a full system re-installation.

    3) Pay special attention to the items detected in such vital areas as C:\ ; C:\WINDOWS\ ;

    C:\Windows\System32\ ; etc.

    4) It is always better to be safe - whenever you install security software always set the detection actions to alert you and ask you what you want to do.

    Disable the action to automatically quarantine or delete detected items

    (such as “auto-healing”)

    If detections are FP's, you run the risk of rendering your system inoperable.

    If you are uncertain, get on a forum and ask for assistance before quarantining or deleting.

  6. note:

    The link provided here will be changed as soon as the instruction is moved into the new forum

    -------

    Greetings all,

    You may find the following message displayed by Emsisoft:

    Infection.XY can not be deleted! Please consult the experts in the Emsisoft online forum

    for help with manual removal of this Malware: http://forum.emsisoft.com

    This massage was introduced lately. It happens when user quarantines items and or tries to delete them. It means that the detected currently cannot be entirely removed just by the Software (a-squared) alone.

    In this case user should visit the Malware Removal section of the forum and follow instructions as in

    START HERE, if you don't we are just going to send you back to this thread <--click

    Prepare and post (attach) the required log files and wait for reply from

    ShadowPuterDude, Katana or JeanInMontana for assistance and further instructions.

    My regards

  7. Hi jime,

    Welcome to the forum

    =======

    Please read the following instructions in

    http://forum.emsisoft.com/Default.aspx?g=posts&t=1930

    Prepare and post the required log files into this thread

    Wait for reply from ShadowPuterDude, Katana, or JeanInMontana

    for assistance and further instructions.

    =======

    My regards

    P.S. Posting just the file name or the alleged infection name does not provide any information

    The location of the files / precise names of files and/or Registry Entries ; processes, etc. are required. The same applies to the detections names. All that info should be in the saved report produced by a-squared. That will be one of the steps in the instruction

×
×
  • Create New...