Jump to content


  • Posts

  • Joined

  • Last visited

  • Days Won


Everything posted by Lynx

  1. Hi H_D, Thanks and indeed, what you are saying is is a known fact At the same time, what was posted by RoyD , is not clear, because we are under impression that the next Scheduled Scan is a Deep Scan despite the Custom one was set. Opening GUI was not mentionedSo, your observation, and accordingly the question is pretty much sharp (as usual ) Let's hope that RoyD will respond soon and all will be sorted out Cheers!
  2. In addition to the above One of the best helpers here - ctrlaltdelete responded to my request & tested the scheduled scan setting including the Reboot - that worked fine ... but... he is running v5 (beta accepted) and that's what I was always using (currently Can you please: - tick "Use beta Updates"; (Configuration > Update Tab) - set the Custom Scheduled scan; - Reboot; - and post the result of such experiment That will be highly appreciated Cheers!
  3. Hi RoyD, thanks for the reply That's already good,... but re: This misbehaviour was never noticed before Thanks for pointing that out. That has to be re-tested & I hope the developers (and users) will reply Rest assured - if that is kinda new bug introduced - it will be fixed quickly In addition I'll ask some Gurus here to test, since currently I am running full EAM internal beta (the next version) plus the Scheduler is currently disabled anyway My regards
  4. Hi shaqan, welcome to the forum This thread is pretty much old "December 2010" It seems like users solved their issues by contacting Customer Service as it was advised in several replies above Then, as it is posted here According to the image you've provided you are running XP Pro x64 So, what is an actual question re: and ..."added support for the Itanium 2 processor" and how that relates to the license as that was the subject of this thread?Please be more specific when providing information to the developers My regards
  5. Both articles (and there are more) are indeed interesting but my point was - what is special about Google search? Similar can be implemented for any kind of search and not necessarily for the "search" Cheers!
  6. You are welcome, john_e_w There is never "the only one" Cheers!
  7. Hi Guys, There are many rogue AV's out there. Thing is that any known one can be modified easily, so current "real AV" based on just signatures (+ heuristics) would miss them. Correct, "usually",... but not necessarilyYou can be infected just by visiting sites. Drive-by installation will be performed without any users interaction whatsoever, because the code executes straight away whether it is Active X (the most dangerous) or Java applet That is not a matter of "search" at all Any spelling mistake e.g. when typing the site in address bar can bring you to nowhere ... or ... in many cases - to the malicious site The images/pop-ups/fake scanning of the PC will appear - that is just an animation (pre-recorded GIF). That's when some users are confused thinking that their PC were indeed scanned But the latter is different to drive-by download & installation Therefore you need additional layers of security in place. Despite the latter still will not protect you (us) 100% it will decrease the number of accidents EAM provides Surf Protection (hosts management); and it has Behavioral Blocker Most of decent Firewalls have HIPS You have to consider using secure DNS You have to avoid using browsers like IE that employs ActiveX technology Use more secure browsers (e.g. FireFox) and in addition having security Add-Ons like NoScript / RequestPolicy / etc. You may consider using link scanners whether those are real-time or Off-line, so you can check the link/site before clicking. Many of those will scan the site for an embedded malicious code Several latter mentioned measures definitely reduce fun of free surfing, but that's users choice That is impossible to cover all within this thread. Most discussions would be OffTopic,... speaking of which, for a change please read this Cheers! p.s. {added} forgot to mention few things - using Limited User Accounts Account instead of Admin or - using Software like Run Safe (OA) - any Software like "Drop My Rights" (DMR) / or similar by SysInternals (PsExec) - sure do not forget Software like SandBoxie
  8. Hi RoyD, welcome to the forum Currently the default scan is Deep Scan (it was the Smart one in the past) The Smart Scan will do the following (in current version) Scan type: Smart Scan Objects: Memory, Traces, C:\WINDOWS\, C:\Program Files Scan archives: Off Heuristics: Off ADS Scan: On So, you can use Configuration > Scheduled Scan Tab > "Scan Setting File" option. See Help File (8.2) Please ask if you have further questions My regards
  9. Hi john_e_w, Use /L or /La parameters as described in a2cmd_readme.txt In addition it's possible to redirect main output. Command will look like: H:\Emsisoft Emergency USB Stick files\a2cmd.exe" /f="F:\_Temp" > /L="F:\_Temp\ReDirect\report.txt See an example here My regards
  10. Hi Baserk, 1st thing to check is whether you changed anything regarding permissions for "the user" ( Settings > Permissions Tab) Are there differences regarding options compare to "admin" account"? Then, if you search this forum for "EMET" you will find few discussions(e.g. this one) meaning - potentially there could be conflicts Therefore you may consider tweaking EMET as suggested in Configuration Guidelines My regards
  11. Hi Gib, The message you described was discussed/solved previously, but that applied to the installed version of EAM and or a2-free in the past and were related to incorrect or rather failed installation/uninstallation procedures carried by users There were never complains about EEK regarding the matter, since the latter doesn't need to be installed At the moment I would suggest that you follow the instructions by ShadowPuterDude in the "Malware Removal" section When that is resolved and your PC is in shape, we can return to the EEK/"a2framework.dll cannot be found" issue When and if you will return to this discussion, please: - answer the question as above : "Are you running emergencyscanner.bat from USB Stick or ?..."; - do you have EAM installed as well?; - sure have a look whether a2framework.dll is present in \Run\ subdirectory; - Please provide more detailed information about your System Environment as in Forum Posting Rules #2) My regards
  12. Hi Gib Are you running emergencyscanner.bat from USB Stick or ?... There is no problem here As H_D pointed if you look into the said <>. bat ECHO OFF cd Run start a2emergencykit.exe Exit all it does is changing the directory (cd) to the \Run\ directory within the main EEK folder, where a2emergencykit.exe resides ... and it works My regards P.S. Just tested running it from the folder created on hard drive - again - there were no issues In addition what happens if you would run start.exe and choose EEK from the GUI?
  13. Hi qq543069760, welcome to the forum Sometimes there are temporary failures when servers are overloaded or it can be due to maintenance of the servers (again that's temporary) Try later Please provide more detailed information about your System Environment as in Forum Posting Rules #2) As soon as we can see all details we can provide more help 1st thing to check is the rules created by your Firewall Remove all existing rules and recreate them - "Allow" as soon as you are asked Sure, it is important to know in addition whether you are using proxies... and so on At the moment there are no issues with updates from this location and with my current security settings My regards
  14. Hi john_e_w, welcome to the forumIn addition to what H_D posted, which is a good advice, please read the old discussion (cached) and accordingly this EmsiSoft article My regards
  15. You are welcome, Koosharem Just a few comments though regarding you system setup presented - major point - you should not rely on a native Windows Firewall (FW). Please choose decent 3rd party one: Emsisoft's OA / Outpost/ Comodo (I'm talking about FW only in this context) - You can still use SpyBot's immunization (only); - you can add SpywareBlaster to the set; - As for the AV - MSE is not the best candidate (my own opinion) despite its detection rate was improved a bit lately ... other comments would be Offtopic here My regards
  16. Hi Koosharem, welcome to the forum Both features actually belong to protection techniques implemented in the Software in order to fight against unauthorized termination. 1st, you can read about common use of "Captcha" here So, stopping/exiting the Software has to be confirmed by entering a code generated by the Software. That will identify you as a human , who is deliberately stopping it The "Activate self protection" option protects the Software from being terminated or deactivated by Malware My regards
  17. 1st, thank you for the reply , Gienek & most importantly for you help with the translation It seems like you have to do that , but I'm sure that will not stop you You work is much appreciated Cheers! p.s.
  18. Hi Gienek, I'm not aware of such feature & personally for a long time of using EAM & Mamutu that was not needed There were just a few times for many years that I needed to Clean Reinstall due to using betas & experimenting "too much" , and that always went fine ..., but that's it Can you please clarify the matter , meaning - Why would you think that the Wizard may be needed after the said Software is already in place? Any specific scenario? Please share your thoughts My regards
  19. In addition to the above Sure the "C:\Documents and Settings\" folders were not scanned I copied few files that must be flagged by EAM/CLS into the C:\Documents and Settings\Administrator\ folder the Smart Scan finished The extract from the report: What you may have in your report are records like this ... [3820] C:\Documents and Settings\.....\Application Data\Mozilla\Firefox\Profiles\........\libs\cooliris.dll But those are the processes, since /M parameter was used or records related to the Registry where Traces were scanned , like HKEY_LOCAL_MACHINE\SOFTWARE\.... ... c:\documents and settings\all users\... Menu.lnk... , since /T was used I can attach whole report, if you want but basically, the WhiteList file you've created would better fit and to be tested with the Deep Scan, since the set of folders as in you post are not included into the Smart Scan type I hope that users and the developers will add some info (and/or correct me) My regards
  20. Hi HurlingMalware, welcome to the forum 1st, please search the forum using keywords like "White List"/ "Whitelist" or alike You will find many discussions including using the feature with Command Line Scanner (CLS) or "a2cmd" e.g.: '>this one and some subsequent links inside Then the set of the parameters you've posted does not include /WL=FoldersToIgnore.txt (the name of WhiteList is just a generic example)Finally, I have to refresh my memory , but I am not sure that "C:\Documents and Settings\..." are included into the Smart Scan The common report header of the latter says: Scan type: Smart Scan Objects: Memory, Traces, Cookies, C:\WINDOWS\, C:\Program Files Scan archives: Off Heuristics: Off ADS Scan: On If I am wrong - I'll be corrected I'll try to run the latest version of CLS again and see what's going on Meanwhile you can fix the parameters and in addition produce a report , so the developers can see that the folders were scanned despite being present in the WhiteList. The easiest way is to place some files inside those folders that are definitely flagged by EAM like Eicar or TrojanSimulator In order to save report you can use redirection "> D:\AnyFolder\CLSreport.txt" at the end of the parameters set (where D is just any drive letter of your choice) My regards
  21. Hi XIII, I've tested that on win7 x64 as promised There were no issues whatsoever EAM just updated automatically to v5.1.0.11 That was definitely not "an attack by malware" - no doubts As for the failure of updating - most likely <>.ELFs as far as I know, are crash report(s) Have you got any displayed , so you can send it to the developers? My regards
  22. Hi Guys!ctrlaltdelete, "OA History?" what do you mean by that? You probably know (or remember from previous posts) that XIII is running OA There is no info about his system. I see that he is running win 7 from what he'ev posted I will have access to win 7 x64 in about half an our (no OA there) Full EAM beta is in place . Will report back ... Cheers!
  23. Hi elbasha bisso The problem here in the 1st place is - you did not provide the precise set of security you are running as it was asked in #2 Sure, you have to run AV + decent 3rd party Firewall like OA As for "+ antimalware" , well EAM is full AV solution & anti-malware & behavioral blocker/ etc. "alot to try" as in "Other:" is quite unclear. At least please make all needed mutual exclusions involving AV(s) and OA..., have only one AV with real-time resident present, so your multiple security are not monitoring each other. You can avoid subsequent conflicts/clashes You did not answer the question by H_D #9 Then, what Download manager in particular you are using? The answer by Malwarebytes is not convincing answer by any means (at least for my taste) Furthermore, as in you previous post you stated that you found that OA is responsible That is very unclear. Do you mean that in case Malwarebytes is uninstalled / or it's real-time protection is disabled you have some kinda new trouble related to you Download Manager(again which is what?) and OA? If so, please post into OA section of the forum. Considering that you will provide all information you were asked about here - you'll get professional help re: alleged conflict between OA and the mysterious Download Manager Anyways, again with Adobe site mentioned you should not have any troubles uninstalling/installing the latest Flash without using Download Manager, as H_D suggested. Please test that My regards
  24. Hi Georg, sorry for the delayed response 1st I'm very glad that the matter was sorted out As posted above The "highlighted happened" this time You are welcomeYou were persistent in order to find the truth and you've got the result, That's laudable. Any help from volunteers would be practically impossible without user's right attitude, which eventually helps other users and the Software itself Cheers!
  25. Hello again , elbasha bisso No <>.GIf was attached, but anyway as in my reply and in the post by H_D - please be more specific about what software is flagging Flash Update and attach the report, please What are you trying to download from FileHippo? That is quite reliable site, but anyway Flash updates can be and rather be downloaded from Adobe site, which actually was posted initially {added} I can see the GIF now, when using "Quote" That's Malwarebytes that is flagging it. In addition you are using real-time of MBAM as far as I can see. Sure it does not matter which browser is in place Please post that as False Positive request to MBAM developers in order to resolve the matter My regards
  • Create New...