GT500

Emsisoft Employee
  • Content Count

    13152
  • Joined

  • Days Won

    402

Everything posted by GT500

  1. I'm not sure I understand what you mean. Your screenshots do not seem abnormal to me, other than the strange entries. That it probably a good idea, if for no other reason than to determine if these things are still on your computer. If they do reappear, then it means we can get Debug Logs for our developers. It also means that whatever caused it is still there. It either means that the issue was a fluke to begin with (perhaps some corruption when saving the data for the Programs list for some reason), or that the files that Online Armor was trying to list no longer exist. Gray means unknown. It just means you haven't blocked or trusted them.
  2. Does that performance issue get better if you set either Malwarebytes Anti-Malware or Emsisoft Anti-Malware to not run at startup, and then reboot?
  3. Please try the following, and let me know if that helps: Uninstall Emsisoft Anti-Malware. Restart your computer a couple of times. Right click on the Online Armor icon and enable Learning Mode. Download and reinstall Emsisoft Anti-Malware from this link. Once Emsisoft Anti-Malware is working, and you are able to open it normally, turn off Learning Mode in Online Armor.
  4. The log file is encrypted so that only our developer who is primarily responsible for maintaining Online Armor can read them. This is done to ensure that no one can read the logs if they get posted in a public section of the forums, just in case the logs contain any data you don't want other people to know.
  5. You're quite welcome. If you need me to reopen the thread, feel free to send me a private message.
  6. It looks like the file path information is either corrupt, or not in the correct character encoding. I'll ask one of our developers what he thinks about this.
  7. From the information I can find, this registry entry is related to a Windows System File. If you can select for Online Armor to remember your decision, then I suggest to select that and then allow the registry entry.
  8. We'll probably need some logs to see what the problem is. Please open Online Armor, go to Options in the menu on the left, click the little check box to enable debug mode, restart your computer, and then try reproducing your problem with high CPU usage (or at least wait for it to happen). After that, please ZIP your entire logs folder (normally C:\Program Files\Online Armor\Logs), upload it to a website such as RapidShare/DepositFiles/BayFiles/etc (which one you use is up to you), and then copy and paste the link to download the file into a reply (or you can send it to me in a Private Message if you don't want the link posted publicly on the forums). Note that, if you don't have a utility such as 7-Zip, WinZip, or WinRar that you can ZIP files and folders by right-clicking on them, going to Send To, and clicking on Compressed (zipped) Folder. Note that RapidShare and BayFiles have been having issues lately, and we may not be able to download the files from them. If you have DropBox, Google Cloud Storage, or Microsoft SkyDrive then those services would be more reliable. Also, you can attach files to private messages on these forums, and I would believe the limit is up to 128MB, so if the file is smaller than 128MB then you can just attach it to a private message to me on these forums.
  9. We'll probably need some logs to see what the problem is. Please open Online Armor, go to Options in the menu on the left, click the little check box to enable debug mode, restart your computer, and then try reproducing your problems with Online Armor. After that, please ZIP your entire logs folder (normally C:\Program Files\Online Armor\Logs), upload it to a website such as RapidShare/DepositFiles/BayFiles/etc (which one you use is up to you), and then copy and paste the link to download the file into a reply (or you can send it to me in a Private Message if you don't want the link posted publicly on the forums). Note that, if you don't have a utility such as 7-Zip, WinZip, or WinRar that you can ZIP files and folders by right-clicking on them, going to Send To, and clicking on Compressed (zipped) Folder. Note that RapidShare and BayFiles have been having issues lately, and we may not be able to download the files from them. If you have DropBox, Google Cloud Storage, or Microsoft SkyDrive then those services would be more reliable. Also, you can attach files to private messages on these forums, and I would believe the limit is up to 128MB, so if the file is smaller than 128MB then you can just attach it to a private message to me on these forums.
  10. We do not actually need the Remote Desktop functions of termservice. It performs other functions that Online Armor needs. You can keep the Remote Desktop port blocked in the firewall, and please also note that remote control of your computer only works if configured. You can find more information from Microsoft about how the remote access features function at this link. We'll probably need some logs to see what the problem is. Please open Online Armor, go to Options in the menu on the left, click the little check box to enable debug mode, restart your computer, and then try reproducing your problem with not being able to start the Web Shield. After that, please ZIP your entire logs folder (normally C:\Program Files\Online Armor\Logs), upload it to a website such as RapidShare/DepositFiles/BayFiles/etc (which one you use is up to you), and then copy and paste the link to download the file into a reply (or you can send it to me in a Private Message if you don't want the link posted publicly on the forums). Note that, if you don't have a utility such as 7-Zip, WinZip, or WinRar that you can ZIP files and folders by right-clicking on them, going to Send To, and clicking on Compressed (zipped) Folder. Note that RapidShare and BayFiles have been having issues lately, and we may not be able to download the files from them. If you have DropBox, Google Cloud Storage, or Microsoft SkyDrive then those services would be more reliable. Also, you can attach files to private messages on these forums, and I would believe the limit is up to 128MB, so if the file is smaller than 128MB then you can just attach it to a private message to me on these forums.
  11. I agree with stapp. Best to let one of our experts take a look at the logs, even if there is no real infection.
  12. Aeolis, our developers are looking into this, and I've talked with Samuel Lindsey (Product Manager at Malwarebytes) and Ron Lewis (Forum Community Manager at Malwarebytes) about this and I will make sure that they have anything they need in order to test this. Could you let me know if you had Beta Updates enabled in Emsisoft Anti-Malware? Also, you mentioned having COMODO Firewall and Zemana AntiLogger installed. Did you try disabling either of those from starting up to see if your performance issue after adding exclusions were resolved (or at least any better)?
  13. Online Armor still monitors a program when it is trusted, but exclusions causes Online Armor to ignore the program.
  14. Unfortunately, Windows isn't designed that way. At least not when you have to use drivers to perform functions. If you do want to try deleting the registry keys, then I recommend first creating a new System Restore Point, and then creating a UBCD4Win disk just in case you need to restore the registry. You will need a Windows XP or Windows 2003 disk in order to build a UBCD4Win disk.
  15. I recommend adding your Tubedigger program to the exclusions in Online Armor. Here are some instructions for adding a folder to the Exclusions list in Online Armor: Click on the Start button, go to All Programs, go to Online Armor, and click on the Online Armor icon to open it. Click on Options in the menu on the left. Go to the Exclusions tab. Click on the Add button. Use the little [+] and [-] icons to the left of folder names to open and close them, find the folder you want to add, click on it to highlight it, and then click OK at the bottom. Close the Online Armor window.
  16. Are you referring to the list of active connections, or the graph labeled 'Connections'? Programs can still open sockets and listen to ports even without an active network connection, so this could be what Online Armor is showing. Something like TCPView from Microsoft can help you find out more about the connections that each program has open. Also, Online Armor always shows your IP address in the window title.
  17. That's OK. I'm glad to hear that you were able to resolve the issue.
  18. Here's instructions for adding a process exclusion in Emsisoft Anti-Malware: Open Emsisoft Anti-Malware from the icon on the desktop. Click Guard in the menu on the left. Go to the File Guard tab. In the lower-left corner, just above Alerts, click on the Manage whitelist link. In the box under Type click the little down arrow and change it from File to Process (you may need to click in the box for the arrow appear). Click in the white box below Item to make a button with three dots (...) appear, and then click the ... button. Navigate to the directory where the files you wish to exclude are located, and double-click on one of them to add it. Repeat the last 3 steps as needed to add each file to the exclusions list. Click the OK button at the bottom when done, and close Emsisoft Anti-Malware. You may need to contact Symantec support to ask how to add exclusions to Norton Internet Security 2014, and what files will need excluded in Emsisoft Anti-Malware. Please note that only executable files (EXE) can be added as process exclusions to Emsisoft Anti-Malware. Here are the files from Emsisoft Anti-Malware that should be excluded in Norton, if Norton can't exclude the entire Emsisoft Anti-Malware folder (these files are typically in C:\Program Files\Emsisoft Anti-Malware): a2guard a2service a2start
  19. If you always answer the Behavior Blocker prompts correctly, you don't disable Windows services (such as the Terminal Services/Remote Desktop service), and you're fairly safe online then you should be OK without running a Deep Scan frequently.
  20. Lets add process exclusions for Malwarebytes Anti-Malware: Open Emsisoft Anti-Malware from the icon on the desktop. Click Guard in the menu on the left. Go to the File Guard tab. In the lower-left corner, just above Alerts, click on the Manage whitelist link. In the box under Type click the little down arrow and change it from File to Process (you may need to click in the box for the arrow appear). Click in the white box below Item to make a button with three dots (...) appear, and then click the ... button. Navigate to the directory where the files you wish to exclude are located, and double-click on one of them to add it. Repeat the last 3 steps as needed to add each file to the exclusions list. Click the OK button at the bottom when done, and close Emsisoft Anti-Malware. The Malwarebytes Anti-Malware folder should be C:\Program Files (x86)\Malwarebytes Anti-Malware, and these are the files you should add as process exclusions: mbam.exe mbamgui.exe mbamservice.exe After that, open Malwarebytes Anti-Malware and do the following: Click on the Ignore List tab. Click the Add button in the lower-left. Using the little [+] and [-] buttons to open and close folders, go to C:\Program Files (x86) and click on the Emsisoft Anti-Malware folder, then click OK. After that you can set Malwarebytes Anti-Malware to run on startup again, and then restart your computer.
  21. Do you have any other security software installed? Anti-virus? Firewall? Anti-Spyware? Anti-Malware?
  22. Lets add process exclusions for Malwarebytes Anti-Malware: Open Emsisoft Anti-Malware from the icon on the desktop. Click Guard in the menu on the left. Go to the File Guard tab. In the lower-left corner, just above Alerts, click on the Manage whitelist link. In the box under Type click the little down arrow and change it from File to Process (you may need to click in the box for the arrow appear). Click in the white box below Item to make a button with three dots (...) appear, and then click the ... button. Navigate to the directory where the files you wish to exclude are located, and double-click on one of them to add it. Repeat the last 3 steps as needed to add each file to the exclusions list. Click the OK button at the bottom when done, and close Emsisoft Anti-Malware. The Malwarebytes Anti-Malware folder should be C:\Program Files (x86)\Malwarebytes Anti-Malware, and these are the files you should add as process exclusions: mbam.exe mbamgui.exe mbamservice.exe After that, open Malwarebytes Anti-Malware and do the following: Click on the Ignore List tab. Click the Add button in the lower-left. Using the little [+] and [-] buttons to open and close folders, go to C:\Program Files (x86) and click on the Emsisoft Anti-Malware folder, then click OK. After that you can set Malwarebytes Anti-Malware to run on startup again, and then restart your computer.
  23. These changes are to the scanner, and allow it to scan for and detect malicious extensions in Firefox and Google Chrome.