Emsisoft Employee
  • Content Count

  • Joined

  • Days Won


Everything posted by GT500

  1. I have sent the link to the logs to our developers so that they can take a look at them.
  2. I'll send a message to our management and see if they want to comment on this.
  3. That log is showing Emsisoft Emergency Kit files. I'll have to check with Fabian to see if it is supposed to detect the EEK.
  4. I'm sorry, I though that's what I was explaining. The answer is 'yes'.
  5. Settings are supposed to be created automatically in Standard Mode, and in Advanced Mode you need to create them manually. If you switch back to Standard Mode, does it still have issues?
  6. Follow these instructions to post the log: Run the Emsiclean download that you saved on your desktop. Read the disclaimer. Note that you must agree to it in order to proceed. Once the scan is finished, simply exit Emsiclean, and do not remove anything. A new file will be saved on your desktop with a log of what was detected. Please attach that to a reply by using the More Reply Options button to the lower-right of where you type in your reply.
  7. You're right, we haven't added that feature to the Emergency Kit Scanner yet. I hadn't realized that at the time. Since we don't have the simultaneous downloads setting, we'll have to get Fiddler logs to see what is going on. Please download and install Fiddler 2 from this link (this is the version that requires the Microsoft .NET Framework 2.0), and then follow the instructions below: After installing Fiddler, please open it from the Start Menu. Launch the Emsisoft Emergency Kit via the EmergencyKitScanner batch file. Go to Configuration in the menu on the left. Select the Update tab. Click on the Connection settings link in the lower-right corner. Check the box that says Use proxy server. Enter localhost in the Proxy server field, and then enter 8888 in the port field. Click 'OK'. Go back to the Menu on the left, and select Security Status. Click on the Update Now button to start the update (Fiddler must be running when you do this). After receiving the error message, go back to Fiddler, and to File, then Save, and select All Sessions (please save it on your desktop). ZIP the Fiddler log and send it to me in a Private Message. Note that, if you don't have a utility such as 7-Zip, WinZip, or WinRar that you can ZIP files and folders by right-clicking on them, going to "Send To", and clicking on "Compressed (zipped) Folder".
  8. Do you have Online Armor running in Advanced Mode or in Standard Mode?
  9. You're quite welcome. Please let me know if you have any further issues.
  10. This is a known bug on 64-bit editions of Windows, and it should be fixed in the latest beta version. We can delete the files using OTL if you want to post a copy of the scan log for me. Here are instructions on how to do that: Open Emsisoft Anti-Malware. Click on Logs in the menu on the left. Go to the Scan tab (it may take a minute for the list of scan logs to load). Select the scan log from the list. Click on the View details button to open the log. Click on File and then Save As to save it on your desktop. Attach the scan log you saved on your desktop to a reply by using the More Reply Options button to the lower-right of where you type in your reply to access the attachment controls.
  11. We'll probably need a DebugView log to see what is going on. Before we can get that, we'll need to set a registry entry that will tell Emsisoft Anti-Malware to output debug information that DebugView can see and save in its log. The following file contains two batch files. One of the will enable debug mode, and the other will disable it. Please download this file, extract the batch files from it, and run the batch file named eam_enable_debug_output (if your computer is running Windows Vista or Windows 7 then please make sure to right-click on the batch file and select to Run as administrator): After that, please restart your computer, and then proceed with the instructions below: Download DebugView from this link: When downloading, make sure to save it on your Desktop instead of clicking 'Run' or 'Open'. Right-click on the 'DebugView' file that you just saved on your Desktop, and select "Extract All". Before running DebugView, you will need to add a process exclusion to Emsisoft Anti-Malware to prevent crashing issues. Here are the instructions: Please go ahead and open Emsisoft Anti-Malware from the icon on the desktop. click on Guard in the menu on the left. Go to the File Guard tab. Click on the Manage whitelist link on the left, just above 'Alerts'. On the left, under where it says Type, click on where it says File and change it to Process. Click in the white space to the right of where you just changed 'File' to 'Process', under where it says Item, and a little button with three dots on it will appear to the right. Click on the button with the three dots. Navigate to the folder where DebugView is saved (this should be on your desktop), select the Dbgview file, and click the Open button in the lower-right. Click OK at the bottom to save the settings, and then close Emsisoft Anti-Malware. Open the new DebugView folder that was created on your Desktop after extracting. Windows XP and 2000 users should double-click on the file named 'Dbgview'. Windows 7 and Vista users should right-click and select "Run as Administrator". Click on the 'Capture' menu, and select everything except "Log Boot" (you will have to open the menu again after clicking to select an item). Do whatever it is you need to in order to replicate the issue. After you have replicated the issue you can switch back to DebugView and click 'File' and "Save As" in order to save the log to a file on your Desktop. Please attach that log file to a reply so that we may analyze it for errors. You will need to use the More Reply Options button to the lower-right of where you type in your reply in order to access the attachment controls. Note: You may need to ZIP the log file in order to attach it. If you do not have a program such as 7-Zip, WinZip, WinRar, etc. then you can right-click on the log file, go to Send to, and click on Compressed (zipped) folder. You will be able to attach the ZIP archive to a reply. After that, you can run the eam_disable_debug_output batch file to disable debug mode. Note that your computer will need to be restarted after running the batch file.
  12. You're quite welcome. Since everything seems OK, I am going to go ahead and close this topic. Note: The instructions in this forum topic have been customized based on the logs posted by the person asking for assistance. Please do not attempt to follow any of the instructions in this forum topic, as they could cause damage to your computer. If you require assistance, please start here if you believe your computer is infected, and one of our experts will be happy to assist you by analyzing your logs.
  13. If you open the Emergency Kit Scanner, then go to Configuration in the menu on the left, and then go to the Update Settings tab you should be able to lower the number of Maximum simultaneous update connections. Let me know if lowing that to 1 resolves the issue.
  14. You can add Eclipse's folder to Online Armor's exclusions list, and Online Armor will ignore everything in that folder. Here are some instructions for adding a folder to the Exclusions list in Online Armor: Click on the Start button, go to All Programs, go to Online Armor, and click on the Online Armor icon to open it. Click on Options in the menu on the left. Go to the Exclusions tab. Click on the Add button. Use the little [+] and [-] icons to the left of folder names to open and close them, find the folder you want to add, click on it to highlight it, and then click OK at the bottom. Close the Online Armor window.
  15. I would suggest reviewing the information at this link. There is a menu on the left side of the page at that link which act as a navigation menu.
  16. Have you changed any settings in Emsisoft Anti-Malware, such as enabling Paranoid Mode?
  17. You're quite welcome. BTW: Did you know that Internet Explorer is set to use a proxy on your computer? Technically, the settings to use the proxy isn't turned on, but it does have a proxy server address entered in the Internet Connection settings.
  18. Andrey hasn't informed me of any progress, however please note that new builds of Online Armor can take some time.
  19. If you buy a license that covers more than one computer, and it comes with only one license key (that is a single license key that works on multiple computers), then each license associated with that license key starts on the date that the license key is activated on the first computer. If you purchase licenses separately, and you have a different license key for each PC, then you will not experience this issue. Also, if you want, we can split a license key for multiple computer into more than one license key so that you do not have to use them all at the same time.
  20. Advanced Mode is designed to block anything that you do not explicitly create a rule for.
  21. Try this: Open Emsisoft Anti-Malware from the icon on the desktop. Click Guard in the menu on the left. Go to the File Guard tab. In the lower-left corner, just above Alerts, click on the Manage whitelist link. In the box under Type click the little down arrow and change it from File to Process (you may need to click in the box for the arrow appear). Click in the white box below Item to make a button with three dots (...) appear, and then click the ... button. Navigate to the directory where the file you wish to exclude is located, and double-click on it to add it. Here is the file you will want to add: C:\Program Files\Modern\ChessBase - Fritz13\ChessProgram12\ChessProgram13.exe Click the OK button at the bottom when done, and close Emsisoft Anti-Malware.
  22. Those error messages only happen when your VPN is running? What VPN are you using?
  23. EAM 8 hasn't changed enough for Emsiclean to need updated. Actually, one of our developers let me know that there was a new driver that was not being removed, and they just updated Emsiclean to remove it.
  24. I've forwarded the link to your logs to our developers so that they can take a look at them.
  25. I'm not seeing that "server.log" file in the OTL log, but that doesn't mean it isn't there. Lets try using OTL to delete it, and see what happens. I have written a cleanup script for OTL (if you need to, you may download OTL from this link). Please download the following OTL_Script file, and save it on your desktop. After saving it, open it, run OTL, and copy and paste the contents of the OTL_Script file into the Custom Scans/Fixes box at the bottom of the OTL window: Then click the Run Fix button at the top. Let the program run unhindered, restart your computer when it is done (it may automatically restart your computer on its own). After your computer has restarted, please open OTL again and click the Quick Scan button. Attach the log it produces in your next reply (just the OTL log, as I don't need to see the Extras log again). You will need to click the button that says More Reply Options to the lower-right of where you type your reply to be presented with the attachment controls.