GT500

Emsisoft Employee
  • Content Count

    11432
  • Joined

  • Days Won

    330

Everything posted by GT500

  1. Would you be willing to reinstall Online Armor and gather some debug logs for us, so that Andrey can see what is happening?
  2. We'll probably need a DebugView log to see what is going on. Before we can get that, we'll need to set a registry entry that will tell Emsisoft Anti-Malware to output debug information that DebugView can see and save in its log. The following file eam_enable_debug_output.zip contains a batch file which, when run with administrative rights, will automatically create that registry entry for you. Please download this file, extract the batch file from it (it will also be named eam_enable_debug_output), and run the batch file (if your computer is running Windows Vista or Windows 7 then please make sure to right-click on the batch file and select to Run as administrator): After that, please restart your computer, and then proceed with the instructions below: Download DebugView from this link: When downloading, make sure to save it on your Desktop instead of clicking 'Run' or 'Open'. Right-click on the 'DebugView' file that you just saved on your Desktop, and select "Extract All". Open the new DebugView folder that was created on your Desktop after extracting. Windows XP and 2000 users should double-click on the file named 'Dbgview'. Windows 7 and Vista users should right-click and select "Run as Administrator". Click on the 'Capture' menu, and select everything except "Log Boot" (you will have to open the menu again after clicking to select an item). Do whatever it is you need to in order to replicate the issue (run the same scan until it freezes at 80%). After you have replicated the issue you can switch back to DebugView and click 'File' and "Save As" in order to save the log to a file on your Desktop. Please attach that log file to a reply so that we may analyze it for errors. You will need to use the More Reply Options button to the lower-right of where you type in your reply in order to access the attachment controls. Note: You may need to ZIP the log file in order to attach it. If you do not have a program such as 7-Zip, WinZip, WinRar, etc. then you can right-click on the log file, go to Sent to, and click on Compressed (zipped) folder. You will be able to attach the ZIP archive to a reply.
  3. Unfortunately, we do not currently have an offline update utility. I would believe that Microsoft is currently the only company making such a utility for their anti-virus software.
  4. I'm not certain I understand what you mean by "Multi Scan". Are you referring to running more than one scan at the same time?
  5. The Online Armor Helper Driver is required for Online Armor to run. It is needed on Windows XP as well as Windows 7. Do you have Online Armor 5.5.0.1616 installed in both Windows XP and Windows 7?
  6. Unfortunately, the logs you attached to your post were normal firewall logs, and not debug logs. The debug logs are encrypted to prevent anyone except Andrey (our Online Armor developer) from reading them. Here's an updated set of instructions, assuming you are using the latest version of Online Armor (which is 5.5.0.1616 if you have downloaded the latest updates): Please open Online Armor, go to Options in the menu on the left, click the little check box to enable debug mode, restart your computer, and then try reproducing your problem. After that, please ZIP your entire logs folder (normally C:\Program Files\Online Armor\Logs), upload it to a website such as RapidShare/DepositFiles/BayFiles/etc (which one you use is up to you), and then copy and paste the link to download the file into a reply (or you can send it to me in a Private Message if you don't want the link posted publicly on the forums). Note that, if you don't have a utility such as 7-Zip, WinZip, or WinRar that you can ZIP files and folders by right-clicking on them, going to Send To, and clicking on Compressed (zipped) Folder.
  7. The bug will be fixed in the command-line scanner in Emsisoft Anti-Malware version 7. We do not currently have an ETA on when the new EAM 7 technology and bug fixes will be incorporated into the Emsisoft Emergency Kit.
  8. I have responded to your private message.
  9. I have submitted a bug report for this.
  10. This is actually working as intended, however I have created a feature request for our developers which may allow for the functionality that you are expecting. There are, of course, no guarantees that my feature request will be implemented.
  11. Are you able to reproduce the error? Could you let us know what you were doing when you saw this error?
  12. Here's a ZIP archive containing a batch file that will delete the registry entry:
  13. I split your post into a new topic because it didn't seem to be the same issue (or issues) that had been reported in the topic you had posted it in. This should help to avoid confusion. May I ask what happens when you click on the Update now button on the Security Status screen?
  14. Firstly, and more as an FYI than anything else, please note that you can ignore any advise given by MousePad. If you require any explanation about this, then please send me a private message. As for your issue, would you be willing to reinstall Emsisoft Anti-Malware 7 in order to assist us in gathering information to send to our developers?
  15. Lets take a look. Services.exe is indeed a part of Windows, however I would believe that the opening poster already knows this. Services.exe is the "Service Control Manager", which is a very important part of Windows. I would believe there are times that it will attempt to access the Internet, however it should still function properly even if Internet access is cut off. If services.exe is blocked from running, however, your computer will not continue to function. dllhost.exe is used to execute functions in certain DLL files, however not all DLL files that need to be executed via a separate program are executed by dllhost.exe (there's a lot more to dllhost.exe than just executing DLL files). Any system file can be replaced by an infection, or have malicious code injected into it. Modern rootkits don't actually need to resort to these methods, however, as they use even more advanced methods to perform their functions. Normally we do not recommend completely blocking any of these Microsoft programs from accessing the Internet, unless you want your computer to be completely isolated from all external networks (including your own home network). Blocking these programs from running will cause your computer to no longer function.
  16. svchost.exe is used for a lot of services. If you block it, you will block a lot more than just your browser's Internet access. For more information, Wikipedia has a fairly good article (although I do recommend checking Wikipedia's references to see where they are getting the information).
  17. Please uncheck the option to enable automatic updates, restart your computer, and then reenable it.
  18. In addition to those logs, our developers feel that it is possible that one or more of the services that Online Armor relies on may have been disabled, so we would like to see a log showing the status of each of those services. Please download the following file: This file is a ZIP archive that contains a batch file which will check the services and save the information to a text file that you can attach to a reply. Please extract this batch file from the ZIP archive and run it (if you are using Windows Vista or Windows 7 please right-click on it and select to Run as administrator). It will pop up a black window while it gathers the information (this process can take a few minutes), and when it is done the black window will disappear. Once it is done, you should find a text file named oa_service_status_log saved in the root of your C: drive (or whatever drive you have Windows installed on). Please use the More Reply Options button to the lower-right of where you type in your reply to access the attachment controls, and then attach that oa_service_status_log file to a reply for us to review.
  19. We'll probably need some logs to see what the problem is. Please open Online Armor, go to Options in the menu on the left, click the little check box to enable debug mode, restart your computer, and then verify that no active interfaces are found by Online Armor. After that, please ZIP your entire logs folder (normally C:\Program Files\Online Armor\Logs), upload it to a website such as RapidShare/DepositFiles/BayFiles/etc (which one you use is up to you), and then copy and paste the link to download the file into a reply (or you can send it to me in a Private Message if you don't want the link posted publicly on the forums). Note that, if you don't have a utility such as 7-Zip, WinZip, or WinRar that you can ZIP files and folders by right-clicking on them, going to Send To, and clicking on Compressed (zipped) Folder.
  20. It doesn't look like the scheduled updates are running (I don't see any "Automatic update" entries in the log). Please open Emsisoft Anti-Malware, go to Configuration in the menu on the left, go to the Automatic Updates tab, and make sure that Automatic Updates are enabled and that they are set to run at a specific interval, such as in the screenshot below (click to make it larger if you can't read it):
  21. I just checked my test setups, and none of them are having this issue. Could I see a copy of your update logs? You can save them as a text file by opening Emsisoft Anti-Malware, going to Logs in the menu on the left, going to the Update tab, and clicking the Export button. Please save a copy of the update logs on your desktop, and then attach it to a reply by using the More Reply Options button to the lower-right of where you type in your reply to access the attachment controls.
  22. Currently there are no publicly available builds of Online Armor that support Windows 8, and we do not have an ETA on Windows 8 support.
  23. First, please allow me to apologize for taking so long to reply. I spent a few days away from the forums last week, which is why I haven't answered you in so long. I don't see that anyone has asked for logs, so lets do that so that Andrey can look at them, and hopefully gather some information on what might be causing the issue. Please open Online Armor, go to Options in the menu on the left, click the little check box to enable debug mode, restart your computer, and then try reproducing your problem with Firefox and Online Armor. After that, please ZIP your entire logs folder (normally C:\Program Files\Online Armor\Logs), upload it to a website such as RapidShare/DepositFiles/BayFiles/etc (which one you use is up to you), and then copy and paste the link to download the file into a reply (or you can send it to me in a Private Message if you don't want the link posted publicly on the forums). Note that, if you don't have a utility such as 7-Zip, WinZip, or WinRar that you can ZIP files and folders by right-clicking on them, going to Send To, and clicking on Compressed (zipped) Folder.
  24. I would believe that an uninstall of EAM 7, a reboot of the computer, and then an install of EAM 6 would be all that you need to downgrade. Would it be possible for you to post the log from the scan? If EAM 7 deleted something that caused problems, then our research team should probably be informed about it.
  25. I will try testing this in a virtual machine as soon as possible. I assume that you have Service Pack 1 for Windows 7 installed?