GT500

Emsisoft Employee
  • Content Count

    12182
  • Joined

  • Days Won

    359

Everything posted by GT500

  1. Please open Emsisoft Anti-Malware, go to Logs in the menu on the left, and on the Guard tab click on the Export button to save the Guard log to your desktop. If you want to look through the log for the lines that show the League of Legends in-game store being blocked, and then copy and paste it into a post, then that should be enough. You can also attach the entire log to a reply for me to review (use the More Reply Options button to access the attachment controls), but please keep in mind that I will need to know at least one date and time when this happened in order to help me find it in the logs.
  2. Would you be willing to try the DebugView instructions I posted above and send me the log if it fails to run the scheduled scan?
  3. I'm sorry about that, it's a link to the knowledgebase in our helpdesk system, and I didn't realize that it required you to be logged in to the helpdesk to read the article. I'll just copy and paste one that I had been working on for the forums: Here's how to exclude Online Armor in Emsisoft Anti-Malware: Open Emsisoft Anti-Malware from the icon on the desktop. Click Guard in the menu on the left. Go to the File Guard tab. In the lower-left corner, just above Alerts, click on the Manage whitelist link. In the box under Type click the little down arrow and change it from File to Process (you may need to click in the box for the arrow appear). Click in the white box below Item to make a button with three dots (...) appear, and then click the ... button. Navigate to the Online Armor directory (usually C:\Program Files\Online Armor), and double-click on a file to add it. Repeat the last 3 steps until each of the following files have been added to the list: oacat oahlp oasrv oaui Click the OK button at the bottom when done, and close Emsisoft Anti-Malware. Here's how to exclude Emsisoft Anti-Malware in Online Armor: Click on the Start button, go to All Programs, go to Online Armor, and click on the Online Armor icon to open it. Click on Options in the menu on the left. Go to the Exclusions tab. Click on the Add button. Use the little [+] and [-] icons to the left of folder names to open and close them, find the Emsisoft Anti-Malware directory (usually C:\Program Files\Emsisoft Anti-Malware), click on it to highlight it, and then click OK at the bottom. Close the Online Armor window.
  4. Closing. (send me or another member of our staff or moderation team a private message if you need it reopened) Also, just as a note, we no longer provide support for Online Armor 4.x, so if you ever have issues with it then I recommend upgrading to Online Armor 6.
  5. Lets get a log from RSIT just to get some more information. Please run RSIT by following the steps below: Download Random's System Information Tool (RSIT) from this link. It is important that is saved to your desktop (please do not click 'Run' when downloading). Double click on the icon on your desktop for RSIT to run it. Click Continue at the disclaimer screen. Once it has finished, two logs will open in separate Notepad windows. Please copy and paste the contents of both log.txt (<<-will be maximized) and info.txt (<<-will be minimized) into a reply. Note that you can also save the logs on your desktop and attach them to a reply.
  6. That's interesting. I don't think I've tried testing that. Let me know if it works.
  7. Emsiclean won't look for the installers (you don't want to delete your way of reinstalling), and an old installer isn't going to cause a problem. From the list you gave in your first post, it looks like you don't have a real-time anti-virus software or third-party firewall. Is this correct?
  8. Our developers were not able to see anything in the logs that indicated what might be causing the issue. Their recommendation is to add exclusions to Emsisoft Anti-Malware for Online Armor, and to Online Armor for Emsisoft Anti-Malware. Here is a link to a knowledgebase article with instructions. They also wanted to know if activating beta updates, and installing the latest beta versions resolved the issue.
  9. There are a few potential causes for this issue, so lets take a look at the other services and drivers on your computer, and see if there may be something conflicting with it. Please run RSIT by following the steps below: Download Random's System Information Tool (RSIT) by from this link. It is important that is saved to your desktop (please do not click 'Run' when downloading). Double click on the icon on your desktop for RSIT to run it. Click Continue at the disclaimer screen. Once it has finished, two logs will open in separate Notepad windows. Please copy and paste the contents of both log.txt (<<-will be maximized) and info.txt (<<-will be minimized) into a reply. Note that you can also save the logs on your desktop and attach them to a reply by using the More Reply Options button to the lower-right of where you type in your reply to access the attachment controls.
  10. I am not aware of any known issues with the TeaTimer component of Spybot Search and Destroy and Online Armor.
  11. It should be safe to run Emsiclean to remove the detected leftover (Emsisoft Anti-Malware Configuration), however the log shows that there are no service or driver components left over after the uninstall. You should be able to reinstall without any trouble.
  12. We'll probably need a log from Fiddler to be able to tell what is going on. Please download and install Fiddler 2 from this link (this is the version that requires the Microsoft .NET Framework 2.0), and then follow the instructions below: After installing Fiddler, please open it from the Start Menu. Launch Emsisoft Anti-Malware. Go to Configuration in the menu on the left. Select the Update Settings tab. Click on the Connection settings link in the lower-right corner. Check the box that says Use proxy server. Enter localhost in the Proxy server field, and then enter 8888 in the port field. Click 'OK'. Go back to the Menu on the left, and select Security Status. Click on the Update Now button to start the update (Fiddler must be running when you do this). After the update fails, go back to Fiddler, and to File, then Save, and select All Sessions (please save it on your desktop). Attach the file you saved from Fiddler to a reply for us to review by using the More Reply Options button to the lower-right of where you type in your reply.
  13. I was told that certain changes were implemented to avoid this issue. I will contact our developers and see if they need any more information from the effected systems.
  14. OK, I have forwarded your logs to our developers.
  15. We'll probably need some logs to see what the problem is. Please open Online Armor, go to Options in the menu on the left, click the little check box to enable debug mode, restart your computer, and then wait for your computer to finish starting up (if you don't experience your performance issues, then restart again). After that, please ZIP your entire logs folder (normally C:\Program Files\Online Armor\Logs), upload it to a website such as RapidShare/DepositFiles/BayFiles/etc (which one you use is up to you), and then copy and paste the link to download the file into a reply (or you can send it to me in a Private Message if you don't want the link posted publicly on the forums). Note that, if you don't have a utility such as 7-Zip, WinZip, or WinRar that you can ZIP files and folders by right-clicking on them, going to Send To, and clicking on Compressed (zipped) Folder.
  16. That looks like the installer for Microsoft .NET Framework version 4. We recommend that you put Online Armor in Learning mode when you install software from Microsoft (you can also do this with any software that you trust), and we also recommend putting Online Armor in Learning mode before you install Windows Updates. This will suppress any notifications that would normally be displayed during the install, and cause Online Armor to automatically trust the software that is being installed.
  17. Welcome back. It's good to hear that the update resolved the issue you were experiencing. Let us know if you have any further issues.
  18. That is quite true, however the method I listed works on every version of Windows from Windows 2000 to Windows 7 (although EAM obviously doesn't run on Windows 2000), which is why I always post those particular instructions. I have yet to try it on Windows 8 though, so I don't know if the same instructions work there as well.
  19. To add to what Christian Peters said, note that after right-clicking on the little Emsisoft Anti-Malware icon in the System Tray/Notification Area (in the lower-right corner of the screen, somewhere to the left of the clock) and selecting to shut down the guard, you can disable the Emsisoft Anti-Malware service by holding down the Windows key on your keyboard (normally in between the Ctrl and Alt keys, with the little Windows logo on it) and tapping the R key to open the Run dialog. Type services.msc into the field, and then click OK. This will open a list of services that are installed on your computer. Please scroll down until you find the Emsisoft Anti-Malware Service, right click on it, and select to stop it.
  20. You're quite welcome. Please let me know if you have any further issues.
  21. Have you tried simulating offline updates with the update proxy? You might be able to copy the cache from one computer to another, and then start the update proxy to let EAM update from it. I have not actually tried doing this, so I cannot guarantee that it will work.
  22. That's not showing any indication of a rootkit. What happens if you start your computer in Safe Mode With Networking (instructions at this link) and then try to run ComboFix?
  23. OK, lets try a check for rootkits. Please get me a log from TDSSKiller by following the instructions below: Download TDSSKiller from this link and save it on your desktop. Run the TDSSKiller download that you saved. Click on Change parameters as it shows in the following screenshot: Make sure that Verify digital signatures and Detect TDLFS file system are checked as in the following screenshot, and then click OK: Click the Start scan button as in the following screenshot: You will see the following as the scan runs: If there are any threats or malicious items detected, then make sure the option to the right of each item is set to Skip as in the following screenshot (it is very important that TDSSKiller not be allowed to Cure, Quarantine, or Delete these detections!), note that you can click on the selection action to open a list and change it if it is not set to Skip automatically, and then click Continue at the bottom when everything is set to Skip: Click on Report in the upper-right corner, as in the following screenshot: You will see a report similar to the one in the following screenshot. Please click in the report somewhere, then hold down the Ctrl key on your keyboard and tap the A key to select the entire report. Once everything is selected, then it should look similar to the following screenshot, and you will be able to hold down the Ctrl key on your keyboard and tap the C key to copy the entire report. Open Notepad by clicking on the Start button, going to All Programs (or just Programs in Windows 7 and Vista), then Accessories, and clicking on Notepad in the list. Once Notepad has opened, click on Edit to open the Edit menu, and then click Paste, as in the following screenshot: Once the report has been pasted into Notepad, click File to open the File menu, and then click Save as, as in the following screenshot. Please save the report on your desktop and attach it to a reply by using the More Reply Options button to the lower-right of where you type in your reply.
  24. If there is ever an issue download updates in Online Armor, a Fiddler log is your best place to start. Here are some instructions: Please download and install Fiddler 2 from this link (this is the version that requires the Microsoft .NET Framework 2.0), and then follow the instructions below: After installing Fiddler, please open it from the Start Menu. Launch Online Armor. Go to Options in the menu on the left. Click on the Internet Settings button. Check the box that says Use a proxy server. Enter localhost in the Address field, and then enter 8888 in the Port field. Click 'OK'. Go back to the Menu on the left, and select Status. Click on the Update now link to start the update (Fiddler must be running when you do this). After the update fails, go back to Fiddler, and to File, then Save, and select All Sessions (please save it on your desktop). Attach the file you saved from Fiddler to a reply for us to review by using the More Reply Options button to the lower-right of where you type in your reply.
  25. From what you have posted thus far, it sounds like you have never seen the warning from Online Armor when using Battery Monitor 1.1.17? If that is the case, then I recommend using that version rather than the one that is causing Online Armor to pop up notifications.