Jump to content


  • Posts

  • Joined

  • Days Won


Everything posted by GT500

  1. You shouldn't be able to delete the logs folder. Online Armor protects everything in its folder from modification or deletion. The steps you mentioned are for firewall logs. Debug logging is enabled by turning Debug Mode on, which you can do from the 'General' tab in Online Armor's options. The name of the option is Enable debug mode.
  2. I think this is that issue where there are repeated notifications for the same remote IP and remote port because the local port is different. There should be a button on the right side of the notification to see additional details, and when you click that you can see the local ports are different each time.
  3. They were firewall logs as well. Have you checked to see if Debug Mode is still on? It shouldn't get switched off automatically, but if the file that tells it to run in Debug Mode gets deleted or can't be saved for some reason, then Debug Mode won't be enabled when you restart your computer.
  4. It is possible that it didn't meet our classification for PUP, or perhaps our malware analysts just haven't seen it yet. There are a lot of programs out there that can be classified as PUP, so it can take some time to get them all added to the database.
  5. We don't recommend disabling Windows/Microsoft services. It's always best to leave them at their default start types. Emsisoft Internet Security does not require Windows Firewall or Windows Defender, but both of those should be turned off by Windows when Emsisoft Internet Security is registered with the Security Center.
  6. Skype makes a lot of P2P connections, so it makes sense that you would be bombarded with constant notifications from EIS related to Skype.
  7. Well, the detection from Malwarebytes Anti-Malware is a PUP (Potentially Unwanted Program), so that would be something like a browser toolbar or whatever. You can ignore that during the installation and remove it later if you want. The game should still work after the PUP component is removed. Alternatively, since Shockwave Games appears to be installing PUPs, you may want to try another source for free games that doesn't do that. I know that Steam has a number of free games that you can download and install. Here's a direct link to their Free to Play section. Just note that you do have to install the Steam software and sign up for an account with Steam in order to install games from Steam.
  8. Currently it isn't possible to switch between engines. Even if you could enable or disable the engines, the engine would still be loaded into memory, so it isn't really worth doing it (it would just reduce protection). I've asked a developer to take a look at your topic for the other questions.
  9. The issue with the file being redownloaded should be fixed soon.
  10. The addition debug info is for the firewall logs. Did you restart your computer after enabling Debug Mode? It doesn't take effect until after a reboot.
  11. If it is running on startup, then the loadpoint would need to be deleted. A program such as FRST can do that. Please download Farbar Recovery Scan Tool (FRST) from one of the following links, and save it to your Desktop (please note that some web browsers will automatically save all downloads in your 'Downloads' folder, so in those cases please move the download to your desktop): For 32-bit (x86) editions of Windows: http://download.bleepingcomputer.com/farbar/FRST.exe For 64-bit (x64) editions of Windows: http://download.bleepingcomputer.com/farbar/FRST64.exe Note: You need to run the version compatible with your computer. If you are not sure which version applies to your computer, then download both of them and try to run them. Only one of them will run on your computer, and that will be the right version. 1. Run the FRST download that works on your computer (for Windows Vista, Windows 7, and Windows 8 please right-click on the file and select "Run as administrator"). 2. When the tool opens click "Yes" for the disclaimer in order to continue using FRST. 2. Press the 'Scan' button. 3. When the scan is done, it will save a log as a Text Document named 'FRST' in the same place the tool was run from (if you had saved FRST on your desktop, then the FRST log will be saved there). 4. Please attach the FRST log file to a reply (it is best if you do not copy and paste it into an e-mail). 5. The first time the FRST tool is run it saves another log (a Text Document named 'Addition' - also located in the same place as the FRST tool was run from). Please also attach that log file along with the FRST log file to your reply. If you are not used to attaching files to e-mails, then just look for a button in the toolbar above where you write your message that has a paperclip icon, and that should be the attachment button.
  12. Our developers said that the logs were firewall logs, and not debug logs. They were also wondering if you regularly use a keyboard shortcut such as Ctrl+Alt+L?
  13. If you just need to download YouTube videos, then I recommend using one of the numerous browser extensions for that. Some of them even support a large variety of video and audio streaming services.
  14. The alert from Emsisoft Anti-Malware about "Program is attempting to manipulate other processes" just means that the program in question is trying to read or write to the memory of another program running on your computer. There are many legitimate uses for that type of technology, and the reason you are seeing the notification is because the program in question is not signed with a trusted digital certificate. As for the notification from Malwarebytes Anti-Malware, I can't see the entire application name, so I don't have enough information to go on to look up the program that was detected. That being said, you may have to ask Malwarebytes about why it was detected. I'm not familiar with Shockwave Games, however I don't see any indication at my usual sources that it is not a trustworthy website.
  15. We do have a removal utility called Emsiclean, however it isn't really intended to be used without first contacting support, and you need to run the normal uninstaller before using it. It can be downloaded from this link.
  16. There are some known performance related issues with Online Armor right now, and this does sound similar to some of the ones that have been reported. What happens when you uninstall Online Armor, restart your computer twice, and then download and reinstall Online Armor from this link.
  17. Running through the tracker quickly, this appears to be a known issue when Beta Updates is enabled. Hopefully it will be fixed soon.
  18. Lets get some debug logs from Emsisoft Internet Security. In order to do this, you will first need to run a batch file to enable debug logging. This batch file is contained in the ZIP archive at the this link (this ZIP archive also contains a batch file to disable debug logging). Please save that ZIP archive on your desktop, extract its contents, and then follow these instructions: Run the enable_debug_output batch file (if your computer has Windows Vista, Windows 7, or Windows 8 then please right-click on the batch file and select Run as administrator). You will see a black window pop up, and then disappear very quickly. After that happens, please restart your computer. Try activating the firewall in Emsisoft Internet Security. After Emsisoft Internet Security crashes, hold down the Windows key on the keyboard (the one with the Windows logo on it, usually in between the Ctrl and Alt keys) and tap the R key to open the Run dialog. Type the following into the Run dialog, and then click OK: %ALLUSERSPROFILE%\Emsisoft A window should open and you should see a Logs folder. Right-click on that Logs folder, go to Send to, and select Compressed (zipped) folder. Move the new ZIP archive you created with the logs folder in it to your desktop. Attach the ZIP archive containing the logs to a reply by using the More Reply Options button to the lower-right of where you type in your reply. Note: If you get an error message when trying to send the Logs folder to a Compressed (zipped) folder then you may need to try a utility such as 7-Zip or WinRar to compress the folder. Both 7-Zip and WinRar have options to create an archive and save it in another location (such as on your desktop), which should prevent the error message. Here are links to the download pages for 7-Zip and WinRar. After posting the debug logs, you can run the disable_debug_output batch file (be sure to run it as administrator as well) and restart your computer again to disable debug logging.
  19. OK, I've forwarded your log to one of our developers.
  20. Lets try running AdwCleaner and Junkware Removal Tool to see if there were any parts that we missed, because the Emsisoft Emergency Kit Scanner should have detected and removed the entire YTD Video Downloader program. Please download AdwCleaner and save it on your desktop. Close all open programs and internet browsers (you may want to print our or write down these instructions first). Double click on adwcleaner.exe to run the tool. Click on "Scan". When the scan is done, click on the 'Clean' button to remove what was found. After the cleaning process is done, you will be prompted to restart your computer. A text file will open n Notepad after the restart (this is the log of what was removed), which you can save on your desktop. Please attach that log file to a reply by clicking the More Reply Options button to the lower-right of where you type in your reply. If you lose that log file for any reason, you can find it at C:\AdwCleaner[s1] on your computer. Please download Junkware Removal Tool and save it on your desktop. Shut down your anti-virus, anti-spyware, and firewall software now to avoid potential conflicts. Run the tool by double-clicking it. If you are using Windows Vista or Windows 7, right-click it and select Run as administrator. The tool will open and start scanning your system. Please be patient as this can take a while to complete depending on your system's specifications. On completion, a log is saved to your desktop and will automatically open. Please attach the JRT log file to a reply by clicking the More Reply Options button to the lower-right of where you type in your reply.
  21. There are parts of YTD Video Downloader that are not being deleted? I'll let one of our malware analysts know, so that they can take a look at this.
  22. The Scheduled Scan should do a Deep Scan by default, but you can create a custom scan set to define exactly what options you want it to use. Here's how to do that: Please open Emsisoft Anti-Malware. Go to "Scan PC" on the left. Select "Custom Scan" and click the "Scan" button. Under "Scan Objects" make sure that everything is selected. Under "Scan Settings", make sure that only the following options are selected: Detect Potentially Unwanted Programs (PUPs) Scan in compressed archives (zip, rar, cab) Scan in NTFS Alternate Data Streams. Click the "Save settings" button. Name it something like "Deep Scan" so that it will be easy to find later, and save it. Go to the menu on the left, and select 'Configuration'. Go to the "Scheduled Scans" tab. In the lower-right corner there is a blue button with three dots on it (...), click on that button, select the Quick Scan settings that you just saved, and click 'Open'.
  23. We'll probably need some logs to see what the problem is. Please open Online Armor, go to Options in the menu on the left, click the little check box to enable debug mode, restart your computer, and then try reproducing your problem. After that, please ZIP your entire logs folder (normally C:\Program Files\Online Armor\Logs), upload it to a website such as RapidShare/DepositFiles/BayFiles/etc (which one you use is up to you), and then copy and paste the link to download the file into a reply (or you can send it to me in a Private Message if you don't want the link posted publicly on the forums). Note that, if you don't have a utility such as 7-Zip, WinZip, or WinRar that you can ZIP files and folders by right-clicking on them, going to Send To, and clicking on Compressed (zipped) Folder. Note that RapidShare and BayFiles have been having issues lately, and we may not be able to download the files from them. If you have DropBox, Google Cloud Storage, or Microsoft SkyDrive then those services would be more reliable. Also, you can attach files to private messages on these forums, and I would believe the limit is up to 128MB, so if the file is smaller than 128MB then you can just attach it to a private message to me on these forums.
  • Create New...