GT500

No, it would not be redundant. The Surf Protection in Emsisoft Anti-Malware is based on domain names, while the IP blocking in Malwarebytes' Anti-Malware is based on IP addresses of servers known to harbor malicious content (so they block entire servers while we only block websites that are known to be malicious). Both technologies work in different ways to protect you, and both technologies are compatible. I use Malwarebytes' Anti-Malware (with real-time protection and IP blocking enabled) alongside Emsisoft Anti-Malware 7 and there are no issues that I have ever encountered. Just an FYI: Steven Burn of hpHosts has worked for Malwarebytes for several years, and he is the one who maintains their IP Block List.

Just an FYI: Updated signatures should be available soon. Let us know if you don't start receiving database updates sometime tonight.

Normally, downloading and installing Service Packs manually will work, even if your computer already has most of the updates contained in the Service Pack (and even if your computer already has the Service Pack installed). Here are the download links, since Microsoft has not made it easy to find the right ones (unless you know the operating system version number, which in this case is 6.1): Windows 7 x86 (32-bit) Service Pack 1 Windows 7 x64 (64-bit) Service Pack 1

Yes, 1.4GB is a little on the large side, and I don't think there's a free file sharing service that would allow you to upload something that large. Fortunately, our developers are aware of the issue, and they are working on finding the cause of the crash.

Does EAM say when the last successful update was? The opening post mentions that it says it was 4 days ago, however the rest of you seem to be concerned with the last modified date of the signature files. Just to verify, is everyone posting here actually experiencing the same issue that was reported in the opening post (where the "Last update" time listed on the Security Status screen is several days ago), or are the rest of you only seeing an issue with the last modified date of the signature files themselves?

Yes, it should automatically disable the Windows Firewall, as the Windows Firewall is not compatible with third-party firewalls.

We'll need a copy of the memory dump to be able to analyze it and determine what happened. Normally the file would be C:\WINDOWS\Memory.dmp however it will most likely be rather large in size, so you might need to use a service such as RapidShare, DepositFiles, BayFiles, or another similar website if your prefer, and then send me the link in a private message so that I can pass it along to our developers.

We'll need a copy of the memory dump to be able to analyze it and determine what happened. Normally the file would be C:\WINDOWS\Memory.dmp however it will most likely be rather large in size, so you might need to use a service such as RapidShare, DepositFiles, BayFiles, or another similar website if your prefer, and then send me the link in a private message so that I can pass it along to our developers.

I am not having this issue on Windows 7 x64, however I didn't update from version 6.6 to version 7, so I will start testing in virtual machines to see if I can replicate it. If anyone else is having this issue, please be sure to tell us what version of Windows you are experiencing it on.

We'll need a copy of the memory dump to be able to analyze it and determine what happened. Normally the file would be C:\WINDOWS\Memory.dmp however it will most likely be rather large in size, so you might need to use a service such as RapidShare, DepositFiles, BayFiles, or another similar website if your prefer, and then send me the link in a private message so that I can pass it along to our developers.

In the case of a non-bootable computer, an anti-virus scan will not give you any guarantees of resolving the problem. There could be damaged registry entries or damaged/missing system files, or there could be a rootkit causing the problem, and it would most likely take someone with a bootable disk such as BartPE or UBCD4Win to repair the computer. Even then, no repair can be guaranteed, and a reinstall of Windows may be necessary to fix the damage.

I know, it seems a bit complicated, but it is the easiest way to figure out what is happening during the update process for the Emsisoft Emergency Kit. Actually, since you appear to have a topic open in our malware removal forum (which I apologize for not noticing earlier), and someone else appears to be assisting you there, it would be best if you could ignore my instructions above and simply stick with what Kevin (ShadowPuterDude) asks you to do. It will be far less confusing if only one person is attempting to assist you.

You can find the version numbers at http://www.online-armor.com/downloads.php

Here's some screenshots showing a2service.exe memory usage from EAM 7 in Windows 7 x64. From Task Manager: From Windows 7 Resource Monitor: From Microsoft's Process Explorer: The memory usage is looking much lower, although as Fabian mentioned it does "page out signatures that haven't been used in a while to reduce memory consumption", so the entire database is not loaded into physical memory.

Please download and install Fiddler 2 from this link (this is the version that requires the Microsoft .NET Framework 2.0), and then follow the instructions below: After installing Fiddler, please open it from the Start Menu. Launch the Emsisoft Emergency Kit via the EmergencyKitScanner batch file. Go to Configuration in the menu on the left. Select the Update tab. Click on the Connection settings link in the lower-right corner. Check the box that says Use proxy server. Enter localhost in the Proxy server field, and then enter 8888 in the port field. Click 'OK'. Go back to the Menu on the left, and select Security Status. Click on the Update Now button to start the update (Fiddler must be running when you do this). After receiving the error message, go back to Fiddler, and to File, then Save, and select All Sessions (please save it on your desktop). Attach the file you saved from Fiddler to a reply for us to review by using the More Reply Options button to the lower-right of where you type in your reply.

Do you know how to use Fiddler? It will allow you to create a log of network communication between the Emsisoft Emergency Kit and the update servers by setting the EEK to use Fiddler as a proxy while Fiddler is running. I'm going to write some instructions for this, in case you don't know how to use Fiddler. I'll post them as soon as I have them done.

Yes, you should be able to use the new EAM 7 with BitDefender. We only use their engine, and we use our own technology for monitoring applications and such, so it should still be compatible. Admittedly it does seem a bit redundant to use both of them together, however, since EAM 7 should be capable of detecting anything that BitDefender can.

The engine is a lot lighter than the finished BitDefender products. We're using their detection engine, and tying it in to our existing technology, so it shouldn't have any real performance impact.

ICMP (Internet Control Message Protocol) is related to pings and traceroutes, and blocking it shouldn't cause a problem with using OpenDNS. If you want to change how Online Armor treats ICMP packets, then you will need to put Online Armor into Advanced Mode.

Our developers want to see some logs. Please open Online Armor, go to Options in the menu on the left, click the little check box to enable debug mode, restart your computer, and then try reproducing your problem (whatever causes this notification to appear). After that, please ZIP your entire logs folder (normally C:\Program Files\Online Armor\Logs), upload it to a website such as RapidShare/DepositFiles/BayFiles/etc (which one you use is up to you), and then copy and paste the link to download the file into a reply (or you can send it to me in a Private Message if you don't want the link posted publicly on the forums). Note that, if you don't have a utility such as 7-Zip, WinZip, or WinRar that you can ZIP files and folders by right-clicking on them, going to Send To, and clicking on Compressed (zipped) Folder.

I have asked our developers for some input on this. If this ShimCacheMutex thing is a file, then I will need a full path and file name to look it up. Would it be possible for you to get a screenshot of this message, and attach it to a reply? Just in case you need them, here's a link to some instructions on copying and pasting, and you can access the attachment controls by clicking the More Reply Options button to the lower-right of where you type your reply. Edit: Also, please let us know what version of Windows your computer is running, and what Service Pack is installed, as well as what other security software is running on this computer.

You're quite welcome.

I've been running EAM 7 alongside MBAM, and there are no issues. I also installed the 1.65.0.1000 beta of MBAM last night, and updated EAM 7 to the latest beta version today. So far everything is working just like it did in EAM 6.x with previous versions of MBAM. As far as I can tell, the switch from the Ikarus engine to BitDefender's engine has not caused any changes in compatibility with other AV software (or at least it hasn't impaired it any). No actual installer has been created for EAM 7 yet (at least not that I am aware of). Right now the easiest way to get EAM 7 beta is to install EAM 6.6 and enable beta updates.

We'll probably need some logs to see what the problem is. Please open Online Armor, go to Options in the menu on the left, click the little check box to enable debug mode, restart your computer, and then try reproducing your problem. After that, please ZIP your entire logs folder (normally C:\Program Files\Online Armor\Logs), upload it to a website such as RapidShare/DepositFiles/BayFiles/etc (which one you use is up to you), and then copy and paste the link to download the file into a reply (or you can send it to me in a Private Message if you don't want the link posted publicly on the forums). Note that, if you don't have a utility such as 7-Zip, WinZip, or WinRar that you can ZIP files and folders by right-clicking on them, going to Send To, and clicking on Compressed (zipped) Folder.

Here are some instructions on adding Avira to the Exclusions list in Online Armor: Click on the Start button, go to All Programs, go to Online Armor, and click on the Online Armor icon to open it. Click on Options' in the menu on the left. Go to the Exclusions tab. Click on the Add button. Use the little [+] and [-] icons to the left of folder names to open and close them, find the Avira Desktop folder (usually C:\Program Files\Avira\AntiVir Desktop), click on it to highlight it, and then click OK at the bottom. Close the Online Armor window.