GT500

Emsisoft Employee
  • Content Count

    12636
  • Joined

  • Days Won

    381

Everything posted by GT500

  1. I'm glad to hear that you found the answer to your issue. I'm going to go ahead and lock this topic now. If anyone needs any more assistance with this issue, then please feel free to create a new topic in our Online Armor forum, or submit a ticket on our online helpdesk.
  2. Has anyone tried it with Firefox running in "Safe Mode" yet? Like I said, I cannot duplicate this issue (see my sceenshot above). If one of you could confirm whether or not the issue happens when Firefox is running in "Safe Mode", then that will help me to determine what the next step in debugging should be.
  3. That happens when you're already run OTL once before. BTW: I am not seeing an OTL.txt file attached to your message. Please let me know if you are having trouble attaching it.
  4. You're welcome. Please let me know if you have any further issues.
  5. The last time I tested software from Avira, I was testing Emsisoft Anti-Malware 6 with Avira Antivirus (free and premium) as well as Avira Internet Security, which was in March of 2012, and there were no issues at all when I tested them. Since Mamutu is a stand-alone version of the Behavior Blocker from Emsisoft Anti-Malware, it would most likely also be capable if running alongside Avira's software without issues, however there is always the possibility that an update since March may have changed how well they work together. If you have any issues, then adding exclusions should help resolve them.
  6. Direct Disk Access (DDA) is where our own driver is used to directly access the data on your hard drive, rather than relying Microsoft APIs within Windows that would normally be used to access the disk drive. Many security applications use their own DDA driver to facilitate detecting the presence of rootkits and other infections that are capable of hiding themselves by interfering with what Windows is able to see on your hard drive.
  7. Have you confirmed that this also happens when you run Firefox in Safe Mode? Not that this is not Windows Safe Mode, but a special Safe Mode that Firefox can run it which does not allow any add-ons to load, and allows for troubleshooting issues.
  8. If you uncheck those options ("Automatically allow trusted programs to access the internet" and "Autoconfigure trusted programs"), then Online Armor expects you to set up rules for each application manually.
  9. I assume you mean with OA set to start with Windows? What happens? Does your computer just freeze, or is there a "Blue Screen of Death" type error message?
  10. We'll probably need a log from Fiddler to get some more information about what is happening. Please download and install Fiddler 2 from this link (this is the version that requires the Microsoft .NET Framework 2.0), and then follow the instructions below: After installing Fiddler, please open it from the Start Menu. Launch Emsisoft Anti-Malware. Go to Configuration in the menu on the left. Select the Update Settings tab. Click on the Connection settings link in the lower-right corner. Check the box that says Use proxy server. Enter localhost in the Proxy server field, and then enter 8888 in the port field. Click 'OK'. Go back to the Menu on the left, and select Security Status. Click on the Update Now button to start the update (Fiddler must be running when you do this). After the update fails, go back to Fiddler, and to File, then Save, and select All Sessions (please save it on your desktop). Attach the file you saved from Fiddler to a reply for us to review by using the More Reply Options button to the lower-right of where you type in your reply.
  11. 'Trusted' programs are programs that are trusted by the HIPS module, and not by the firewall. This is why the firewall controls are separate. This allows you to define what programs are allowed Internet access, and what programs are not allowed Internet access. If you would like to see more information about the firewall settings, then please see this link, and for more information about the Programs list you can see this link. Also, when a notification about a program accessing the Internet is displayed, you should have the option to remember your decision create a rule for that program in the firewall settings so that it does not ask again. Please see the screenshot below (click on it to make it larger):
  12. I have confirmed the location of the setting, and that it is checked by default. Does this happen when you run Firefox in Safe Mode?
  13. I think I'll need to see a log from OTL before I can say for certain if there are any other steps that can be taken. You may run OTL by following the instructions below: Click this link to save OTL onto your desktop (please make sure to click 'Save' instead of 'Run'). Double click on the OTL icon on your desktop to run it. Make sure all other windows are closed and to let it run uninterrupted. Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan will take a few minutes. When the scan completes, it will open two Notepad windows. OTL.Txt and Extras.Txt. The first one (OTL.txt) will be automatically saved on your desktop next to OTL, and the second one will need to be saved manually. Please make sure that both OTL.txt and Extras.txt are saved on your desktop, and then attach both of them to a reply so that we can take a look at them.
  14. If you are still having issues with installing these updates, then we may need some logs from Online Armor while you are installing them. To generate logs, please open Online Armor, go to Options in the menu on the left, click the little check box to enable debug mode, restart your computer, and then try reproducing your problem with installing updates. After that, please ZIP your entire logs folder (normally C:\Program Files\Online Armor\Logs), upload it to a website such as RapidShare/DepositFiles/BayFiles/etc (which one you use is up to you), and then copy and paste the link to download the file into a reply (or you can send it to me in a Private Message if you don't want the link posted publicly on the forums). Note that, if you don't have a utility such as 7-Zip, WinZip, or WinRar that you can ZIP files and folders by right-clicking on them, going to Send To, and clicking on Compressed (zipped) Folder.
  15. Microsoft Security Essentials will probably continue to ask you to run a scan until it has been able to complete its scan. If you need to, you can follow the instructions at this link to start your computer in Safe Mode in order to allow the scan to run unimpeded. You may also wish to run a scan from ESET, just to make sure that we are not missing anything. Here are instructions below for doing that (this scan will also most likely take several hours to complete): Turn off your anti-virus and firewall software. Click on this link. Click on the ESET Online Scanner button. Put a check in the box that says YES, I accept the Terms of Use. Click the 'Start' button just to the right of the checkbox. Uncheck the box that says Remove found threats (this is very important). Click on Advanced settings. Put a check in the box that says Scan for potentially unsafe applications. Verify that Scan for potentially unwanted applications is also checked. Verify that Enable Anti-Stealth technology is also checked. Click the Start button in the lower-right corner of the page, and it will begin downloading it's database, and then it will start scanning. When the scan is done, if it shows a screen that says Threats found!, then click List of found threats, and then click Export to text file... (if nothing was found, then just let me know that no threats were found). Save that text file on your desktop, and then attach it to a reply (using the More Reply Options button in the lower-right corner of this forum topic) for me. Close the ESET online scan. I will take a look at the log, and let you know if anything needs removed. Note that these scans can be run overnight if needed, as long as the computer's power settings do not cause it to automatically shut down after a certain period of time.
  16. May I ask which updates you had this issue with?
  17. If you leave the debug mode on all of the time, then the logs may get to be absurdly large, and consume a lot of disk space.
  18. May I ask where to find that option? I know very little about Firefox.
  19. That's OK. Please let us know if you have any other suggestions/questions/etc.
  20. Go ahead and allow Microsoft Security Essentials to run its scan, and let me know if it comes up clean. Also, I noticed some leftovers from the Babylon toolbar, which you may want to remove. Below are instructions for AdwCleaner and Junkware Removal Tool which will remove unwanted toolbars and such. Please download AdwCleaner and save it on your desktop. Close all open programs and internet browsers (you may want to print our or write down these instructions first). Double click on adwcleaner.exe to run the tool. Click on Delete. Confirm each time with Ok. You will be prompted to restart your computer. A text file will open n Notepad after the restart (this is the log of what was removed), which you can save on your desktop. Please attach that log file to a reply by clicking the More Reply Options button to the lower-right of where you type in your reply. If you lose that log file for any reason, you can find it at C:\AdwCleaner[s1] on your computer. Please download Junkware Removal Tool and save it on your desktop. Shut down your anti-virus, anti-spyware, and firewall software now to avoid potential conflicts. Run the tool by double-clicking it. If you are using Windows Vista or Windows 7, right-click it and select Run as administrator. The tool will open and start scanning your system. Please be patient as this can take a while to complete depending on your system's specifications. On completion, a log is saved to your desktop and will automatically open. Please attach the JRT log file to a reply by clicking the More Reply Options button to the lower-right of where you type in your reply.
  21. Unfortunately, I am not able to confirm this: We'll probably need some logs to see what the problem is. Please open Online Armor, go to Options in the menu on the left, click the little check box to enable debug mode, restart your computer, and then try reproducing your problem with running Firefox in RunSafer mode. After that, please ZIP your entire logs folder (normally C:\Program Files\Online Armor\Logs), upload it to a website such as RapidShare/DepositFiles/BayFiles/etc (which one you use is up to you), and then copy and paste the link to download the file into a reply (or you can send it to me in a Private Message if you don't want the link posted publicly on the forums). Note that, if you don't have a utility such as 7-Zip, WinZip, or WinRar that you can ZIP files and folders by right-clicking on them, going to Send To, and clicking on Compressed (zipped) Folder.
  22. Don't worry if it takes some time before you are able to deal with this. If we can get the logs, then I can send them to our developers and they can take a closer look at them, and hopefully discover the cause.
  23. I have written a cleanup script for OTL (if you need to, you may download OTL from this link). Please download the following OTL_Script file, and save it on your desktop. After saving it, open it, run OTL, and copy and paste the contents of the OTL_Script file into the Custom Scans/Fixes box at the bottom of the OTL window: Then click the Run Fix button at the top. Let the program run unhindered, restart your computer when it is done (it may automatically restart your computer on its own). After your computer has restarted, please open OTL again and click the Quick Scan button. Attach the log it produces in your next reply (just the OTL log, as I don't need to see the Extras log again). You will need to click the button that says More Reply Options to the lower-right of where you type your reply to be presented with the attachment controls.
  24. It is normal for security software to use hooks (at least on 32-bit operating systems) in order to get the data they need for their real-time protection to work.