Jump to content

GT500

Member
  • Posts

    14249
  • Joined

  • Days Won

    458

Everything posted by GT500

  1. Lets add process exclusions for Malwarebytes Anti-Malware: Open Emsisoft Anti-Malware from the icon on the desktop. Click Guard in the menu on the left. Go to the File Guard tab. In the lower-left corner, just above Alerts, click on the Manage whitelist link. In the box under Type click the little down arrow and change it from File to Process (you may need to click in the box for the arrow appear). Click in the white box below Item to make a button with three dots (...) appear, and then click the ... button. Navigate to the directory where the files you wish to exclude are located, and double-click on one of them to add it. Repeat the last 3 steps as needed to add each file to the exclusions list. Click the OK button at the bottom when done, and close Emsisoft Anti-Malware. The Malwarebytes Anti-Malware folder should be C:\Program Files (x86)\Malwarebytes Anti-Malware, and these are the files you should add as process exclusions: mbam.exe mbamgui.exe mbamservice.exe After that, open Malwarebytes Anti-Malware and do the following: Click on the Ignore List tab. Click the Add button in the lower-left. Using the little [+] and [-] buttons to open and close folders, go to C:\Program Files (x86) and click on the Emsisoft Anti-Malware folder, then click OK. After that you can set Malwarebytes Anti-Malware to run on startup again, and then restart your computer.
  2. Do you have any other security software installed? Anti-virus? Firewall? Anti-Spyware? Anti-Malware?
  3. Lets add process exclusions for Malwarebytes Anti-Malware: Open Emsisoft Anti-Malware from the icon on the desktop. Click Guard in the menu on the left. Go to the File Guard tab. In the lower-left corner, just above Alerts, click on the Manage whitelist link. In the box under Type click the little down arrow and change it from File to Process (you may need to click in the box for the arrow appear). Click in the white box below Item to make a button with three dots (...) appear, and then click the ... button. Navigate to the directory where the files you wish to exclude are located, and double-click on one of them to add it. Repeat the last 3 steps as needed to add each file to the exclusions list. Click the OK button at the bottom when done, and close Emsisoft Anti-Malware. The Malwarebytes Anti-Malware folder should be C:\Program Files (x86)\Malwarebytes Anti-Malware, and these are the files you should add as process exclusions: mbam.exe mbamgui.exe mbamservice.exe After that, open Malwarebytes Anti-Malware and do the following: Click on the Ignore List tab. Click the Add button in the lower-left. Using the little [+] and [-] buttons to open and close folders, go to C:\Program Files (x86) and click on the Emsisoft Anti-Malware folder, then click OK. After that you can set Malwarebytes Anti-Malware to run on startup again, and then restart your computer.
  4. These changes are to the scanner, and allow it to scan for and detect malicious extensions in Firefox and Google Chrome.
  5. Online Armor actually requires termservice, as does Emsisoft Anti-Malware, so it should be running. Try the following: Right-click on the 'Start' button (or whatever they replaced it with in Windows 8/8.1). Select Command Prompt (Admin) from the list. Type in the following command, and then press Enter on your keyboard: sc config TermService start= auto If that command runs without errors, then restart your computer and see if the issue is resolved.
  6. I assume that both of the files are digitally signed by Microsoft? If they are, then in the file properties you should be able to check the certificate that was used.
  7. This link appears to contain updated information, although the instructions are not very good.
  8. You're not supposed to remove those entries. Windows expects that LEGACY registry keys will never be deleted.
  9. Here is a link to instructions on how to start your computer in Safe Mode.
  10. It's possible that you need to add exclusions for Avira. Here are some instructions on adding Avira to the Exclusions list in Online Armor: Click on the Start button, go to All Programs, go to Online Armor, and click on the Online Armor icon to open it. Click on Options in the menu on the left. Go to the Exclusions tab. Click on the Add button. Use the little [+] and [-] icons to the left of folder names to open and close them, find the Avira Desktop folder (usually C:\Program Files\Avira\AntiVir Desktop), click on it to highlight it, and then click OK at the bottom. Close the Online Armor window. For Avira you may have to consult their support documentation, however I do have a set of instructions for adding exclusions to Avira (note that it might be out of date): Open the Avira Control Center from the icon on the desktop. In the menu on the left, under PC protection, click on Realtime Protection. In the upper-right corner, click on Configuration. If it asks you to enable expert mode, then click Yes. In the menu on the left, under Realtime Protection, click the little [+] icon to the left of Scan to reveal more options, and then click on Exceptions. Under Processes to be omitted by the Realtime Protection click on the ... button (the one that has three dots and no name). Navigate to the Online Armor main folder (normally C:\Program Files\Online Armor). Select the file to be excluded, and click on the Open button. Click the Add>> button just to the right to add the file to the list of excluded items (please add at least every EXE in the Online Armor folder, and if you can add the other files then do that as well). After adding all three files, click Apply at the bottom. Click the X button in the upper-right corner to close the Configuration window. Close Avira Free Antivirus.
  11. When you ran the check_oa_services batch file, did you right-click on it and select to "Run as Administrator"?
  12. Have you tried disabling the option to connect to the Anti-Malware network in the options for Programs?
  13. Try the following, and let me know what the result is: Hold down the Ctrl key on your keyboard, and tap R to open the Run dialog. Type cmd into the field and click OK. Type in echo %homedrive% and then press Enter on your keyboard. Let me know what it tells you. I expect C: to be what it says, but it may say something different.
  14. Uninstalling Online Armor like Stapp mentioned would work. So would uninstalling the new mouse driver in Safe Mode, then restarting normally and putting Online Armor in Learning Mode to reinstall the driver so that the issue doesn't happen again.
  15. You can force it to run by setting it to automatic instead of manual: sc config TermService start= auto
  16. Here's how to get to the White List: Open Emsisoft Anti-Malware from the icon on the desktop. Click 'Guard' in the menu on the left. Go to the "File Guard" tab. In the lower-left corner, just above 'Alerts', click on the "Manage whitelist" link. You can add exclusions for single files, folders, and detection names.
  17. Can you hold down the Alt key and tap Tab to get the Online Armor notification into focus, and then use just the Tab key by itself to navigate to the Allow button?
  18. Try starting your computer in Safe Mode With Networking and then reinstall Online Armor. Here's a link to instructions on how to start your computer in Safe Mode With Networking.
  19. There was an issue with needing to run through the Wizard (the first-time configuration where you enter your license key) more than once that was fixed in 8.1.0.40. I'm glad to hear that that also resolved your issue with Emsisoft Anti-Malware forgetting its license information.
  20. I just spoke to one of our malware analysts, and that folder was a false positive. The detection has been removed in our database, and that should be published as an update soon.
  21. That looks like a folder to me, and from what I can tell that is a folder where ActiveX controls get saved. Malware can reside in that folder, but so can legitimate things.
×
×
  • Create New...