Jump to content

GT500

Emsisoft Employee
  • Content Count

    14249
  • Joined

  • Days Won

    450

Posts posted by GT500

  1. Our developers are asking for a new engine debug log and a scan log. They also want the scan that the logs are from to be run without direct disk access.

    Please note that if you have not restarted your computer since the last time you ran a scan, that you should go ahead and do so now. This will cause Emsisoft Anti-Malware to create a new ScanEngineDebug.log, so that our developers get a fresh log with data from only one scan.

  2. That's looking pretty good. No threats detected. There are a few reasons why the scan could be taking a long time around 80%, and it could just be that it has come across a large ZIP or CAB archive that the BitDefender engine is extracting in order to scan the contents.

    Is your computer displaying any other odd symptoms, or does it seem OK now?

  3. You will need to uninstall Emsisoft Anti-Malware, and then run Emsiclean (see the instructions below) before reinstalling.

    Please download Emsiclean from this link (be sure to save it on your desktop), and follow the instructions below to get me a log:

    1. Run the Emsiclean download that you saved on your desktop.
    2. Read the disclaimer. Note that you must agree to it in order to proceed.
    3. Once the scan is finished, simply exit Emsiclean, and do not remove anything.
    4. A new file will be saved on your desktop with a log of what was detected. Please attach that to a reply by using the More Reply Options button to the lower-right of where you type in your reply.

  4. If the cause is just an Internet connection issue, then the way to fix it would be to stabilize the Internet connection. If the issue is not related to whatever hardware you are using to connect to the Internet, then you would either have to contact your Internet Service Provider about the issue, or find a more reliable Internet Service Provider.

    As for the second issue you are referring to, I have not seen that happen in any of my own testing or usage of EAM, so I don't know what might cause it. I'll see if one of our developers has some information on it.

  5. OK, just a few more things to delete according to that log. We'll use The Avenger to delete them. Here's the instructions:

    1. Please download The Avenger from this link, and make sure to save it on your Desktop.

    • Right click on the Avenger.zip folder and select "Extract All..."
    • Follow the prompts and extract the avenger folder to your desktop

    2. Save the AvengerScript.txt at the link below to your desktop, open it, and copy all the text contained in the AvengerScript.txt file, and it will be pasted into The Avenger in a later step (if you do not know how to copy and paste, then there are instructions at this link):

    Note: the above code was created specifically for the person requesting assistance in this forum topic, and it is based entirely on the logs they supplied from their computer. No one else should attempt to run The Avenger with this script, as it may damage their computer!

    3. Now, open the avenger folder on your desktop and start The Avenger program by double-clicking on its icon.

    • Please paste the contents of the attached AvengerScript.txt file above (which you should have already copied) into the white box in The Avenger (see example picture below).
    • Click on the Execute button in the low-right corner (see example picture below).
      paste_script_into_avenger.png
    • Answer "Yes" twice when prompted.

    4. The Avenger will automatically do the following:

    • It will Restart your computer. ( In cases where the code to execute contains "Drivers to Delete", The Avenger will actually restart your system twice.)
    • On reboot, it will briefly open a black command window on your desktop, this is normal.
    • After the restart, it creates a log file that should open with the results of Avenger’s actions. This log file will be located at C:\avenger.txt
    • The Avenger will also have backed up all the files, etc., that you asked it to delete, and will have zipped them and moved the zip archives to C:\avenger\backup.zip.

    5. Please attach the content of c:\avenger.txt to a reply by using the More Reply Options button to the lower-right of where you type in your reply.

  6. EAM Can Remove Malware In USB Disk In Windows Boot process ???

    As long as the USB drive is properly mounted when it loads, EAM's Delete on Reboot driver should be able to delete files from the drive.

    EAM Can Remove Malware In Write protected USB Disk ???

    Nothing should be able to delete files that are stored on a write protected USB drive (although, if the write protection is being simulated using NTFS file permissions, then that is not always true, as bootable disks would not respect those permissions, and neither would the NTFS driver for Linux).

  7. OK, those logs are looking a lot better. Malwarebytes' Anti-Malware is detecting a download wrapper from Softonic, and you can find an explanation of why download wrappers are not necessarily good at this link. It is not actually necessary to delete this Softonic download wrapper, however if you wish to do so then just look for a file named SoftonicDownloader_for_microsoft-digital-image in your downloads folder, which appears to be in your My Documents folder.

    Lets go ahead and run a third-party virus scan just to make sure we are not missing anything, and to check your USB hard drive. Here are the instructions (it does not include a step to scan your USB hard drive, however you should have the ability to select any extra hard drives you want to scan before starting the scanning process):

    1. Turn off your anti-virus software.
    2. Click on this link.
    3. Click on the ESET Online Scanner button.
    4. Put a check in the box that says YES, I accept the Terms of Use.
    5. Click the 'Start' button just to the right of the checkbox.
    6. Uncheck the box that says Remove found threats (this is very important).
    7. Click on Advanced settings.
    8. Put a check in the box that says Scan for potentially unsafe applications.
    9. Verify that Scan for potentially unwanted applications is also checked.
    10. Verify that Enable Anti-Stealth technology is also checked.
    11. Click the Start button in the lower-right corner of the page, and it will begin downloading it's database, and then it will start scanning (this can take a long time).
    12. When the scan is done, if it shows a screen that says Threats found!, then click List of found threats, and then click Export to text file... (if nothing was found, then just let me know that no threats were found).
    13. Save that text file on your desktop, and then attach it to a reply (using the More Reply Options button in the lower-right corner of this forum topic) for me.
    14. Close the ESET online scan.

    I will take a look at the log, and let you know if anything needs removed.

  8. It is common to have application and driver issues after upgrading from an older version of Windows to a newer one. Fortunately, Microsoft doesn't force those upgrades via Windows Update (they expect you to buy the 'upgrade' edition of Windows 8 before you can upgrade to it).

    Have you tried disabling your Outpost Security Suite to see if that resolves the issue with Emsisoft Anti-Malware?

  9. An INF file cannot be executed like an application, so you wouldn't be able to block it via Emsisoft Anti-Malware.

    You can block access to the file via file permissions in Windows, assuming your hard drive was formatted with the NTFS filesystem (this is the most common filesystem for Windows computers since Windows XP, and I would believe it is required for installing Windows 7). Here is a link to instructions on using file permissions in Windows, however please be careful when changing these settings, as you can completely lock yourself out of files, folders, and even entire hard drives if you accidentally select the wrong option.

×
×
  • Create New...