Jump to content


  • Posts

  • Joined

  • Last visited


0 Neutral

Profile Information

  • Gender
  • Location
    VA, USA
  1. to: itman Testing it, on my wife's Windows 7 Home Premium laptop... I just repeated the same method (step-by-step) which I used on my Windows 10 Pro laptop .... with one exception as follows: When I used "CCleaner" it was not the PRO version (I haven't bought that for her laptop yet)... so, CCleaner's results did NOT indicated the removal of the REGISTRY entries (as I indicated it did on my Windows 10 Pro laptop). Since it did not indicate that those REGISTRY entries had been removed, I took the time to run Microsoft's "REGEDIT" and search the entire registry for any occurrence of "a2Start" ... and none was found. So, now satisfied THAT suspected problem entry/file had been nullified... I continued with the method (step-by-step) as I had previously used. Result? PROBLEM SOLVED. I don't know why it didn't work for you... perhaps you have other software "running"?
  2. Same issue here, as of this morning... on both my Windows 10 Professional laptop and on my wife's Windows 7 Premium laptop (both are running a licensed copy of EMSISOFT Anti-malware). Here's what I did, on my Windows 10 Pro laptop, to resolve this annoyance: - with no other software "running" (except what Microsoft demands from Windows 10 Pro users) - downloaded & saved-to-disk the newest version of EMSISOFT Anti-malware (from link cited by GT500 in their reply above) - used Windows Control Panel to remove/uninstall the problematic software - restarted windows - ran latest licensed version of "CCleaner" to clean-up software files & windows registry ... that removed registry entries pointing to disk files which no longer existed: ...... HKCU -> EmsisoftAntiMalwareSetup.exe ...... HKCU -> a2start.exe ...... HKCU -> unins000.exe - restarted windows - installed the newly downloaded EMSISOFT Anti-malware software ... re-entered LICENSE key ... performed UPDATE ... performed QUICK scan - restarted windows - it's all good now (on my Windows 10 laptop... haven't done the Windows 7 laptop yet) hth
  3. Kevin, I think the "Secunia Online Software Inspector" relies on outdated data (it identified several Micorsoft KB articles which have been superseded by other updates)... but not a real problem... Windows Update says the system is up-to-date. After completing your instruction set, we had to manually delete those "restore bin" items which were placed in quarantine. Then we updated Emsisoft Anti-Malware and did a "deep scan" ... no problems detected. Thanks for your assistance (we'll certainly be recommending Emsisoft Anti-Malware and these Forums to others)!
  4. I'll do this as soon as I get over to my friend's home tomorrow... thanks!
  5. OTLfix.txt has been run ... system seems to be operating normally, here's the requested log:
  6. We ran OTL again, with parameters as originally specified: Run OTL: Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted. When the window appears, underneath Output at the top change it to Minimal Output. Check the boxes beside LOP Check and Purity Check. Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long. When the scan completes, it will open two notepad windows. OTL.txt and Extras.txt. It only produced the OTL.txt file and not an EXTRAS.txt Here's that OTL.txt file:
  7. Well, that seems to have done it! Thanks, very much, for the help! Aside from having to reset Google Chrome's START and HOME page settings (which had been hijacked) and removing an added Toobar Search Engine... the system seems to be operating normally once again! BTW: upon visiting my friend, to help deal with this infection, we had installed EmsiSoft's Anti-Malware (full licensed version, which detected this thing, but could not quarantine it (thus, we came here for HELP). After running "Combo-Fix" and then updating the Anti-Malware and doing a "deep scan" we discovered the following pieces of this thing within the Quarantine bin: ID Object 0 C:\System Volume Information\_restore{87515799-FF23-4CEF-BC7B-57F3ECCD12E2}\RP354\A0047720.sys Gen:Variant.Barys.536 (B) 1 C:\System Volume Information\_restore{87515799-FF23-4CEF-BC7B-57F3ECCD12E2}\RP354\A0047788.sys Gen:Variant.Barys.536 (B) 2 C:\System Volume Information\_restore{87515799-FF23-4CEF-BC7B-57F3ECCD12E2}\RP353\A0047395.sys Gen:Variant.Barys.536 (B) 3 C:\System Volume Information\_restore{87515799-FF23-4CEF-BC7B-57F3ECCD12E2}\RP354\A0047846.sys Gen:Variant.Barys.536 (B) 4 C:\System Volume Information\_restore{87515799-FF23-4CEF-BC7B-57F3ECCD12E2}\RP354\A0047764.sys Gen:Variant.Barys.536 (B) 5 C:\System Volume Information\_restore{87515799-FF23-4CEF-BC7B-57F3ECCD12E2}\RP354\A0047776.sys Gen:Variant.Barys.536 (B) 6 C:\System Volume Information\_restore{87515799-FF23-4CEF-BC7B-57F3ECCD12E2}\RP354\A0047822.sys Gen:Variant.Barys.536 (B) 7 C:\System Volume Information\_restore{87515799-FF23-4CEF-BC7B-57F3ECCD12E2}\RP353\A0047425.sys Gen:Variant.Barys.536 (B) 8 C:\System Volume Information\_restore{87515799-FF23-4CEF-BC7B-57F3ECCD12E2}\RP354\A0047834.sys Gen:Variant.Barys.536 (B) 9 C:\System Volume Information\_restore{87515799-FF23-4CEF-BC7B-57F3ECCD12E2}\RP354\A0047813.sys Gen:Variant.Barys.536 (B) 10 C:\System Volume Information\_restore{87515799-FF23-4CEF-BC7B-57F3ECCD12E2}\RP354\A0047735.sys Gen:Variant.Barys.536 (B) 11 C:\System Volume Information\_restore{87515799-FF23-4CEF-BC7B-57F3ECCD12E2}\RP353\A0047450.sys Gen:Variant.Barys.536 (B) Here's the requested "Combo-Fix" LOG:
  8. Thanks for the expedient reply... off to do the COMBO-FIX thing NOTE: Friend mostly uses the computer to play the online game "Call of Duty" ...
  9. Here are the requested log files: Thanks, in advance for assistance in getting rid of this thing! NOTE: the system parameters listed below my username are for MY computer. However; the PROBLEM posted here is on a friend's computer -- Windows XP Pro (as delineated within the attached log files)
  10. Thanks for the response, Fabian. I did what you suggested, and found only these two entries: - Background Guard - Emsisoft Anti-Malware But after changing those settings, and rebooting, it made no difference. UPDATE would not successfully complete. Oddly, during instalation, it had no problem doing the UPDATE, and successfully completing the installation. I decided to UNINSTALL the product. Then I manually checked the Registry & C: drive for anything that might have been left behind. I then reinstalled (using the same file I had downloaded for the first installation). This time, I left the DEFAULT (30-day trial) settings as they were presented. Again, the INSTALL and UPDATE were successfully completed. Then I tried a manual update, and that too was successful. Then I set the preferences to what I wanted. I'm linking a screenshot, of those settings, after a successful installation on my system: http://services-a2z.biz/emsisoft.jpg It's working fine now (the way I want it to work for me). Thanks again for your assistance.
  11. System/parameters: - EmsiSoft Anti-Malware v opted for freeware (not registered 30-day trial, install was yesterday 02-11-2012) - OS: Windows7 Home Premium SP1 64-bit - EmsiSoft Anti-Malware Set-to-Run @ Startup - running at time of encountered problem is: ZoneAlarm Firewall+Antivirus ZoneAlarm with Anti-virus v w/ Vsmon version:, Driver version:, Anti-virus engine version: - also installed but only RUN on demand, not running at Startup or when this problem encountered: MalwareBytes Anti-Malware (free not paid) v My problem is: EmsiSoft WILL NOT UPDATE. I do NOT have it set for auto-updates. When I try to manually update, it goes like this: - using the desktop ICON, I launch a2start.exe (set to be run as a system administrator) - I click UPDATE NOW button - ONLINE UPDATE dialog begins ("copyright" icon starts "spinning") - message displays: Downloading update information... - ZoneAlarm then popups this WARNING: Emsisoft Anti-Malware Service is trying to load the driver: ROOT\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys - I click ALLOW, and ZoneAlarm popup message disappears - but NOTHING happens (I have waited as much as ten minutes, before clicking CANCEL and closing EmsiSoft Anti-Malware) It does the above repeatedly, never completing an UPDATE. But if I shutdown ZoneAlarm, and then try again to update EmsiSoft Anti-Malware... things go just fine. I do NOT like having to close ZoneAlarm just to be able to update EmsiSoft Anti-Malware. I want this to work the way I wnat it to, before I would consider registering for the PAID version. Is there a work-around? Thanks, in advance!
  • Create New...