Jump to content

thomster

Member
  • Posts

    33
  • Joined

  • Last visited

Posts posted by thomster

  1. 1 minute ago, stapp said:

    Well Thomster it looks like they forgot to add the scheduler for updates back into the Forensics log with the new 8328 update. Just checked on mine.

    I'll flag it in the beta area (and credit you with the find of course !)

    Thanks for preserving my sanity Stapp :-)

  2. Hi, I'm hoping someone can figure this one out for me. I've been mostly running full screen apps over the last day so scheduled updates haven't been running as it's in Game Mode. However, I am getting notifications that updates have been downloaded and installed when I come out of Game Mode. I can not find any log entries to see what has been downloaded. The uppermost entry in the attached screenshot was a manual update I performed to try and see what was going on.

    Any pointers would be much appreciated.

    2017-12-30 11_44_52-Emsisoft Anti-Malware.jpg

  3. 28 minutes ago, Umbra said:

    I don't see any complexity in it, unless i'm too used to complicated things and i see it a child play :P

    If beta testers have to be told how tickboxes work then there is something wrong somewhere. It is not intuitive at all and will cause much confusion if it's released to 'ordinary' users. I seem to be saying the same thing over and over but I'm pleased you find it child's play Umbra.

  4. 1 minute ago, Frank H said:

    If you check a forensic record you will notice that the related component is 'Scheduler' and not 'Updater'

    Component -Updater- shows app and computer restarts required by a software update.

    Hi Frank, I really don't think this is intuitive - is there any chance of a re-think?

  5. Hi, the update went smoothly but the new logging system is anything but straightforward. I came here to post exactly the same question that Stapp had, which has been answered by Martin. Would it be possible to retain the original separate logs but keep this granular Forensic log too?

     

  6. Hi, yes I did a manual update and it worked.

     

    General Information:
     
    Update started: 12/09/2015 23:02:57
    Update ended: 12/09/2015 23:03:07
    Time elapsed: 0:00:10
     
    Update successful
     
    Detailed Information:
     
    26 modules, 7810783 bytes
     
    a2trust.dat (142278 bytes) - updated
    Signatures\BD\cevakrnl.rv1 (260333 bytes) - updated
    Signatures\BD\cevakrnl.rv3 (898024 bytes) - updated
    Signatures\BD\e_spyw.i00 (1287 bytes) - updated
    Signatures\BD\e_spyw.i19 (278740 bytes) - updated
    Signatures\BD\e_spyw.i20 (6299 bytes) - updated
    Signatures\BD\e_spyw.i22 (342575 bytes) - updated
    Signatures\BD\e_spyw.i24 (328691 bytes) - updated
    Signatures\BD\e_spyw.i27 (322099 bytes) - updated
    Signatures\BD\e_spyw.i28 (325999 bytes) - updated
    Signatures\BD\emalware.000 (322329 bytes) - updated
    Signatures\BD\emalware.508 (199355 bytes) - updated
    Signatures\BD\emalware.509 (212615 bytes) - updated
    Signatures\BD\emalware.511 (215033 bytes) - updated
    Signatures\BD\emalware.513 (142376 bytes) - updated
    Signatures\BD\emalware.515 (135966 bytes) - updated
    Signatures\BD\emalware.518 (171189 bytes) - updated
    Signatures\BD\emalware.519 (35516 bytes) - updated
    Signatures\BD\emalware.i06 (514192 bytes) - updated
    Signatures\BD\emalware.i12 (486751 bytes) - updated
    Signatures\BD\emalware.i13 (489181 bytes) - updated
    Signatures\BD\emalware.i14 (482410 bytes) - updated
    Signatures\BD\emalware.i72 (445698 bytes) - updated
    Signatures\BD\htmltok.cvd (68546 bytes) - updated
    Signatures\BD\sdx.ivd (982955 bytes) - updated
    Signatures\BD\update.txt (346 bytes) - updated
    • Upvote 1
  7. Yes, am seeing that here too. Looks like it's downloading a full variant.c01 each time. Log extract below:

     

    12 modules, 8847703 bytes
     
    Signatures\BD\e_spyw.i02 (256894 bytes) - updated
    Signatures\BD\emalware.105 (59493 bytes) - updated
    Signatures\BD\e_spyw.i22 (106636 bytes) - updated
    Signatures\BD\emalware.114 (145982 bytes) - updated
    Signatures\BD\emalware.106 (96220 bytes) - updated
    Signatures\BD\dalvik.cvd (341 bytes) - updated
    Signatures\BD\e_spyw.i21 (68361 bytes) - updated
    Signatures\BD\update.txt (346 bytes) - updated
    Signatures\BD\variant.c01 (8104519 bytes) - updated
    a2hosts.dat (440 bytes) - updated
    Signatures\20130915.sig (1518 bytes) - updated
    Signatures\30000201.sig (6953 bytes) - updated
  8. Hi bobbonomo,

     

    You can turn off Firefox's DNS prefetching by typing about:config in the address bar. When you get to the advanced settings page there is an option

     

    network.dns.disablePrefetch

     

    Setting that to true will disable this feature. Might be worth trying to see if you still get traffic to those sites.

     

    Also, there's

     

    network.prefetch-next

     

    This prefetches links on a page - you could try setting that to false in case there are links on a site you visit (they could be hidden links I suppose) that refer to these sites.

  9. Looks like GData Internet Security is running on your PC, if you definitely haven't installed it then you can download AVCleaner from here

     

    http://www.gdatasoftware.co.uk/support/downloads/tools.html

     

    I'd have a look in Programs and Features in Control Panel to see if it shows up there, if it does then remove it, reboot, run AVCleaner and reboot again.

     

    If it doesn't appear in the list then run AVCleaner anyway,

  10. Ok I'll try that and report back.

    But since EAM & OAP are related to each other shouldn't these items be wihite listed by default on both programs?

    Also OAP from time to time with the previous version used to give me pop ups in reference to EAM processes. Hopefully

    this will not happen anymore in version 6.

    I've been trying to duplicate this behaviour but can't get it to hang. This was on Win7 x64

    However, a very valid point has been raised - why are these not default exclusions?

×
×
  • Create New...