Jump to content

David Biggar

Emsisoft Employee
  • Posts

  • Joined

  • Days Won


Everything posted by David Biggar

  1. The same answer Fabian gave years ago still applies, though I realize that isn't suitable for some. Please email [email protected] if you'd like to pursue refund for Emsisoft Mobile Security within our 30 day refund window.
  2. Hallo Oli, Ich benutze Google Translate und meine Muttersprache ist Englisch. Möglicherweise wurde der vorläufige Termin für das Ende des Windows 7-Supports für 2021 verpasst. Wir werden es dann neu bewerten und wenn es möglich ist, die Unterstützung für Windows 7 zu erweitern, werden wir es tun. Andere Antiviren-Unternehmen verwenden ein Datum von 2022, enthalten jedoch Formulierungen, mit denen sie den Support vorzeitig beenden können. Wir haben diesen Wortlaut nicht aufgenommen und sie zu gleichwertigen Aussagen gemacht. Stapp, Claude, bitte kläre, ob mein Wortlaut verwirrend ist. Google.
  3. Well, we can't have you feeling like that! Let us know if you have any other problems we can help with.
  4. Thanks for updating rustyDusty, and for helping, JeremyNicoll.For anyone else reviewing this, the exclusion is made like this: Open Emsisoft Anti-Malware, click "Settings" then the "Exclusions" tab. Click 'add folder' in the exclude from monitoring section, navigate to the target folder "C:\Program Files\MPC-HC\" (or other location if you did not install it there), and click OK. Note: Exclusions only apply to programs started after the exclusion is made. To be effective, you may need to restart the process or program, or restart the computer, depending on the program being excluded. In this case, a reboot is recommended.
  5. Yes, it will attempt to reconnect at its next scheduled update usually. Thank you for letting me know it's working!
  6. Hello DuroTech We've just updated Emsisoft Mobile Security, and in some cases it is detaching from the subscription in the process. This should fix it: Open Emsisoft Mobile Security. Tap the pyramid of three dots in the bottom right corner. Tap your device's Google account name at the top of the menu. Tap logout. Wait 10 seconds. Tap login. Is it working again? If yes, there should be nothing else to do. If not, please let us know.
  7. Hello Aggy, I've sent you a private message with a possible solution. Let me know if you have questions!
  8. Hello Mark, 2FA can be done in more than one way - email for example, which you should be able to access from another device. In a situation where you'd need to wipe the phone, the carrier responsible for your phone number usually will issue a new SIM card and deactivate the old one so you can also receive text 2FA messages as needed. Extra hurdles involved, but that's the nature of the extra security brought by 2FA in the first place.
  9. Quite alright, and I'm glad you found the culprit. If you have any other active antivirus software on these computers, I would start there where conflict is concerned. You're also welcome to email as I'd mentioned before, so we can gather logs to see if there's something we recognise that can conflict.
  10. Isn't LabTech an automation / MSP / RMM software? It may be configured to install Emsisoft Anti-Malware if it is not detected at computer boot time. I'd check to see if perhaps it has been enabled in LabTech settings, as that would definitely explain it. The only instances of Emsisoft Anti-Malware being installed in the manner you're referring to that I'm aware of are all due to MSP type software. If that's not it, we should probably switch to email so we can gather some endpoint logs and see where it might be coming from, with a bit of research.
  11. Hello MartinB, All active antivirus can potentially fight with other active antivirus, and Emsisoft Anti-Malware is no exception. Often it will run alongside others with no trouble, but sometimes it cannot. Again though, that applies to all active antivirus products. Do you have software such as Repairtech's Syncro or Kabuto on any of these computers? Those are MSP (managed service provider) programs that can and often are configured to install and maintain software such as ours. Those two in specific are often used for Emsisoft Anti-Malware installation and maintenance. If for example you'd signed up for remote management service, that could have come as part of the package. Without knowing more of the situation, I can only make guesses such as that one. Emsisoft Anti-Malware has never to my knowledge been 'maliciously' installed. I'm not sure what the point would be, since it is designed to be cleanly uninstalled, has a free trial, and is designed to fight malware rather than be malware. If it keeps reinstalling itself though, that is a hallmark of MSP software activity. If you'd like, email me at [email protected], and I can help you dig a bit without risking sensitive information from any of the computers is posted on the public forum.
  12. Thank you, Mark. That's good to hear! I've read your support email thread, and it's being taken care of. We'll contact you there, since any sort of transaction details or keys would not be able to be shared via the forums anyway. Have a great day!
  13. Mark, No need to mail in again. We can take care of you there. Thank you for letting me know!
  14. Hello Mark, You're right, that doesn't seem right to me, either. Would you email us at [email protected] please, from the email address you use to log into MyEmsisoft? It is far easier for me to verify ownership and track down information to rectify the situation that way, and also faster for me to respond.
  15. Hello SteelWheel, I've sent you a private message with a possible solution. Let me know if you have questions!
  16. Thanks for confirming. If there's anything more our ransomware experts can provide or need in your situation, they'll post here. Good luck!
  17. The link isn't given. What we mean is the website address after you upload the files, and the site shows you what the ransomware appears to be. For instance: https://id-ransomware.malwarehunterteam.com/identify.php?case=0efc985e110efcb8d22bc0d8fbaf066cfd968ede That's what I get when I recreate the ransom note from your post and upload it. You may get something different, but I suspect that Maoloa is correct, and I see Amigo-A agrees.
  18. Please follow Stapp's request to upload a ransom note and an encrypted file to ID Ransomware, and show us the web address of the results. Otherwise, let's wait for one of our ransomware experts to weigh in, but I think this is probably Maoloa. Does the machine you were analyzing have PC Anywhere installed? That's what awhost32.exe could be from. I also see TeamViewer and PC Hunter etc. loaded at around the same time. Which if any of those programs are intentionally on the computer, and especially, configured to load on startup or user login? Process Hacker is a handy and optionally portable task manager replacement. Had you or any other users of the system used Process Hacker in the past? If you happen to still have ares666.exe, please keep it handy, but don't upload it unless requested by an Emsisoft employee or forum moderator.
  19. Hi Michael, We have a new page that better describes how to insert the Emsisoft Mobile Security activation code. Click here. Please don't forget Sebastian's request, so he can help with any separation of the license that might be necessary.
  20. Hello Jonathan. It looks like a translation file didn't update itself properly, and the restart reloaded it. Thank you for following up!
  21. Any time, and thank you for purchasing. If needed, you can reach out for support-related issues to us here, and of course via [email protected] Have a great weekend!
  22. Hello Cube! To migrate settings from a current Emsisoft Enterprise Console server to a new server, these steps should do the job: Disconnect all clients from current Emsisoft Enterprise Console server and then shut down Emsisoft Enterprise Console on the current server Install Emsisoft Enterprise Console on new server Close Emsisoft Enterprise Console on the new server, then stop the Emsisoft Enterprise Console services on new server named Emsisoft Enterprise Console Server Service and Emsisoft Enterprise Console Update Proxy Service. You can do this from the task manager's services list on some machines, or from the services list 'services.msc' on others Copy the following folder in its entirety from the current server to the new server: C:\ProgramData\Emsisoft Enterprise Console\Db\ Start Emsisoft Enterprise Console service on the new server, and the computer list(s) and such should be visible Reconnect all managed Emsisoft Anti-Malware computers via deployment or light packages as normal Let us know here or via email to [email protected] if you have trouble.
  23. My pleasure, Scott. No issues I'm aware of, no. As long as the encryption driver is doing its job before attempting to scan, that is. Let us know if you have trouble and we'll try to help.
  24. You're welcome Scott, Yes, wildcards can be used. You'll need to be sure the pattern is proper though. In your example of *.*\blahblah.exe, that would only match folders that have a dot in the name. Otherwise you'd use something like C:\*\blahblah.exe for example, or C:\*\*.blah where 'blah' is the extension you want to whitelist.
  • Create New...