Jump to content

Arief Prabowo

Emsisoft Employee
  • Content Count

    5306
  • Joined

  • Last visited

  • Days Won

    47

Everything posted by Arief Prabowo

  1. Hi Haydn, If the issue is repeated, I guess you should also check the entire devices in your network too, since they all will use the same IP when connected to Google. This Google protection is usually to prevent any applications, or maybe bot, browser extensions, etc, for making a tons of query to Google at the same time. If you need help to check your computer, I can forward this to the appropriate forum section so our support team can assist you. Regarding McAfee, I personally not recommend to install multiple antivirus programs because it may causing conflict.
  2. Thank you. Since the reported file was detected by our BitDefender engine, therefore we will forward this to BitDefender for further analysis. Any false positive detections or misclassification that may found during analysis will be fixed as soon as possible.
  3. Hi, yes it could be false positive. Can you please open the Quarantine and submit the file as "False detection" so we can check them?
  4. Okay, I will move this to our support forum then.
  5. Did you see any entries related to Windows Update being blocked in our Logs? Without the complete logs and copy of the blocked files, it's hard to verify it. If you don't mind, I can forward this topic to our Support forum, so our support team can assist you to find out what was wrong.
  6. Hi there, I guess it's not from the Windows Update, but from another application. Maybe you running a setup at that time, or there's auto-update from external application that is running in the background. This alert indeed could happen sometimes with legitimate application, for example when the file is not digitally signed. However without the actual file, I can't verify it. It's not quarantined maybe because the file is already deleted by the setup process.
  7. Yes, it just default file naming issue and has been corrected.
  8. Hi, thanks for the information. In case the malware is not detected yet, you can upload it to our malware submissions forum.
  9. Thank you for your submission. The malware file is already detected by Emsisoft.
  10. It will be sent to analysis team. If the file is indeed malicious, the signature will be added to our database.
  11. No, because it would highly impacting the computer performance.
  12. Because the File Guard is not looking up to AMN, and probably signature for that file is not added to database yet. Anyway, another user send me the same malware file yesterday and I've created signature for it, therefore it would be blocked by File Guard as well now.
  13. Hi there, the file quarantined automatically when I execute the file. What do you mean with auto remove?
  14. Since whitelisting the entire folder also didn't work, so I assume this is another issue. Unfortunately I'm also unable to replicate this issue. Therefore, I will move this to the appropriate forum so our OA developers can take a look at it.
  15. Hello, could you please tell me which Macrium file are being blocked by OA?
  16. From what I can see based on your story, I think there is suspicious thing on your machine but our product didn't detect anything. That's why I forward you to this forum. Our technical support team or the malware removal specialist team will analyze your issue, so they can make sure that, whether your PC is infected or not. That's why the initial guide post ask you to send us several files to analyze. In case there is a potential bug that was caused Emsisoft to terminate itself, the team will report their findings to the Developer Team, or if they found undetected malware they will forwar
  17. Hello, welcome to our forum. Because your post is not relevant to malware submission, so I will forward this to the appropriate forum. Also, as mentioned by stapp, please follow this guide first. Thank you!
  18. This forum section is used only to submit new malware. I assume you need removal help, so I will move this topic to the appropriate section.
  19. The Emsisoft malware research team has discovered a new outbreak of the Windows Active HotSpot. Emsisoft Anti-Malware detects this malware as Rogue.Win32.ActiveHotSpot. Windows Active HotSpot is a rogue scanner application. A rogue application tries to trick you by displaying false positive or misleading scan results report, which says that your computer has a problem, or infected with viruses or trojan, but you will not be able to fix it before you purchase this fake program. Created files: %AppData%\guard-[random].exe %AppData%\result1.db %UserProfile%\Desktop\Windows Active HotSpot
  20. The Emsisoft malware research team has discovered a new outbreak of the Windows Cleaning Toolkit. Emsisoft Anti-Malware detects this malware as Rogue.Win32.CleaningToolkit. Windows Cleaning Toolkit is a rogue scanner application. A rogue application tries to trick you by displaying false positive or misleading scan results report, which says that your computer has a problem, or infected with viruses or trojan, but you will not be able to fix it before you purchase this fake program. Created files: %AppData%\guard-[random].exe %AppData%\result1.db %UserProfile%\Desktop\Windows Cleaning
  21. Hi Patrick, welcome to the forum. Anyway, this section is for malware submission. Regarding your problem, spam is not always caused by malware, but if you want make sure whether your computer was infected by malware (spam bot) or not, or need help of malware removal, please go to this section: http://support.emsisoft.com/forum/6-help-my-pc-is-infected/ This post will be moved to that forum as well.
  22. The Emsisoft malware research team has discovered a new outbreak of the System Doctor 2014. Emsisoft Anti-Malware detects this malware as Rogue.Win32.SystemDoctor2014. System Doctor 2014 is a rogue scanner application. A rogue application tries to trick you by displaying false positive or misleading scan results report, which says that your computer has a problem, or infected with viruses or trojan, but you will not be able to fix it before you purchase. Create new files: %AppData%\[random]\ %AppData%\[random]\WindowsSecurityUpdate.exe %AppData%\[random]\[random].exe %AppData%\[random]\[
  23. Alternatively you can check the file with VirusTotal and then just give me the scan report link.
×
×
  • Create New...