Jump to content


  • Posts

  • Joined

  • Last visited

Everything posted by kjdemuth

  1. Hey all running EAM and also Beta ESS and came across these detections on my laptop. I ran EAM before and also ESS after a clean image to make sure it wasn't just ESS. Running Win 8.1 64 bit. Emsisoft Internet Security - Version 9.0 Last update: 4/29/2014 11:11:23 AM User account: Scan settings: Scan type: Quick Scan Objects: Rootkits, Memory, Traces Detect PUPs: On Scan archives: Off ADS Scan: On File extension filter: Off Advanced caching: On Direct disk access: Off Scan start: 4/29/2014 11:11:39 AM Value: HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLETASKMGR detected: Setting.DisableTaskMgr (A) Value: HKEY_USERS\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLETASKMGR detected: Setting.DisableTaskMgr (A) Value: HKEY_USERS\S-1-5-19\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLETASKMGR detected: Setting.DisableTaskMgr (A) Value: HKEY_USERS\S-1-5-20\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLETASKMGR detected: Setting.DisableTaskMgr (A) Value: HKEY_USERS\S-1-5-21-3397574334-2122873388-1719720996-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLETASKMGR detected: Setting.DisableTaskMgr (A) Value: HKEY_USERS\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLETASKMGR detected: Setting.DisableTaskMgr (A) Value: HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLECMD detected: Setting.DisableCMD (A) Value: HKEY_USERS\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLECMD detected: Setting.DisableCMD (A) Value: HKEY_USERS\S-1-5-19\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLECMD detected: Setting.DisableCMD (A) Value: HKEY_USERS\S-1-5-20\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLECMD detected: Setting.DisableCMD (A) Value: HKEY_USERS\S-1-5-21-3397574334-2122873388-1719720996-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLECMD detected: Setting.DisableCMD (A) Value: HKEY_USERS\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLECMD detected: Setting.DisableCMD (A) Value: HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS detected: Setting.DisableRegistryTools (A) Value: HKEY_USERS\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS detected: Setting.DisableRegistryTools (A) Value: HKEY_USERS\S-1-5-19\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS detected: Setting.DisableRegistryTools (A) Value: HKEY_USERS\S-1-5-20\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS detected: Setting.DisableRegistryTools (A) Value: HKEY_USERS\S-1-5-21-3397574334-2122873388-1719720996-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS detected: Setting.DisableRegistryTools (A) Value: HKEY_USERS\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM -> DISABLEREGISTRYTOOLS detected: Setting.DisableRegistryTools (A) Value: HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER -> NORUN detected: Setting.NoRun (A) Value: HKEY_USERS\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER -> NORUN detected: Setting.NoRun (A) Value: HKEY_USERS\S-1-5-19\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER -> NORUN detected: Setting.NoRun (A) Value: HKEY_USERS\S-1-5-20\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER -> NORUN detected: Setting.NoRun (A) Value: HKEY_USERS\S-1-5-21-3397574334-2122873388-1719720996-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER -> NORUN detected: Setting.NoRun (A) Value: HKEY_USERS\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER -> NORUN detected: Setting.NoRun (A) Scanned 56271 Found 24 Scan end: 4/29/2014 11:12:02 AM Scan time: 0:00:23 Any idea what might be causing these detections? I also currently have WSA and Sandboxie running in RT.
  2. Oh this sounds like some good news. Fabian can you give us a time during the week when this is going to happen? So I don't have to sit in front of my laptop and hit refresh every 5 minutes.
  3. Oh is it really MBAM? Thats what I was thinking. Man that stinks. I love MBAM. It's saved my butt on more than one occasion. Has anyone got a debug on mini dump and tried to figure out what the problem is?
  4. SOrry linx, Yes I'm running it in realtime. I already have the IP blocking off. I'm really sure where the problem could be in. I might try installed just MBAM and EAM again without either OA or geswall. Have there been any other reported issues with either software?
  5. ~ Whole Quotation Removed {Lynx} There are no issues with OA, geswall and EAM installed. The problem seems to be with malwarebytes.
  6. Hey, Windows xp pro sp3, running Online armor, geswall and malwarebytes. I installed without a problem. On re-boot EAM icon has a red dot on the corner. During this time the computer then becomes unresponsive. Unable to open task manager or anything else. Tried another full install without success. I had allowed and trusted EAM in OA during install. Has there been any other issues with malwarebytes?
  7. Everything seems to be running well here. 32bit xp pro. A2 5.0.033. Online armor and geswall running. Occasionaly I'll get a BSOD which gives me a generic driver issue error. Currently running 50k with firefox running. Updater, both manuel and auto are working great.
  8. ~ UNAUTHORIZED POST REMOVED ~ Only authorized personnel are permitted to post in response to Malware Removal threads.
  9. They get along very well. I chose not to run OA++ because I wanted A2 behavior blocking and OA hips together. I think that with both OA premium and A2 paid, it's one of the best combo's out there. OA is a highly rate firewall and hips program. A2 has excellent detection capabilites and awesome zero-day with it's behavior blocking and IDS. Now is also has all the new scanning options, not just on execution. OA also has run safer, keylogger and email filtering. Both run smooth and use little resources.
  10. All is well here on A2 xp pro 32 bit. The only thing that doesn't seem to be working is the shut down option under custom scan.
  11. I think what he means....If he installs OA++ ( which has the A-squared Scanning engines) and then installs A-squared 4.5 will they be compatable. OA++ has its own HIPS and program protection. I can honestly say that I would just install OA premium and then install a-squared 4.5. I woulnd't use OA++ and A2.
  • Create New...