Search the Community

Showing results for tags 'Closed'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Malware Research Center
    • Help, my PC is infected!
    • Ransomware First Aid
    • Malware and Computer Security
    • Malware submissions
  • Company & Products
    • Customer Support
    • Public Betas
    • Feedback, Comments and Suggestions
    • False positives
    • Emsisoft News
  • Other Languages
    • German Support - Deutscher Support
    • French Support - Assistance Française
    • Russian Support - Русская поддержка
    • Dutch Support - Nederlandse Support
    • Italian Support - Supporto Italiano
    • Polish Support - Polskie wsparcie
  • Private Zone

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Skype


Location


Interests

Found 677 results

  1. Emsi soft and other tools have cleaned this machine up, but because there are so many things out there that could hide, I thought I would run these logs by you to see if I missed anything. This computer's accounts were hacked about the same time Facebook was recently hacked. FRST-2018-10-10-1205.txt Addition-2018-10-10-1205.txt scan_181010-115115.txt
  2. Bonjour pouvez vous m'aider je n'arrive pas à supprimer un logiciel malveillant ,quand je le supprime il reviens toujours merci
  3. Hi, I'm running EAM on a Windows 7 machine. I've been getting scareware. EAM is not protecting against it coming in, but it does find the infection when I run a scan. It removes it and then later on it comes back. The file is found in <User>\Application Data\Local\Microsoft\Windows\INetCache\Low\IE. From what I've read, this infection is due to visiting a web site with a nasty java script. Question is how can I prevent the infection from coming back.
  4. Hello, I am not sure whether this is posted in the right place, since I am not sure that my laptop is infected at all. Since I don't know where else to turn to and since it might be related to Emsisoft Malware, I describe my problem here: Since about two weeks TLS 1.2 stopped working on my laptop. I switched it on one day and could not load any https pages anymore. I tried several browsers, all with the same symptoms. I disabled TLS 1.2 in IE11 and I could load most of the pages again as before. I can load them in IE, but not for example in Chrome which does not allow me to disable TLS 1.2. Some web pages like online banking etc. only allow access via TLS 1.2 and these are blocked for me now clearly telling me to update my browser to a safer version. Access is via Wifi, and all other devices going via that wifi don't have this issue. This includes one other laptop also protected by Emsisoft Malware and mobile phones. I switched off firewall and Emsisoft to check whether this might be a restriction from their side, but to no visible effect. I googled the Problem and followed several common pages recommending to clear SSL cache, browser history, cookies, whatever, but it didn't help. I even reinstalled Windows 10, but the Problem persisted. I am pretty sure that TLS 1.2 is at the heart of the Problem, that only my device is affected and that nomal settings resets don't seem to help. I wonder whether this could be some malware or virus so far undetected? Have you encountered such a case before? Any help or advice would be appreciated very much. Best regards, Jörg
  5. [email protected], variant graftor 183326 and 53843, variand strictor 83393 and 83319 and 58214
  6. Windows 10, version 2018.9.1.8968. Shortly after the slide that notified me EAM has been updated popped up, my Heroes of the Storm session started behaving strangely - mouse delays, inability to control cursor properly ingame. Things work fine outside of the game itself, and quitting EAM fixed the problem. Right now I have restarted EAM with all protections disabled.
  7. As of 2 days ago, my Steam installation no longer runs. Tonight I tried to launch Nvidia GEForce Experience to use Shadowplay to vidcap something, and it no longer runs either. I noticed a file in the EEK log that says it's whitelisted and comes from Intel, but I did not whitelist it and its name is vgnqwemqwejlk.exe or something equally inscrutable, which is one of the signs of malware. I have run sfc /scannow (no errors found) and reinstalled Steam and NVIDIA drivers/Experience and it doesn't help. I hope you can see something wrong in these scan logs- Thanks. Addition.txt FRST.txt scan_181005-191152.txt
  8. Hi there, I am having a bit of trouble with this one file that EMSI soft finds but can't remove. I have tried running various tools in regular and save mode. I have cleanned up most of the infections but I am stuck on this one. I have followed the instructions and attached are my first logs. EEKscan_181006-123205.txt FRST-181006-1236.txt Addition-181006-1236.txt
  9. I am not sure if I am infected - but lately, I have had trouble connecting to the internet. In particular, I have had trouble connecting my VPN through my wifi. This is usually solved by logging in and out, but not always. I wanted to be safe so I am just wondering if you are detecting anything! I also made a scan with my EAM in addition to the other reports (scan_181009-123225.txt) scan_181009-123225.txt scan_181009-123854.txt FRST.txt Addition.txt
  10. A Custom scan has found " Trojan Agent DFRF(B) in C:\Windows\ System32\wscript.exe " > I had a message box stating, " The following objects were not removed for your own safety - C:\Windows\System32\wscript.exe - Removing these items bears an unusually high risk of crashing your operating system during automatic cleaning, as these threats are deeply embedded ..........go seek technical help, etc". I followed the link in the announcement box and there were loads of options, none seemed to refer directly to this named Trojan Agent, so I decided to post the query here.
  11. I had a system lockup this morning, just after logging in - unfortunately, I don't have debug logs for this, nor was I able to generate a dump file (I was half asleep and couldn't remember which keys to press on my keyboard 😪). Event Viewer has two errors relating to a2service - one in the System log and one in the Application log - see attached log files. I'm running Win 10 64 bit fully patched (version 1803 build 17134.228) with no other real-time security software. EAM System Error 31082018.txt EAM Application Error 31082018.txt
  12. Emsisoft Anti-Malware 2018.9.0.8954 beta Appearance tooltip text is not shown.
  13. JeremyNicoll

    CLOSED Beta 8961

    Well, I've got it. What's different?
  14. Win 10 EAM build 8954 Did my usual malware scan when I get a new EAM build to check if it works okay. I keep an Eicar test file (eicar.com.txt) in root of C drive. Today the scan got to 99/100 percent before eicar came up in the scanning window and then appeared as a detection when the scan result came up. This is a change in behaviour as it always caught it during the scan before.. not at the end. Have you changed something in the scanner?
  15. When downloading a file from a website chrome instantly closes when the download finishes. Seems like te problem is most of the time zip files. But when I tried downloading chrome again it did crash also. Dont know if Emsisoft causes the problem. But sometime after a crash of chrome and starting chrome it says the message Emsisoft not compatible...... A customer has the same problem but doesn't download. After a while it seems chrome just closes automaticaly. I use latest BETA version, customer uses stable EDIT: Seems like explorer has the same problem. The file i tried is coming from https://vergecurrency.com, Chrome and explorer crashes after downloading Windows Tor QT Wallet debug.zip
  16. My forensic logs don' t seem to be feeling very well I have tried dark mode, light mode, components, actions, but they all stay in little groups with the dates messed up. Nothing is in sequence order.
  17. Hi. Can you help me get rid of this virus pleas? Regards Peter Forensics_180925-093725.txt
  18. Philgreen

    CLOSED Virus infection

    My computer has been infected by ransomware Virus.Win32.Swizzor!IK with links into Trace.Registry.VirusShield2009!A2 and back up into Trace.Registry.IMesh!A2 none of which the A-Squared can eliminate. Proposed was a phone number to call
  19. I am using GT500.org as my control site for testing. It is added in surf protection list as a custom entry. Unsandboxed I went to GT500 using 3 different browsers. Edge ..it said blocked but it was on screen. Opera 45.... it did nothing and I went there without issue. Seamonkey 2.46 I was blocked. Screenshots attached. gt.zip
  20. Thanks devs for this. I like it a lot
  21. Win 10 8894 beta Where does EAM get the dates from for the cert details (see attached) What format are they in ? dd/mm//yyyy or yyyy/mm/dd or yyyy/dd/mm I don't see them in that format on my machine as it is set to dd/mm/yyyy and some even show date as, for example, 8th August 2018.
  22. JeremyNicoll

    CLOSED Beta 8954

    Win 8.1; update here was smooth... except there was a systray popup describing creation of a new(?) service, which doesn't normally happen. Did it change its name, or something?
  23. Addition.txtFRST.txtscan_180915-152837.txt
  24. had not this been removed?
  25. No updates at boot this morning and doing it manually it just says ...initializing. Debug logs for boot attached Of course it may be a server issue but thought I'd post just in case it wasn't. Also not able to send an email through the GUI about this. It said it couldn't due to a technical issue. a2start_20180912044229(7876).zip