Search the Community

Hi there, I am having a bit of trouble with this one file that EMSI soft finds but can't remove. I have tried running various tools in regular and save mode. I have cleanned up most of the infections but I am stuck on this one. I have followed the instructions and attached are my first logs. EEKscan_181006-123205.txt FRST-181006-1236.txt Addition-181006-1236.txt

I am not sure if I am infected - but lately, I have had trouble connecting to the internet. In particular, I have had trouble connecting my VPN through my wifi. This is usually solved by logging in and out, but not always. I wanted to be safe so I am just wondering if you are detecting anything! I also made a scan with my EAM in addition to the other reports (scan_181009-123225.txt) scan_181009-123225.txt scan_181009-123854.txt FRST.txt Addition.txt

A Custom scan has found " Trojan Agent DFRF(B) in C:\Windows\ System32\wscript.exe " > I had a message box stating, " The following objects were not removed for your own safety - C:\Windows\System32\wscript.exe - Removing these items bears an unusually high risk of crashing your operating system during automatic cleaning, as these threats are deeply embedded ..........go seek technical help, etc". I followed the link in the announcement box and there were loads of options, none seemed to refer directly to this named Trojan Agent, so I decided to post the query here.

I had a system lockup this morning, just after logging in - unfortunately, I don't have debug logs for this, nor was I able to generate a dump file (I was half asleep and couldn't remember which keys to press on my keyboard 😪). Event Viewer has two errors relating to a2service - one in the System log and one in the Application log - see attached log files. I'm running Win 10 64 bit fully patched (version 1803 build 17134.228) with no other real-time security software. EAM System Error 31082018.txt EAM Application Error 31082018.txt

Emsisoft Anti-Malware 2018.9.0.8954 beta Appearance tooltip text is not shown.

Well, I've got it. What's different?

Win 10 EAM build 8954 Did my usual malware scan when I get a new EAM build to check if it works okay. I keep an Eicar test file (eicar.com.txt) in root of C drive. Today the scan got to 99/100 percent before eicar came up in the scanning window and then appeared as a detection when the scan result came up. This is a change in behaviour as it always caught it during the scan before.. not at the end. Have you changed something in the scanner?

When downloading a file from a website chrome instantly closes when the download finishes. Seems like te problem is most of the time zip files. But when I tried downloading chrome again it did crash also. Dont know if Emsisoft causes the problem. But sometime after a crash of chrome and starting chrome it says the message Emsisoft not compatible...... A customer has the same problem but doesn't download. After a while it seems chrome just closes automaticaly. I use latest BETA version, customer uses stable EDIT: Seems like explorer has the same problem. The file i tried is coming from https://vergecurrency.com, Chrome and explorer crashes after downloading Windows Tor QT Wallet debug.zip

My forensic logs don' t seem to be feeling very well I have tried dark mode, light mode, components, actions, but they all stay in little groups with the dates messed up. Nothing is in sequence order.

Hi. Can you help me get rid of this virus pleas? Regards Peter Forensics_180925-093725.txt

My computer has been infected by ransomware Virus.Win32.Swizzor!IK with links into Trace.Registry.VirusShield2009!A2 and back up into Trace.Registry.IMesh!A2 none of which the A-Squared can eliminate. Proposed was a phone number to call

I am using GT500.org as my control site for testing. It is added in surf protection list as a custom entry. Unsandboxed I went to GT500 using 3 different browsers. Edge ..it said blocked but it was on screen. Opera 45.... it did nothing and I went there without issue. Seamonkey 2.46 I was blocked. Screenshots attached. gt.zip

Thanks devs for this. I like it a lot

Win 10 8894 beta Where does EAM get the dates from for the cert details (see attached) What format are they in ? dd/mm//yyyy or yyyy/mm/dd or yyyy/dd/mm I don't see them in that format on my machine as it is set to dd/mm/yyyy and some even show date as, for example, 8th August 2018.

Win 8.1; update here was smooth... except there was a systray popup describing creation of a new(?) service, which doesn't normally happen. Did it change its name, or something?

A few observations on the latest beta: 1. This issue is still not fixed https://support.emsisoft.com/topic/29911-buid-8923/?do=findComment&comment=187246 2. Behaviour Blocker process list - if you use the scroll arrow to scroll down to the bottom of the list, it stops before it has shown all the processes and you can't make it go any further - you have to expand the list using the grab handle to be able to see the full list 3. If you disable all components from the system tray right-click menu, the icon for Anti-Ransomware disabled is a blue information icon rather than an orange exclamation icon

Addition.txtFRST.txtscan_180915-152837.txt

had not this been removed?

No updates at boot this morning and doing it manually it just says ...initializing. Debug logs for boot attached Of course it may be a server issue but thought I'd post just in case it wasn't. Also not able to send an email through the GUI about this. It said it couldn't due to a technical issue. a2start_20180912044229(7876).zip

Please see here for first reported instance https://support.emsisoft.com/topic/29560-scan-problem-with-8668/?tab=comments#comment-184696 It has happened again today however it is not stuck on memory this time as in the details for 'still scanning'' it says the scan has finished.

I'm confused by Christian's announcement a few minutes ago that the new GUI layout version of EAM has just been released... but with betas coming thick and fast, how on earth have you managed to choose a level of functionality that isn't already known to have problems? What build level is the new stable version?

Tool tips missing.. Under BB list....Suspicious Programs Under File Guard.. Only scan files with specific extensions.

Hello, after updating to 8906 beta 3, I clicked on "Custom scan" in "Scan & Clean" tab and got an error as you can see on the image. I sent a report and logs are included here. The issue was resolved after going to Custom scan via the standard menus. Also tried going to build 8843 stable and back to 8906 beta 3 again. Same results. After going back to 8943 stable, the UI got resized and covered almost whole screen (1920x1080). After updating to 8906 beta 3 the UI got much smaller and I had to resize it to see all tabs. Also it is pretty hard (at least for me) to grab the corners of the UI to resize it. Martin Edit: Sorry fot the language on the image, I am unable to make it speak english. Logs.zip

When I expand the menu I get a large number next to the quarantine menu entry but nothing is in quarantine?

Win 10 8894 Sent report Perhaps these logs may help? a2start_20180830092322(3208).zip