Jump to content

Search the Community

Showing results for tags 'Closed'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Malware Research Center
    • Help, my files are encrypted!
    • Help, my PC is infected!
    • Malware and Computer Security
    • Malware submissions
  • Company & Products
    • Customer Support
    • Beta Community
    • False positives
    • Emsisoft News
  • Other Languages
    • German Support - Deutscher Support
  • Private Zone

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start





Website URL







  1. EAM 7424 on Win 10 Creators Build. The Flash Player Settings Manager in Control Panel will not open unless EAM service is turned off. Debug logs attached. I turned EAM service off and on twice Frank just to make sure that EAM was responsible. a2guard_20170426152920(5700).zip
  2. I get the message shown in attachment. Result from Emergency Kit Scanner attached. I cannot open FRST64. scan_180504-100342.txtscan_180504-100342.txtscan_180504-100342.txt Help, please! Yrs Torben Jensen
  3. Just noticed that the Core...Notification is missing in my Forensics log for this morning's 5.40 am auto update. (Thank goodness the logs were set to show default or I may have missed it )
  4. Hi, I just done a scanner with emisoft Emergency kit scanner and when i pressed on quarantine selected objects appears a message to me that says that these ones can't be removed, what can i do? C:\Program Files (x86)\Common Files\Over-Find\uninstall.exe C:\Program Files (x86)\Rabat\1317.exe C:\Program Files (x86)\Rabat\8461.exe C:\Program Files\0CQJLD2DYU\uninstaller.exe C:\Program Files\0PIEFBC8QC\uninstaller.exe C:\Program Files\1IUXO22K7E\uninstaller.exe C:\Program Files\3NNRG6D7TO\uninstaller.exe C:\Program Files\65NC92JAA6\uninstaller.exe C:\Program Files\8AT4HIRP9O\
  5. I now have 2 n/a entries in BB list. Are they both the famous MEM compression? EDIT in Process Explorer... Pid 2348 is Mem compression Pid 96 is listed as Registry..NT Kernel & System
  6. Win 10 build 8555 Noticed last night that I have produced no debug logs from the 3rd April onwards. The last thing that all the logs say on the 3rd is that I disabled logging at boot (you know I wouldn't do that EAM did it !!) Looking at Forensics it was during boot and a restart of EAM was requested. No mention of debug logging being turned off in Forensics. Find attached debug logs for that short time which show logging being turned off. a2guard_20180403043818(7332).zip
  7. Some weeks ago i noticed that my CheatEngine now closes itself about 10 secs after i try to use it, no matter what. According to message at the top of cheatengine.org' main page and to this topic https://github.com/cheat-engine/cheat-engine/issues/247 there is supposed to be some malware targeting CheatEngine. Also, every time i try to find solution for that problem by typing requests like "CheatEngine crash" or CheatEngine malware", my browsers tend to close immediately. That affects absolutely all browsers, installed and portable, even ones running in Comodo Sandbox.
  8. Hi again, Kevin, hope all is well with you. My system has become noticeably slower, and Windows Explorer (not MIE but the local system file browser) crashes with "Windows Explorer has stopped." I have run the System File Checker with "sfc /scannow" and all system files appear to be fine. EIS reports no issues, nonetheless, something is infesting my PC and causing the problems described as well as numerous other annoying anomalies.. Logs attached. Thanks in advance for waving your magic wand over my system. Again. FRST.txt Addition.txt scan_180419-205206.txt
  9. hi , i just ran quick scan with emsisoft antimalware and it detected DKOM.DoublePulsar(A) in OS Kernel and is unable to remove that. since i just ran out of trial period so as per forum rules the stable version of emsisoft anti malware will act as portable version of emsisoft emergency kit. Also I am using realtime eset protection and eset did not detected any thing. attached are the logs and image of detection. windows 8.1 Addition.txt FRST.txt Forensics_180419-031813.txt
  10. Just got this through updates (any info?)
  11. Hello I keep getting variations on this detection: Location: SHA1: 4EE29875C8322D363CDDC9492AC8C50FB8B61257 Detection: Behavior.Worm Detected by: Behavior Blocker Is this a concern and if so how can this be resolved?
  12. I have been troubleshooting a browser issue and as part of that troubleshooting on Win 10 machine I turned off protection via the EAM right-click taskbar option. When I turned it back on I waited the few seconds it sometimes takes for it to turn green again. It didn't. I couldn't turn on protection for the items via the GUI tickboxes. It said I needed to do a restart of machine. Happened around 7am in debug logs. After restarting machine all is well. a2guard_20180329070237(5520).zip
  13. Build 8555 updated smoothly (on my W8.1 64bit system), but since then I've noticed that a) the systray icon was hidden; it was possible to turn its display back on via the systray Customisation thing, but this is not normally needed b) I'd downloaded a copy of FRST64.exe; I right-clicked it and chose EAM scan... and nothing seemed to happen - I expected the GUI to be displayed and be told the scan result. I've repeated this and once the GUI has popped up. But I also get instances of the mouse pointer just becoming a revolving blue circle. Moving it towards the taskbar doesn't make
  14. LS, I have recieved an extorsion mail by someone who states to have infected my PC with a trojan horse virus and claims to have control over my microphone and camera. I have Emsisoft AntiMalware installed, daily updated and running (version 2018.2.1.84830). Scans do not deliver any infection or risk. Can you pls check if some kind of trojan horse is installed? I have run the advised/mandatory scans. Pls find the logs attacched. Hope to hear fron you soon, Michiel Addition.txt EEK 20180330 Forensics_180330-190037.txt FRST.txt
  15. Win 10 8528 Does game mode persist across a cold boot ? (fast boot turned off)
  16. Just was told my computer needed a restart to install a new build. Cannot find any info about this build. What has changed? EDIT... Just seen the Emergency Kit Maker.
  17. I have followed the instructions you provided and it asked to post remaining items here. Thanks for your help. a2scan_180304-012901.txt Addition.txt FRST.txt
  18. Hello Guys, I just runt EMISOFT Emergency Kit and I have been alert on this virus in this directory : \DosDevices\PhysicalDrive4 The message said that the sofware is not allowed to clean it to avoid destruction of the system Win. Can you help me to clean this signature ? Thank you for your answers Dominique
  19. When I tried to install a program, the computer said that svchost was created by an unknown publisher that wanted to make changes to my computer. The same applies anytime I try to open any program as an administrator. I scanned C:\windows\svchost.exe and it had a worm. Figured I'd ask you experts for help. Thank you in advance. Addition_06-03-2018 21.33.33.txt FRST_06-03-2018 21.33.33.txt scan_180306-212820.txt
  20. I used the software because there was a lot of trojan in my laptop, it works perfectly but it also deigned suspicious those that are not infected files. A thousand + files and it deleted it. Now i cant open anything from my laptop even the microsoft offices. It only says java.exe or explorer.exe is an error and cant be opened.
  21. Whats going on? I scanned with emsisoft antimalwares custom scan but no threats was found. Here are farbar logs: FRST.txt Addition.txt
  22. Can't delete or fix this, when i run the program, it finds a "Application.Bitcoinminer.RD" on C:/Windows/Microsoft/svchost.exe:settings
  23. When you first ever do a scheduled scan and go to that page to select a time and frequency, is there already some pre-selected time and day of the week there for you?
  • Who's Online   0 Members, 0 Anonymous, 102 Guests (See full list)

    There are no registered users currently online

  • Create New...