Jump to content

Search the Community

Showing results for tags 'Closed'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Malware Research Center
    • Help, my files are encrypted!
    • Help, my PC is infected!
    • Malware and Computer Security
    • Malware submissions
  • Company & Products
    • Customer Support
    • Beta Community
    • False positives
    • Emsisoft News
  • Other Languages
    • German Support - Deutscher Support
  • Private Zone

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start





Website URL







  1. After updating to 8323 Scheduler..Updates no longer appears in Forensics. (Please don't say this is a new feature ) No way to see what updates have been downloaded. Also see post by thomster here. https://support.emsisoft.com/topic/28950-beta-8323/?tab=comments#comment-180641
  2. Update went ok. I think the forensic logs actions/components things is great deal better. The 'restore down' problem is still there.
  3. Just wondering why in 8311 in C\Program files\EAM..... emsiclean.exe has a red cross on it.
  4. Win 10 Do a scan.. context menu scan of small desktop file will do. Close GUI afterwards. Go to Factory Default settings and select clear all logs and reset counters Check Forensics to make sure logs are gone. Close GUI. Open GUI and select scan Last scan result is showing (eg suspicious files have been found ) How does this happen if all scan logs have been cleared and counters reset?
  5. I cant delete plz help me... I was scan by emsisoft and AV detect this like suspicious behevior... But isnt delete the virus... And always start up with computer...
  6. Hi, my computer is infected with Rootkit SmartService. Any help getting rid of this virus and the srvpiaga.sys file would be greatly appreciated. I've attached my log files. Thanks in advance. FRST.txt scan_171126-103309.txt Addition.txt
  7. Almost slipped this one bye me. Smooth with no update issues
  8. Hi Kevin, I read a similar thread with a similar issue, in my case I got a persistent folder that comes up in my main PC and another two laptops... The location that shows is C:\ProgramData\simplitec and the tread is an Application.AppInstall (A) Note that, that folder is empty and it seems is a low risk thread. Please find attached the report and log that came up from Emsisoft. I really appreciated all your help and thank you very much in advance. Kind regards, John Lange Forensics_171120-135057.txt scan_171120-132841.txt
  9. This is the information emsisoft displayed to me, " Windows kernel files have been detected as infected. C:\Windows\explorer.exe As these files are essential for Windows to work, you can't delete or quarantine them now. The removal experts on Emsisoft Forum will help you to safely remove this detection for free. http://support/emsisoft.com . Below find attached the required Log files as directed to find a solution. scan_171204-142020.txt FRST.txt Addition.txt
  10. Я не могу сам удалить вирусы ! Мне сказали разместить отчёты и ждать помощи. ПОМОГИТЕ, ПОЖАЛУЙСТА !!!!scan_171129-231615.txt FRST.txt Addition.txt
  11. Hallo, mein Emsisoft-Programm teilt mir mit: Die folgenden Windows-Kernel-Dateien wurden als infiziert erkannt: C:\Windows\System32\wermgr.exe und sagt mir, ich solle das hier posten. Bitte um Support. Vielen Dank!
  12. Emsisoft Anti-Malware 2017.11.0.8247 BETA on Windows 7 x64 Home Premium SP1 Just performed an update to the latest beta. When notification box is shown I put the mouse pointer over "change blog" text link. The second row then blinks and this repeats each time you move the pointer away and back over the link.
  13. I was hacked! They got the info for my bank's debit card ($2000), my Discover Card ($200), my WalMart Mastercard ($0), and my PayPal ($700). The bank is not working with me so the $2K is gone. Discover and PayPal are helping but in the end I'm not sure how much that's going to cost me. The hackers tried to get into my email but Roadrunner saw it was coming from outside Texas and locked my email account. I contacted Roadrunner and the tech support found a long list of outside IP addresses and then found a Torpig. He then started a list inside my Notebook program of what we needed to do to get the system clean and to get my email going again. Everything was fine until he started listing the cost of the software he wanted me to buy... $300, $400, and $500-bucks for each the different packages. My bank account was in the minus $200-bucks and all my cards have been reported as Lost/Stolen so I had nothing. After telling the tech that I didn't have it, he had the gall to say he didn't believe me! He refused to help any further and said to call back when I had the money and then disconnected the chat window. At this point, I felt it was only going to get fixed if I did the work myself and I hit the Google search. There I found a number of softwares that promised the moon and yes, they did find a-lot of crap on my system. But then the other shoe dropped and they want $50 to $75-bucks to unlock and register the product; something that's in very short supply right now. So I turned to the Freeware listed... everything went from crap to clusterfu*k! My system slowed to the speed of an old 286-systems and some programs wouldn't even run. The freeware programs were not even listed to uninstall so a system restore was the only way. I went back far enough in time that it was before the system was hacked but I wasn't thinking; the damage is in the registry and the restore wouldn't touch it. Next, I changed every single password I could think of. Then I double checked and found the MS Firewall was down which didn't help matters. I used the MS Defender and Network Safety Check and plug what holes they could find. Since my Roadrunner email is still locked, I have been using my Gmail account. So I have the system cleaned-out the best I can and all the software and programs are updated. Pretty sure the Torpig is still there and the outside IP's are still open. Short of buy some high dollar software, which I cannot do at this point, I am at the end of what I think I can do. I found an eight page 'how to' fix but it has a long list of the files throughout the system that it says need to be deleted and then driving into the registry to change and delete items in there. Can I do that? Yes. But I just got the system fixed from the last 'how to' freeware crap so I'm a-little gunshy right now. That's when I remember this forum and how you helped me fix my Mom's system when she got hit. So here I am. I have WiFi router to replace for the security system and a few other small items to take care on the other two system but I'm here. I'll turn the sound way up so I can hear notification sounds. Thanks, David
  14. Repeated restarts do not resolve the issue. Requested logs are attached. Addition.txt FRST.txt scan_171124-163623.txt
  15. There is something going on here. I cannot find it, but it's here somewhere. Can you help? Files are attached. Thanks Scan_171126-135308.txt Addition.txt FRST.txt
  16. Hi, I've done the scans and now attaching the logs. Thanks, Deen FRST.txt Addition.txt scan_171128-092208.txt Scan_171128-094149.txt
  17. FRST.txt scan_171128-023526.txt Addition.txt
  18. I just had my licence extended by one year and when it was autoupdate time I got a notification slide that my licence had been extended by 365 days and that the new expiry day was in 400 days. Then another slide on top saying the normal hourly autoupdate process had been completed successfully. Is this 'double' slide supposed to stay on the screen as there was no progress bar for it to disappear and I had to close it manually. Also the licence extension was not shown in the Forensics logs... I thought it might have been.
  19. Autoupdate on Windows 10. No issues so far.
  20. I updated manually the EEK I already had. (took a while to install the updates ) I right-clicked on EAM taskbar icon and selected to stop protection. Then I did a manual scan with EEK which found my eicar test file. EEK then asked about my current protection etc etc and offered to enable Emsi protection for me. I clicked on it and EEK disappeared. EAM gui then came up in red. All protection disabled. It is not possible to re-enable protection by the individually tickboxes in the GUI (surf protection, file guard etc) EAM service is not running in taskmanager but is shown as running in services, There is no icon for EAM in taskbar and starting EAM from start menu only starts GUI but no protection is possible. I suspect a restart of machine will fix this. Here are logs of EEK and also EAM in case they help explain what broke EAM. EDIT,,, In case it's of interest added radar pre leak thing from event viewer. a2start_20171128055850(3148).zip a2emergencykit_20171128060322(3536).zip radar.txt
  21. Frank just wondering if you can see any reason why sometimes it takes so long for the first update of the day to happen after a cold boot on Win 7 (machine turned off at night) This morning it took 18 minutes from when protection first started. Yesterday 16 minutes. The day before that 2 minutes. The day before that 9 minutes. Auto updates during the day are fine and on time. Debug logs for today plus forensics .txt attached. a2service_20171024044106(852).zip Forensics_171024-050217.txt EDIT.. just noticed that it seems to want to update after cold boot at the same time of day as the last update the day before . Should it be doing that?
  22. After starting the chrome browser last evening my husband's computer displayed a popup that covered most of the screen with a message supposed from support.windows.com. The message said ** Windows Warning Alert ** Malicious Pornographic Spyware/Riskware Detected and that it was necessary to call 888 596 8332. He rebooted his machine and all seemed well until it came back this morning. I took photos of the messages and ran the requested scans and restarted (not a complete reboot) the machine. After rebooting Chrome opened automatically, but the message is not displayed. Screen shot photos and logs are attached. Thanks for your help, Katrina Adams. logs.db3FRST.txtAddition.txt
  23. I have downloaded all files and even paid the $39 to purchase the license. However I cannot ever delete or quarantine anything. Every time I try I get the same error which is: Runtime Error (at 65:231): Step 3 Error (170): The requested resource is in use. This is happening no matter what virus software I try to run. I hear good things about your so I tried it but still to no avail I cannot run anything. So I haven't been able to login with my subscription or anything since nothing will run. Addition.txt FRST.txt EEK Report scan_171122-204435.txt
  24. I have no idea how Bing got onto my computer but I resent the imposition so could someone please advise me how to dump it. Many thanks.
  25. Hi there, I scanned my computer a while back for malware and found out about what's in the title. Now I've been trying for a while to get rid of this shit and would really appreciate help as soon as possible. Files of the scans are located below, thanks again. Emisoft Scan.txt FRST.txt Addition.txt
  • Create New...