Search the Community

Showing results for tags 'Closed'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Malware Research Center
    • Help, my files are encrypted!
    • Help, my PC is infected!
    • Malware and Computer Security
    • Malware submissions
  • Company & Products
    • Customer Support
    • Beta Community
    • Feedback, comments, and suggestions
    • False positives
    • Emsisoft News
  • Other Languages
    • German Support - Deutscher Support
  • Private Zone

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Skype


Location


Interests

Found 751 results

  1. There is a fake Dell support group that have hacked my laptop, email and work computer and cell phone. I want to remove them permanently from my devices.
  2. Thankfully Detected the High RISKS but unable to Quarantine or Delete files. Please Help and instruction step by step solution. Files cannot be manually deleted ... access denied. Emsisoft Emergency Kit - Version 2017.8 Last update: 9/11/2017 4:27:34 AM OS version: Windows 10x64 Scan settings: Scan type: Malware Scan Objects: Rootkits, Memory, Traces, Files Detect PUPs: On Scan archives: Off Scan mail archives: Off ADS Scan: On File extension filter: Off Direct disk access: Off Scan start: 9/11/2017 5:59:43 AM C:\Users\J\AppData\Local\ctfardb\ctfardb.exe detected: Gen:Variant.Zusy.255923 (B) [krnl.xmd] C:\Users\J\AppData\Local\ctfardb\winvfdq.exe detected: Gen:Variant.Mikey.69550 (B) [krnl.xmd] Scanned 97670 Found 2 Scan end: 9/11/2017 6:08:15 AM Scan time: 0:08:32
  3. Hi - I just found out that at least 3 computers on my home network have the trojan SmartService(A) . It's possible my in-laws who live in part of the house also have it. I have no idea how it's moving between machines. At any rate, here are the logs from one of the machines, my laptop. I can generate logs from the other 2 machines as well if you require. Please let me know. Silvercloak FRST.txt Addition.txt scan_170830-205703.txt
  4. Hi, I get a full black screen at windows logon and do not have control to the computer (including accessing the taskmanager via ctrl+alt+del). I suspect it to be a virus / malware as I had earlier got a voice message during internet browsing, mentioning that the computer was infected by a virus and the voice asked to call a number (which I didn't) to get the computer unblocked. Find attached the requested files FRST_05-09-2017 20.50.27.txt Frits Addition_05-09-2017 20.50.27.txt
  5. Win 7 64 bit via manual updates ( with EAM service stopped in Services and program shutdown) Update finally installed after 12 minutes (I almost fell asleep ) I know it was a big download and instal,l but 12 minutes is a long time. I don't know a lot about page faults but they went up to a million during the install. Had a look around and all seemed ok, so I asked to do a malware scan. It asked to restart GUI to load things as usual. Page faults went up to 2 million during scan (hope I'm not getting to get obsessed with them!!) After it found my test file it brought up the new window to see if I would like to use Emsisoft as ''we found malware that managed to get through your current defence'' (much better wording now) I clicked on the option to see what would happen and it completely started up EAM again, even restarting the service !! At the same time EEK shut down and disappeared. Just in case they are of any interest I attach the debug logs. a2emergencykit_20170825191141(456).zip
  6. Did a manual update from last build 7964 and as it was ages since I last ran it, it took a long time to download and install updates (15 minutes) I had shut down EAM and stopped the service. All looked well with EEK so I ran a malware scan. When it got to about where my Eicar test file was Windows Defender popped up and said it had found a detection. I didn't realise WD was turned on as it had a yellow tick and said I needed to turn it on So EEK didn't get to find it as usual. I have no idea where WD has put my Eicar test file as it is no longer on my system and I cannot see it in WD quarantine as WD isn't turned on. Event viewer showed a little error for EEK so I am including it in the zip file with debug logs in case anyone wants to look at them. a2emergencykit_20170827125200(5548).zip
  7. EAM win 7 64 bit. I thought I'd check out surf protection so I opened up Protection... Surf protection... where I have the built-in list always showing. Started to type in the long box and unfortunately all my built-in list has now disappeared I opened and closed the GUI.. turned surf protection off and on, turned built in list checkbox off and on but there is nothing. Probably a reboot would fix it but thought I'd tell you first debug logs attached a2start_20170825140850(2244).zip
  8. To avoid potential confusion in the thread 'Problem with language selection' I'm starting one of my own. As I mentioned in that thread, I have the same problem of EAM loosing the language setting. In my case the preferred computer language is English and the location is Sweden. EAM keeps reverting from English to Swedish, sometimes totally, sometimes partially. Today I started my portable computer. It doesn't get used much and EAM reported 6 days since last update (I update manually there). The following happened: On startup, I saw that the EAM had reverted - as far as I could see, totally - to Swedish (SV) Set the language to EN Everything checked as being EN Restarted the UI Still everything is EN Restarted the UI once more. Still everything is EN Turned on Debug logging. Still everything is EN Closed the UI Restarted the computer Fired up the UI Overview tab is EN Clicked the tabs and sub-tabs in order, left to right Still EN until Settings, which is a bit of a mixture The sub-tab headings were EN Stuff under sub-tab General was Swedish (SV) and the language in the Language box also showed 'Swedish' Stuff under sub-tab Privacy was EN but 'Look up reputation' stuff was SV Stuff under sub-tab Updates was SV, though 'Update feed Stable' was just this (i.e. EN). Stuff under sub-tab Notifications was mainly SV but some EN: - Real-time detections - Removable device connections - Software updates - Don't show notifications in Game Mode - Notifications location - Email notifications Stuff under sub-tab Exclusions was EN Stuff under sub-tab Permissions was mainly EN but lead text in the Master Key box was SV Stuff under sub-tab License was SV Disabled Debug logging This has happened several times, so it seems reproducible with the computer in its current state. Note though that I've previously seen changes in other tabs and sometimes everything. I've sent the debug logs, referring to this thread.
  9. Does Emsisoft come with a firewall? Do I need to turn on windows firewall when Emsisoft is installed?
  10. Win 7 64 bit via autoupdater. Beta is running very smoothly so far. Malware scans and context menu scan both work well. It took 20 minutes before my laptop autoupdated after boot (debug logs below) For some reason Forensics show that I deleted the Application rule for Opera before the beta update (I didn't touch it, I promise, I didn't even open my browser either!!) see screenshot. I will have to follow this up, but when looking at a log in GUI, eg. updates, I went to Forensics and it refreshed with info on a scan I had done. The auto refresh knocked me back to the updates log. But overall at this early stage all is running well EDIT.. no issues with an autoupdate to Win 10 pro 64bit. a2service_20170825062028(924).zip
  11. Good afternoon everyone, I have a problem on my computer, I can not see the photos, The photos have this name. I dont know what it is and how to recover the photos, if you could help me. Since there was no image of any 'rescue' of the photos, I'm not sure if it's any ransomware or what it could be. scan_170818-144400.txtFRST.txtAddition.txt
  12. Hi, I downloaded the Emisoft software and ran a scan on my computer yesterday. 13 files were detected, 12 were low risk and looked unimportant for computer functioning (ad.click something or other, all of them). I quarantined all of the files. Now I am unable to open any files (pictures, pdfs, etc) on my computer, nor many programs (adobe, VLC, etc). The Emisoft scan tool is also constantly popping up on the screen without be prompted to. I went back in to restore the quarantined files just in case that caused the issue, but all of the low risk files have disappeared. The medium risk one was still there, however. When I went back in to access the log of the quarantined files from yesterday, only one file remained, which was deemed medium risk. None of the low risk files are there anymore. When I attempt to uninstall a program, I get the error message "RuntimeBroker.exe" .... "Server Execution Failed." When I attempt to open a program (ie. Adobe) is get the error message "The application was unable to start correctly (0xc0000005). Click ok close the application". I'm in the last few weeks of trying to complete my thesis and desperate to resolve this issue quickly, as I am completely helpless without my computer and it's stored contents. Thank you in advance for your help!
  13. The EAM notice contains the text in Finnish: Since these files are essential for Windows, you can't remove or export them to quarantine. scan_170729-224435.txt FRST.txt Addition.txt
  14. I have enabled all the protection setings including file guard, but after each and every restarts its get turned off automatically. is it a known issue?
  15. First scan, found adware in zip files and windows 10 kms activator. When i tried to quarantine your popup said if i did it could damage. What do i do? Wouldnt program find files that are bad to keep? I am a novice. ~email address removed to avoid member being spammed Shell24
  16. when u click "always block this" , there is no responding test with latest beta 7318 ,window 7 x64
  17. Shutdown Protection? I think we should not add that option to right click menu because when a ransomware comes as a crack or patch the user need to stop their antivirus to run that that file, they mention that in the download window. as the user searches for stopping the protection he will see and click on the shutdown protection button, boom all the files will be locked before he knows it. since we are not running in the background we can't do anything... I think the button should be like "stop protection" which will turn off automatic protection. since the behaviour analysis is running in the background we can block it... please reply and let me know if this suggestion worth of thinking...
  18. EIS 2017.6.0.7681 Windows 10 Pro Version 1703 OS Build 15063.483 64-bit Microsoft Edge 40.15063.0.0 With either EAM or EIS installed, I notice a distinct slowdown in the connection of Edge to IP addresses. This happens every single time I launch Edge or click on a link within a webpage. I have tested multiple high-end machines (i7 7700K, 64 GB RAM, 15+ Mbps networking speed) as well as different networks with speeds in excess of 80 Mbps. Edge connection to URLs\IPs is notably faster after EAM or EIS is uninstalled.
  19. Hey, I am a beta tester. I really want to test some products of emsisoft... is there any beta testing on going now? is there any way to join any program?
  20. I found a thread named Miner Problems similar to the issues I am having on your forums. I am running server03 in a VM. I tried to install EEK but it's telling me that KB2533623 is required to start it so I stopped. From the other thread it looked like running AVZ resulted in a fix. I would appreciate any help that you can give me. Attached are the FRST.txt and Addition.txt files. Thanks! Addition.txt FRST.txt
  21. All of this started 1½~ week ago. Bitdefender(free) started blocking 2 things, "item.dat" and "lsmo.exe". The second one got blocked every 3 hours on the second. This went on for around a week then suddenly nothing for a day or two. Then i noticed on my cpu/ram/hdd monitor that my CPU was overworking itself to death and say a file called "lsmose.exe" eating away at full power. I manually killed it and scanned the file with bitdefender which found nothing wrong with it, deleted it from my HDD. Then anywhere in a 3-8h window this guy would come back, so i froze its process with Process explorer so i didnt have to bother with it. This worked for a while but then a new file called "lsmosee.exe" got added and killed the first one and started chewing CPU. Now both of these got added everytime but only 1 of them would start up. Also at the same time these 2 where downloaded something killed my task manager if i had it open(but ignored process explorer) and it added 3 new scheduled tasks for system startup called "Mysa1", "Mysa2" and "ok". Mysa1 and ok wanted to start up DLL files in the same folder in the miner called "item.dat" and "ok.dat", item.dat has been stopped a week ago and never seen from again, never seen ok.dat probably stopped even earlier. Mysa2 does something with the cmd which i guess you will see in the logs. Yesterday bitdefender stopped and quarantined lsmose.exe and tagged it as a "trojan generic" but i manually scanned lsmosee.exe and it found nothing wrong with it. Also the schedules point to windows\debug where the 2 miners always appeared, but after bitdefender stopped lsmose.exe, lsmosee.exe started appearing in windows\help. lsmosee.exe was still on my HDD when i did the logs and the system start up schedules are also there but i turned them to inactive in case of PC crash or sudden restart, i always delete the schedules before i restart my PC but they get reactivated even if i dont delete them when the miner drop happens. Dont really dare to swap out from bitdefender atm since it's keeping part of the problem at bay. Edit: I also did the scans with lsmose.exe on my hdd before bitdefender got updated and caught it and the first scan did not detect it. Logs: scan_170727-052925.txt FRST.txt Addition.txt
  22. Updated EAM from 7213 to 7219 on Win 7 64bit. Turned laptop off. After a few moments turned it back on again (to confirm delay in boot fixed now) Then got to old user profile issue again. Had to log out and log in again as me. Attached are both sets of debug logs from the 2 boots this morning, plus the 4 event viewer errors 1508, 1502, 1515, 1511. Note the user profile service in this session said it had successfully started (1531) immediately before the errors. (Frank this user has a ticket with you for similar issue?) https://support.emsisoft.com/topic/26833-bootvorgang-korrumpiert/#comment-167652 a2guard_20170226055045(3236).zip ev4.zip
  23. Win 7 64 bit. Uninstalled EAM and rebooted twice. Updated EEK from 7677 to 7694. Did a scan and it found Eicar. At end of scan it offered to install EAM. No reboot needed after EAM was installed. Everything went perfectly P.S. I don't like the fact that no desktop icon appears for EAM when you use the EEK download P.S. Forgot to say thanks to dev team for offering choice to remove all logs and reports when uninstalling EAM.
  • Who's Online   0 Members, 0 Anonymous, 129 Guests (See full list)

    There are no registered users currently online