Search the Community

Showing results for tags 'Closed'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Malware Research Center
    • Help, my files are encrypted!
    • Help, my PC is infected!
    • Malware and Computer Security
    • Malware submissions
  • Company & Products
    • Customer Support
    • Beta Community
    • Feedback, comments, and suggestions
    • False positives
    • Emsisoft News
  • Other Languages
    • German Support - Deutscher Support
  • Private Zone

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Skype


Location


Interests

Found 719 results

  1. C:\Windows\system32\wbiosrvp.dll --- Trojan.GenericKD.4561291 (B) [krnl.xmd] The infected file is located deep in the root directory of the operating system. Emsisoft Internet Security version 2017.4.1.7484 can not solve this problem. I ask for help in solving the problem. Addition.txt FRST.txt scan_170519-165318.txt
  2. Hi everybody, I am not English native so I apologize for possible errors. Software running on my PC: - OS: Windows 7 Pro 64 (regularly updated) - AV: Avast Free Antivirus - AM: Emsisoft Emergency Kit (2017.4.0.7437) - FW: Comodo Firewall 10 I have been using this machine for a couple of years, more or less. The antivirus and firewall are always running in background and I use both Avast and Emsisoft Emergency Kit (which is placed on one of the internal drives) every now and then for virus and malware scanning. I didn't notice anything strange, everything was smooth and fine, Avast all green (Protected), no viruses found (both by quick and full system scan) and EEK always tells me "0 detected" (malware scan). Yesterday, influenced by the "Wanna Cry Crisis" I ran another malware scan with EEK, 0 detected as usual. Then I decided to do a Custom Scan (which I have never done before, apparently), I left all the default settings and gave it a go. The scan took much more time than usual (that's normal) but this time two objects were detected (see attached log). Both files were located on F:, which is a data partition on a HDD I moved into this machine from a previous computer running Windows XP, for what I know they could have been there for years, doing what? I don't know, as I said I have never experienced anything strange. I quarantined the two files then I rescanned with EEK (Custom Scan) to confirm the system was clean. I got a "0 detected" from EEK but Avast showed me an alert about an infection (Win32:Malware-gen) coming from a2emergencykit.exe (which is inside the EEK folder). According to Avast the process was blocked before any damage was done. I ran a full system scan and a boot time scan with Avast, both negative. I then ran EEK Custom Scan twice, "0 detected" but both times Avast showed the same alert about a2emergencykit.exe. Again Avast full system scan, negative. In short, it seems I get an Avast alert each time I do a EEK Custom Scan (the standard Malware Scan doesn't trigger the alert). Anybody can help me to understand what is happening? scan_170517-202303.txt
  3. Using the latest EAM 2017.3.0.7318 beta on Win 7 HomePremium SP1 x64. Some good files in behavior blocker tab are still marked as Unknown. In stable version those are also shown first when I open GUI but are removed after few seconds. Online check confirms them as Trusted in AMN. Are there some AMN problems?
  4. On 6963 and 6971 there is a small graphics error and I have been trying to find what triggers it and an the moment I cannot. Perhaps it is a Windows session thing I don't know. I do a malware scan, look at reports, etc then back to main GUI then open logs and I see this in the screenshot.
  5. Good day! I would like to report a minor issue with this product's beta, the issue is that if a known malware is detected - the file is being moved to the quarantine without any notification, despite the function for detection notificiation being turned on. No game mode was enabled.
  6. After autoupdate of EAM on Win 7 64bit I decided to plug in a small usb drive to test the new 'scan anyway' option. Plugged in usb stick and selected scan anyway from slide option. No issues. Thought I would copy my eicar file from C drive to G (usb) to see what would happen. Laptop locked up solid and I had to do a hard reset Windows Event Viewer showed Log Name: Application Source: Application Error Date: 25/03/2017 06:25:43 Event ID: 1000 Task Category: (100) Level: Error Keywords: Classic User: N/A Computer: ****-PC Description: Faulting application name: a2service.exe, version: 2017.3.0.7318, time stamp: 0x58d5820f Faulting module name: ntdll.dll, version: 6.1.7601.23677, time stamp: 0x589c99e1 Exception code: 0xc0000374 Fault offset: 0x00000000000bf3e2 Faulting process id: 0x11a8 Faulting application start time: 0x01d2a52fa0796f96 Faulting application path: C:\Program Files\Emsisoft Anti-Malware\a2service.exe Faulting module path: C:\Windows\SYSTEM32\ntdll.dll Report Id: df563e36-1123-11e7-a79c-c80aa971b42a Event Xml: <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> <System> <Provider Name="Application Error" /> <EventID Qualifiers="0">1000</EventID> <Level>2</Level> <Task>100</Task> <Keywords>0x80000000000000</Keywords> <TimeCreated SystemTime="2017-03-25T06:25:43.000000000Z" /> <EventRecordID>90286</EventRecordID> <Channel>Application</Channel> <Computer>****-PC</Computer> <Security /> </System> <EventData> <Data>a2service.exe</Data> <Data>2017.3.0.7318</Data> <Data>58d5820f</Data> <Data>ntdll.dll</Data> <Data>6.1.7601.23677</Data> <Data>589c99e1</Data> <Data>c0000374</Data> <Data>00000000000bf3e2</Data> <Data>11a8</Data> <Data>01d2a52fa0796f96</Data> <Data>C:\Program Files\Emsisoft Anti-Malware\a2service.exe</Data> <Data>C:\Windows\SYSTEM32\ntdll.dll</Data> <Data>df563e36-1123-11e7-a79c-c80aa971b42a</Data> </EventData> </Event> Attached are debug logs (thanks a lot for the new 'enabled always' option for debug logging :)) a2start_20170325061834(4712).zip
  7. Using EIS on Win8.1 x64 This looks to me as if it acts identically to the existing Behaviour Blocker component on that tile, which makes it a marketing thing rather than a technical feature. Am I missing something?
  8. Using EIS on Win8.1 x64 That was: "Improved: Main program windows position when the program opens outside of the visible desktop". If this is in response to my problem report: then I'm afraid I find no difference in behaviour. A main window that's mostly dragged off-screen, on which one 'accidentally' clicks on the 'Emsisoft' logo and consequently has the About pane open, still opens that pane off-screen where one cannot know that that has happened (on W8.1 anyway). There's no clue in the thumbnail one gets on the taskbar, and one can't drag the main window back on to the screen. If it's a fix for something else, then it would help to know what that is!
  9. Two machines just auto updated to this new buiid No issues at this point.
  10. Hi When I opened Firefox a short while ago, my screen was taken over by what purported to be a Firefox Update screen notifying me that my version of Firefox was out-of-date. Within the screen was a rectangular box showing the update "55.8.7.js" along with some additional text that I can’t recall but it did include “dl.dropboxusercontent”. I didn’t click on Save or Cancel but on the close “x” button. I use EAM and uBlock Origin. I’d be most grateful if one of your specialists would check my system in case any malware got through. Thank you. scan_170517-181051.txt FRST.txt Addition.txt
  11. EAM on Win 7 64bit after autoupdate to 7424 When I set up the scan setting to auto scan at usb insertion, I then tried it out. 1st point.. the right hand slide comes out and still says..''It isn't necessary to initiate a manual scan of this device. Scan anyway'' 2nd point... there is no indication in EAM taskbar shield that a scan is running.
  12. Please help me in this regard scan_170519-181536.txt
  13. Can't seem to make this go away.... Please advise
  14. scan_170517-115156 EEK.txt Hi there ! I made a lot of scans but only EEK is able to detect this. But it can't kill it or quarantine it. in copy, there is EEK scan, addition + FRST scans, and i add a screenshot of the A² detection. Thank u for your time ! Addition.txt FRST.txt
  15. EAM on Windows 7 64bit. Turned on laptop and was logged in with a temp profile. Logged out and back into my own profile. EAM started autoupdate and never finished it. Some things such as taskmanager etc were slow to respond. In the end I rebooted (went straight to my own profile as normal this time) EAM has not attempted to update again and still says last update was yesterday when I hover over taskbar icon. I may attempt manual update later, however I think something is broken Find attached debug logs, screenshot of GUI and update log. update log.txt a2service_20170201065719(1116).zip
  16. Hello Gentlemen, I have this issue about a very important 35-MB .PDF. I finally could get this *.pdf file and for the first time in years I find it for free on a torrent link. If it is clean and the five results in the cloud scan are null, it is OK. I am very anxious to open it I lost a good version of it last December in the Cerber Ransomware Attack If you please send me the cleaned version via my mail to study. = If you disinfect it, thank you. = If you tell me how to disinfect it safely, thank you. = If you tell me how to use it EXACTLY and does not get infected. Upload to Google & Read on-line? Open in the Browser? Simple Virtual Machine Software? Unactivated Windows 8.1 Reader? David Fayez Test URL / Me / Today https://www.virustotal.com/en/file/a8be7ce183859a837095a8de6519aa2ed86e95ce668a3b3d23fea75ef98e8fb2/analysis/1494591017/ Transparent minds_ Narrative modes for presenting consciousness in fiction.pdf
  17. EAM 2017.4.1.7484 beta on Windows 7 SP1 x64 HomePremium always installs a2dix64.sys component....as many times as I try to update it.
  18. Updated to beta from a clean 7222 install on Win 7 64bit. Still shows the horrible, horrible installer is not responding error when installing. I cannot begin to understand why the devs think this is acceptable and will not fix it. Before debug logging used to work for EEK if I already had it turned on for EAM, but now it doesn't. It has to be turned on separately. Scan worked okay and all looks well (apart from the horrible installer :))
  19. Gentlemen: I recently got infected by a piece of malware that locks me out of all my cleaning tools. It won't let me install any new tools to deal the the problem. It has even gone so far as to now allow me to reinstall Windows 10. While your software did remove some of the issues others remain and when after a reboot it notified me that those files could not be moved and thus on a rescan they remain detected. Am posting a copy of your report from the scanner. An assistance you can provide would be helpful as I wish to regain access to my cleaning tools and to reinstall Windows 10 if needed. Turtle Scan.txt
  20. Hello, and thanks for Emsisoft. Whatever I have, boots everytime my system boots and affects BIOS/ UEFI, extremely difficult at least for me. I have found very little information on the web about it . Plese help, I dont think my laptop will really be free of "the problem" unless the Boot corruption is fixed. scan_170428-160439.txt FRST.txt Addition.txt
  21. Hello, first of all I do not know if this topic is going to be here ... secondly, I comment them to install their software and I detected 4 threats that I proceeded to remove, asked me to restart and I can not open many of the programs , Error 0xc0000005. I can not run the start menu, the task manager among other things. can you help me? Sorry, i use translate
  22. Hi Frank. 3 machines all win 7 updated fine.
  23. I am using Windows 10 in my new laptop bought less than a month ago. I try to be careful when it comes to malware. I use a bunch of anti malware software & run scans once a week. Everything seemed ok until 2 days back. 2 days back, I had a college presentation & had to plug in my friend's USB drive which had lots of viruses. I did not want to, but had to click on the shortcut virus to open her files since i was standing in front of the whole class & i had to give the presentation. It also had an autorun virus along with others. I could not unplug the USB drive until i finished with my presentation. Can someone please help me on what to do to get rid of all of them which may have infected my OS while I plugged the drive in my laptop? I have tried scanning again & again, till all the scan results were clean. But still i fear some may be left out. what should i do? ( Certain websites wont load no matter whatever i do. Does this have something to do with Malware? If i use proxy, they load. But on my own connection, certain websites never load. I dont use router. I use internet via 4G provider ) I use zemana antimalware, emergency kit scanner from emsisoft, Kaspersky Virus Removal Tool, Security Scan & TDSS Killer from kaspersky, ESET online scanner, Norton security scan, aswmbr from avast, Malwarebytes 3.0, adwcleaner & JRT from malwarebytes, superantispyware to run on-demand scans. I ran all of these again & again till all of them came up with clean results. I tried running all of these in safe mode as well, but got clean results again. ( I use avira free antivirus as my main antivirus. ) what should i do now? How can i find out if my laptop is clean or not? Someone please help me out on this. Would be highly thankful if someone could come up with a solution to ensure my laptop is 100% clean. I have attached all the three logs below. Thanks. FRST.txt Addition.txt scan_170411-155012.txt
  24. Hello, It seems we are infected by this virus. We follow your guidelines but we are unable to finish the process, we need your help Edit : We tested with decryption tools Globe 1, 2 and 3 without good results It seems our encrypted files are Globe Imposter 2.0 Maybe are we doing somehting wrong ? Thanks in advance for your support and you help is really appreciated. Julien
  25. Win 7 EAM auto updated. Stopped on 100% a bit longer than usual. Will shutdown and reboot a few times to see if any changes in EAM behaviour.