Search the Community

Showing results for tags 'Closed'.

More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Malware Research Center
    • Help, my files are encrypted!
    • Help, my PC is infected!
    • Malware and Computer Security
    • Malware submissions
  • Company & Products
    • Customer Support
    • Beta Community
    • Feedback, comments, and suggestions
    • False positives
    • Emsisoft News
  • Other Languages
    • German Support - Deutscher Support
  • Private Zone

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start





Website URL







Found 755 results

  1. Hi I'm struggling first my Instagram was hacked and now my email has been sending emails to friends without consent Ive changed the email associated with all main accounts and used command prompt to check netstat ports cant see anything obvious what else can I do ive run BT Mcafee anti virus nothing found Malwarebytes also shows no infections including root kits I'm a bit lost now, I contacted my isp and got my email back and changed password, ive raised 2 cases with Instagram who have failed to respond and it seems whoever is in my Instagram is still active I'm guessing they use a proxy ip to remain anonymous any help gratefully accepted PS just to add I went on my Home Network last night to get a list of connected devices and there seemed to be too many for the amount of devices, I turned all off and still found what looked like two devices I didn't recognise so I disabled them
  2. Comes up and prevents me from going to the link I clicked on, but not every time. scan_170323-111714 EEM.txt FRST.txt Addition.txt
  3. Emsisoft emergency kit logs:scan_170314-204740.txt frst and addition logs Addition.txt FRST.txt
  4. I downloaded the Emsisoft Decrypter for Nemucod but I cannot get it to work. Addition.txt DECRYPT.txt FRST.txt scan_170316-140851.txt
  5. I've been having problems with the windows\syswow64\dnsapi.dll on my computer for some time. I use Avast and it instantly detects the file. Avast couldnt remove the file and it remains on my computer to this day. Even worse, as long as I keep Avast active, I cant open my internet. I get a crash report every single time. I have to disable my antivirus to access the internet. Here are the logs created by the emergency kit and Fanbar scanner. FRST.txt Addition.txt scan_170226-111514.txt
  6. I ran a malware scan and it found many trojans but i quarantined the virus and it asked to restart,after restarting the taskbar colour changed into white as windows xp The Theme Service Deleted! Here is the screenshot: and here are the logs:scan_170312-182639.txt
  7. Hello. I have been doing some malware testing lately and I have come across four samples that completely crash real-time protection. After a reboot the notification icon is red, and after a few minutes I get a pop up as shown in the attachment. One of the samples from 03/16 is still zero-day as the signatures and heuristics don't pick it up along with the Behavior Blocker misses it. I have tested in both Oracle VirtualBox and VMWare with Windows 7, 8.1, and 10 and it occurs with all of them. I have forwarded 3 of the samples to customer service over a week ago, but I see this hasn't been addressed yet and was advised to start a thread in this particular sub-forum to get the most quick and direct feedback from a developer. Thanks.
  8. I use the old .bat files to keep debug logging on so I have logs for any reports I make. Took me a little while to figure out why I had no debug logs anymore. EAM automatically turns off debug logging after 7 days.
  9. Yesterday I autoupdated to 7207 on Win 10 64bit. with EAM I reset the logs counter only. Today I booted up and after almost 15 minutes there is still no update. Gui says last update was 23 hours ago. Debug logs attached a2service_20170224070047(1420).zip
  10. Hi Frank Again, the updates are smooth. Thanks, Pete
  11. Just wondering why description for ZAM.exe is missing in BB list (beta 6716)
  12. My EAM was updating to the latest stable released today. I received a notification popup (GUI was closed) but when I pressed Restart button nothing happened. EAM did not restart...even after few minutes. I had to manually restart PC in order to finish the update.
  13. I have uploaded a file to and it is coming back as AI-Namrood. The system was scanned using the paid version of Malewarebytes which did not find anything. A large amount of the files are encrypted like the attached file. My question is what do I need to do to make sure it's really gone. I did notice a large amount of attempts to log in from an unknown IP with no PID with a ton of user name guesses in the security log. I have since turned off the IIS server and it seems to have stopped the flood of attempts but the machine went off-line and is currently unreachable. It appears to have encrypted a large amount of pdf/doc/excel files but it also seems to have stopped my BackupExec because the services will no longer start and various other programs are now broken as well. All files are marked with the [email protected] address.The services for BackupExec were also marked as disabled when I went into see why it wouldn't start but I haven't seen anything online about this happening to other people. This is machine is running Server 2008 and I cannot run the Emergency kit because of the OS level but theFRST log is attached. What other info would be needed to be sure I have gotten rid of this Ransomware? Our backups should be good from a few days back I am hoping. We do not plan on paying this criminals off. I would like to not have to rebuild the server from scratch. Any help is greatly appreciated Rob FTB_folder.pdb.ID-DC9A265DUS[[email protected]].mga5adiamga4aa FRST.txt
  14. Since lifting these items is buried deep, there is a high risk of your operating system crashing during automatic cleaning. Malware removal experts in the Emisoft Forum will guide you safely to remove these threats I am speak Turkısh I'm sorry my English is not good C:\WINDOWS\SysWoW64\bthudtask.exe C:\WINDOWS\SysWoW64\pla.dll C:\WINDOWS\SysWoW64\Windows.UI.CredDialogController.dll
  15. I am working on a PC that keeps turning BITS off every few days. I have followed the recommendations from Microsoft Answer but it is still stopping every few days. Could there be an infection?
  16. As I had seen users in EEK forum mentioning unsigned drivers I thought I would try an replicate it. I downoaded 6971 on Win 10 64 bit and got these 2 screenshots. EEk opened when I clicked on the 'start emergency scanner' No debug logs were produced as Emsisoft logging said I had turned it off I have provided the logs saying this in this thread here
  17. Installed 6971 on Win 10 64bit and updated it, then changed to beta updates and updated. All went well with GUI and scans. (still absolutely hate the 'not responding' on the looks so unprofessional)
  18. Two Desktops and 1 VM updated automatically. So far so good
  19. In Windows Event Viewer under 'System' logs at each boot it shows 2 errors Event ID 7009 ''Description: A timeout was reached (30000 milliseconds) while waiting for the Emsisoft Protection Service service to connect.'' Event ID 7000 ''Description: The Emsisoft Protection Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.'' The effect of these 2 errors is that at boot there is a time of about 20-30 seconds where there is only a black screen with a cursor. I also reported the same for build 7207 and provided debug logs etc. Find more debug logs attached for this attached a2service_20170225060458(3056).zip
  20. EAM updated to this build this morning on Win 7 then I turned laptop off. Rebooted again just now and noticed 2 errors in event viewer about Emsi service not starting in a timely manner. Debug logs plus 2 event viewer errors in attached zip a2guard_20170224124622(2556).zip
  21. Hi, I was asked to have a look at a computer that running slow and that wouldn't run malwarebytes. So I started off with running Junk removal tool and it removed quite a lot of junk from the machine. I then downloaded EEK which brought the error in the attached image then when it does eventually load when i click scan after the update the scan takes around 2-5 seconds. the hard drive has about 20 gigs worth of data on it. Something just doesn't seem right and i can't pin point it. Addition.txt FRST.txt scan_170216-121819.txt
  22. Got .MERRY approx 2 weeks ago. Caught it part-way through it's process, and deleted the .exe files which had propagated 11,000+ times. Your software (and a couple of others) did not find the virus any more. Your decrypter saved MONTHS of work, and decrypted the files. THANK YOU THANK YOU THANK YOU. Since then, MSWord had been having some problems when it tried to locate a .dot file (for example when I wanted to insert page numbers). I was trying to find time to re-install MSWord. Also, approximately 1x/day, computer would restart with "Blue Screen of Death" (I'm sorry, I don't know what to call that in non-tech-speak" 2 days ago, restart happened more and more. Yesterday, approximately every 10 minutes. Then I discovered that it did not shut down as long as I didn't open MSWord or File Explorer. Then, this morning, started up computer and got an error I've never seen before: When I signed into Windows, I got an error that said something like: "Group Policy Identifier failed to sign in" and then Blue Screen of Death (that's all I was able to remember from what it said before the error message went away and the computer restarted itself. Next time, it logged me into Windows ok. That's where I'm at. Thank you for the help... FRST.txt Addition.txt scan_170129-084758.txt
  23. Hello, I have a VBS Error Popup each couple of minutes and Its so annoying! Cant work on the computer with this I tried to run Full scan with EIS But It detecs nothing. I've attached an Image here please view It!
  24. When I was using Firefox to open an online training site that I signed up for through the Metro Tucson Chamber of Commerce, I was redirected to another site-Chinese Merchandise. Then, when I tried to open the site again, I got an animated porn site. I immediately closed the browser and ran an Emsisoft scan but nothing came up. I have run the programs and attached the files you requested. The site opened successfully in Chrome. Log scan_170123-214921.txt Addition.txt FRST.txt
  25. After starting the computer Emsisoft was starting a scheduled scan. But when arriving on 82% the scan stopped and didn't progress. I'm unable to stop the scan even when closing the interface. After reopening the interface the scheduled scan apears to be stuck ad 82%. Unable to start new scan. I use build with the new BB engine, Beta enabled See logs and picture