Jump to content

Antivirus System PRO/Can't run mbam


Recommended Posts

I've used mbam a ton in the past, and it's always been really helpful(thank you creators :) ) but I recently got the Antivirus system pro malware, and whenever I try to open mbam, I get the little timer next to my cursor for a few seconds, then nothing happens. I've tried redownloading it and looking up ways to get around it, but have been unsuccessful.

Although the bigger problem now is, I restarted my computer and the only thing that came up when i logged on, was my desktop wallpaper. No icons, taskbar, or start menu. I only got on here because i typed firefox.exe into "new task" on task manager. So I probably need to get that sorted out before I start actually deleting the malware.

Any help is greatly appreciated.

Link to post
Share on other sites

Hi Armano,

The reason why this is occuring is the rogue is blacklisting all exe's except crucial system operations and your browser(s) which is so folks can go on line and purchase the fraudulent rogue.

Try renaming MBAM.exe to firefox.exe and see if it launch's first.

Ah just read your first post and realise you probaly will not be able to access the mbam file inorder to rename it.

Have you tried booting into safe mode and running MBAM from there ?

http://www.bleepingcomputer.com/tutorials/tutorial61.html

Link to post
Share on other sites

So you do have 1.38 of MBAM correct? What AV software are you running and/or Firewall? please

Yeah, I have that version of MBAM and I have mcaffee that came with my computer, but the only thing it's done is have the firewall ask me if I want to let certain programs access the internet, but I always block their access.

Hi Armano,

The reason why this is occuring is the rogue is blacklisting all exe's except crucial system operations and your browser(s) which is so folks can go on line and purchase the fraudulent rogue.

Try renaming MBAM.exe to firefox.exe and see if it launch's first.

Ah just read your first post and realise you probaly will not be able to access the mbam file inorder to rename it.

Have you tried booting into safe mode and running MBAM from there ?

http://www.bleepingcomputer.com/tutorials/tutorial61.html

Yeah I tried launching it in safe mode with networking, but it did the same thing.

Link to post
Share on other sites

Ok best bet now is to take this from General forum and start a fresh topic in the HijackThis help forum.

From there we can see if we can address the problem with use of some more heavy weight tools.

http://www.malwarebytes.org/forums/index.php?showforum=7

I'm surprised it is letting you have Task manager available(usually this is one of the first things to get locked out.)

I take it there is no suspicious exe's running (sysguard.exe)?

Link to post
Share on other sites

Let the Firewall & AV accept all of MBAM files. PLease look over this thread http://www.malwarebytes.org/forums/index.php?showtopic=17695 go right down and read post #7 As the mod. posted, we also have to put our mabm files in the Trust area ot he AV & Firewall. We have gotton lots of good results. Please post back with your results. We would like to know. If you have anyquestions about accepting the files in the Trust area. Please post them..

Link to post
Share on other sites

Ok best bet now is to take this from Genneral forum and start a fresh topic in the HijackThis help forum.

From there we can see if we can address the problem with use of some more heavy weight tools.

http://www.malwarebytes.org/forums/index.php?showforum=7

I'm surprised it is letting you have Task manager available(usually this is one of the first things to get locked out.

I take it there is no suspicious exe's running ?

Ok, I'll post a new thread there, but first I'll try to run mbam in safe mode again just to be sure. And, I'm not really sure how to identify what exe's are suspicious, lol.

Let the Firewall & AV accept all of MBAM files. PLease look over this thread http://www.malwarebytes.org/forums/index.php?showtopic=17695 go right down and read post #7 As the mod. posted, we also have to put our mabm files in the Trust area ot he AV & Firewall. We have gotton lots of good results. Please post back with your results. We would like to know. If you have anyquestions about accepting the files in the Trust area. Please post them..

I mean, the only time I was blocking access was when I first got the virus, and had a bunch of odd exes trying to get internet access. When I first installed mbam I let it access the internet to update, and I've used it numerous times before this. My firewall/AV can't even run right now, so i don't think that's causing it.

Link to post
Share on other sites

ok well AntiVirus System Pro is usually an executable called sysguard.exe located in the windows folder.

Usually MBAM unloads this process everytime so i'm thinking there might be more to the obvious infection that is visible so if safe mode does not work then definetly we will have too investigate further :)

Link to post
Share on other sites

I feel the same pain. Free version of malware has always come thru for me but this time was too much.My desktop has been ravaged my Antispyware Virus Pro. Cant open IE-hijacks and wont let me open malware bytes. Didnt delete but tried to download or open from portable drive. so now trying to run is a

safe mode to get to malwarebytes. Here is my issue- (byw on laptop problem is with desktop) i have a choice of: safemode, safe mode with networking, or safe mode with command promt. Please dont laugh I dont know which one to select.I have win xp with free avg. Could someone hep me asap? There isnt a timer or countdown on that screen so I am assuming ok until hear from someone. Thanks

Link to post
Share on other sites

@ victimized

I might be mistaken, but, I think that site itself is bad? I thought I read that on here somewhere, but I could be mistaken.

I hovered over your link to see what it was, but I did not click.

Link to post
Share on other sites

Victimized, thanks for posting the link, but I saw that site earlier, I downloaded the program they had posted up(spyware doctor), but would only scan and required that i pay and register to delete the files, so I didn't.

And because the virus is blocking me from using the desktop, start menu, or any folders/files it doesn't allow, I can't manually search for those files to remove them. I'm basically limited to only task manager and firefox.

Link to post
Share on other sites

@ victimized.

I understand that you were posting that link and trying to help, but in case you didn't realize it, he is (or was if already fixed up) getting help from professionals who are very able to help him :P. You are on the MBAM website - don't be posting links to other help sites that aren't even guaranteed to fix him up. Its great that you were able to help your cousin, but you shouldn't be posting that on here.

Link to post
Share on other sites

Guest victimized
@ victimized.

I understand that you were posting that link and trying to help, but in case you didn't realize it, he is (or was if already fixed up) getting help from professionals who are very able to help him :P. You are on the MBAM website - don't be posting links to other help sites that aren't even guaranteed to fix him up. Its great that you were able to help your cousin, but you shouldn't be posting that on here.

It's just the help I post when no cure can be found.
Link to post
Share on other sites

Ok folks just a note to say that usually MBAM will remove this rogue without any difficulties.

The trouble here is that the persons computer has a secondary infection that is blocking MBAM from running and making use of other *fix* tools not so streight forward.

Manual removal is not an option whilst certain functions are locked out and using main stream fix tools looks like they are being hampered too.

Anyway i love a challenge and hopefully will get this sorted for the OP shortly :P

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.