Need help with Windows XP registry question

V

villandra

I'm trying to install Malwarebytes Anti-Malware on my Windows XP Pro
Service Pack 3 computer. I recently had fake av infection; it may
be entirely off my computer or may not be. The program installs but
the service, MBAMService, won't appear in the services.msc or msconfig
service lists, and the program is not able to start. Malabytes tech
support seems to have both limited competence and an attitude. He
had me run some stuff and send him some logs and says no running
processes are interfering with the service installing, but he refuses
to look at the entries that pertain to mbam in my system registry.
He keeps wanting me to run ComboFix, and after looking into that
program I won't touch it with a ten foot pole. Both ComboFix and
Malawrebytes tech support have terrible safety records. Both
routinely leave users' entire systems nonfunctioning and
irreperable.

Here is the result of searching my entire registry for mbam, after
uninstalling anti-malware and running Malwarebytes' MBAM_Clean
tool.

Can someone please tell me if any of the following entries are causing
the mbam service to fail to install.

Also is it alright to delete these entries, after uninstalling the
program, and before re-installing it?

Thanks!

Also I need to know more about how to back up the registry, especially
what means to save an entry before deleting it - hard to know what on
earth that means. And in what file is it better to export registry
files - reg or txt or the third option pvc or whatever?


HKEY_LOCAL_MACHINE
System
Control Set 002 (after folder for Control Set 001 w/ + in front of it)
Enum
Root

LEGACY_MBAMCHAMELEON Default REG_SZ (value not set)
NextInstance REG_DWORD 0x00000001 (1)

0000 (Default) REG_SZ (value not set)
Class " LegacyDriver
ClassGUID " {BECCO55D-047F-11D1-AS37-0000F8753ED1}
ConfigFlags REG_DWORD 0x00000000 (0)
Device Desc REG_SZ mbamchameleon
Legacy REG_DWORD 0x00000001 (1)
Service REG_SZ mbamchameleon


LEGACY_MBAMPROTECTOR {Default} REG_SZ (value not set)
NextInstance REG_DWORD 0x00000001(1)

0000 - values the same as above except MBAMProtector instead of
mbamchamelon

LEGACY_MBAMSERVICE same values as above.

0000 same values as above except MBAMService

LEGACY_MBAMSWISSARMY same values as above. 0x00000001 (1)





ControlSet003 - the same entries.

CurrentControlSet the same entries.



HKEY_USERS
5-1-5-21-4 long series numbers and dashes
Softare
Microsoft
Windows
Current Version
Applets
Regedit
{Default} REG_SZ (value not set)
FindFlags REG_DWORD 0x0000000e (14)
LastKey REG_SZ My computer]HKEY_LOCALMACHINE]SOFTWARE
\Classes\AllFilesystemObjects\shellex\ContextMenuHandlers\MBAMShExt
View REG_BINARY 2c long strings of numbers. /f, ae, et.

HKEY_CURRENT_USERS
everything above except the line 5-1-5-21 etc.

----------------------------------------

There was also this value, which I removed; it referrs to a file that
is no longer in E:\Program Files.

HKEY_CURRENT_USER
Software
Microsoft
Windows
ShellNoRoam/ MUI Cache
E:\ Program Files\REG_SZ Malabytes Anti-Malware


Yours,
Dora Smith
 
T

Tim Meddick

If you are in the process of uninstalling / re-installing Malwarebytes - it
should be assumed that *any* registry values (and / or keys) that
specifically contain the name "Malwarebytes" , "MBAM" or the path to the
Malwarebytes software's location on the hard-drive, can always be safely
deleted.

However, this is also assuming that you are given to caution when editing
the registry and that you would double-check that which you are about to
delete (as regedit has no "Undo" function)!!

If you want to know more about backing-up the NT registry (NT / 2K / XP /
Vista / W7) you could do worse than download the following [freeware]
program, that, together with reading it's accompanying documentation, will
give you an insight on how to backup / restore the registry in differing
scenarios.

Download the [free] program ERUNT [772 KB] :
http://www.aumha.org/downloads/erunt-setup.exe

==

Cheers, Tim Meddick, Peckham, London. :)

P.S. Rather than multi-post you should direct your news-mail to more than
one group in the "Newsgroups" or "Send to" field (cross-post).


villandra said:
I'm trying to install Malwarebytes Anti-Malware on my Windows XP Pro
Service Pack 3 computer. I recently had fake av infection; it may
be entirely off my computer or may not be. The program installs but
the service, MBAMService, won't appear in the services.msc or msconfig
service lists, and the program is not able to start. Malabytes tech
support seems to have both limited competence and an attitude. He
had me run some stuff and send him some logs and says no running
processes are interfering with the service installing, but he refuses
to look at the entries that pertain to mbam in my system registry.
He keeps wanting me to run ComboFix, and after looking into that
program I won't touch it with a ten foot pole. Both ComboFix and
Malawrebytes tech support have terrible safety records. Both
routinely leave users' entire systems nonfunctioning and
irreperable.

Here is the result of searching my entire registry for mbam, after
uninstalling anti-malware and running Malwarebytes' MBAM_Clean
tool.

Can someone please tell me if any of the following entries are causing
the mbam service to fail to install.

Also is it alright to delete these entries, after uninstalling the
program, and before re-installing it?

Thanks!

Also I need to know more about how to back up the registry, especially
what means to save an entry before deleting it - hard to know what on
earth that means. And in what file is it better to export registry
files - reg or txt or the third option pvc or whatever?


HKEY_LOCAL_MACHINE
System
Control Set 002 (after folder for Control Set 001 w/ + in front of it)
Enum
Root

LEGACY_MBAMCHAMELEON Default REG_SZ (value not set)
NextInstance REG_DWORD 0x00000001 (1)

0000 (Default) REG_SZ (value not set)
Class " LegacyDriver
ClassGUID " {BECCO55D-047F-11D1-AS37-0000F8753ED1}
ConfigFlags REG_DWORD 0x00000000 (0)
Device Desc REG_SZ mbamchameleon
Legacy REG_DWORD 0x00000001 (1)
Service REG_SZ mbamchameleon


LEGACY_MBAMPROTECTOR {Default} REG_SZ (value not set)
NextInstance REG_DWORD 0x00000001(1)

0000 - values the same as above except MBAMProtector instead of
mbamchamelon

LEGACY_MBAMSERVICE same values as above.

0000 same values as above except MBAMService

LEGACY_MBAMSWISSARMY same values as above. 0x00000001 (1)





ControlSet003 - the same entries.

CurrentControlSet the same entries.



HKEY_USERS
5-1-5-21-4 long series numbers and dashes
Softare
Microsoft
Windows
Current Version
Applets
Regedit
{Default} REG_SZ (value not set)
FindFlags REG_DWORD 0x0000000e (14)
LastKey REG_SZ My computer]HKEY_LOCALMACHINE]SOFTWARE
\Classes\AllFilesystemObjects\shellex\ContextMenuHandlers\MBAMShExt
View REG_BINARY 2c long strings of numbers. /f, ae, et.

HKEY_CURRENT_USERS
everything above except the line 5-1-5-21 etc.

----------------------------------------

There was also this value, which I removed; it referrs to a file that
is no longer in E:\Program Files.

HKEY_CURRENT_USER
Software
Microsoft
Windows
ShellNoRoam/ MUI Cache
E:\ Program Files\REG_SZ Malabytes Anti-Malware


Yours,
Dora Smith
 
0

000-222-000

villandra said:
I'm trying to install Malwarebytes Anti-Malware on my Windows XP Pro
Service Pack 3 computer. I recently had fake av infection; it may
be entirely off my computer or may not be. The program installs but
the service, MBAMService, won't appear in the services.msc or msconfig
service lists, and the program is not able to start. Malabytes tech
support seems to have both limited competence and an attitude. He
had me run some stuff and send him some logs and says no running
processes are interfering with the service installing, but he refuses
to look at the entries that pertain to mbam in my system registry.
He keeps wanting me to run ComboFix, and after looking into that
program I won't touch it with a ten foot pole. Both ComboFix and
Malawrebytes tech support have terrible safety records. Both
routinely leave users' entire systems nonfunctioning and
irreperable.

Here is the result of searching my entire registry for mbam, after
uninstalling anti-malware and running Malwarebytes' MBAM_Clean
tool.

Can someone please tell me if any of the following entries are causing
the mbam service to fail to install.

Also is it alright to delete these entries, after uninstalling the
program, and before re-installing it?

Thanks!

Do you have Microsoft Security Essentials​ or
Able to install it Microsoft Security Essentials

If you can not in install MSE you will not be ale to,
install Malwarebytes Anti-Malware,

For fake av infection, is and running the show,
and no one here will be able to help you to fix your self,
time to take it in to your P.C. man to fix it........
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Top