V
villandra
I'm trying to install Malwarebytes Anti-Malware on my Windows XP Pro
Service Pack 3 computer. I recently had fake av infection; it may
be entirely off my computer or may not be. The program installs but
the service, MBAMService, won't appear in the services.msc or msconfig
service lists, and the program is not able to start. Malabytes tech
support seems to have both limited competence and an attitude. He
had me run some stuff and send him some logs and says no running
processes are interfering with the service installing, but he refuses
to look at the entries that pertain to mbam in my system registry.
He keeps wanting me to run ComboFix, and after looking into that
program I won't touch it with a ten foot pole. Both ComboFix and
Malawrebytes tech support have terrible safety records. Both
routinely leave users' entire systems nonfunctioning and
irreperable.
Here is the result of searching my entire registry for mbam, after
uninstalling anti-malware and running Malwarebytes' MBAM_Clean
tool.
Can someone please tell me if any of the following entries are causing
the mbam service to fail to install.
Also is it alright to delete these entries, after uninstalling the
program, and before re-installing it?
Thanks!
Also I need to know more about how to back up the registry, especially
what means to save an entry before deleting it - hard to know what on
earth that means. And in what file is it better to export registry
files - reg or txt or the third option pvc or whatever?
HKEY_LOCAL_MACHINE
System
Control Set 002 (after folder for Control Set 001 w/ + in front of it)
Enum
Root
LEGACY_MBAMCHAMELEON Default REG_SZ (value not set)
NextInstance REG_DWORD 0x00000001 (1)
0000 (Default) REG_SZ (value not set)
Class " LegacyDriver
ClassGUID " {BECCO55D-047F-11D1-AS37-0000F8753ED1}
ConfigFlags REG_DWORD 0x00000000 (0)
Device Desc REG_SZ mbamchameleon
Legacy REG_DWORD 0x00000001 (1)
Service REG_SZ mbamchameleon
LEGACY_MBAMPROTECTOR {Default} REG_SZ (value not set)
NextInstance REG_DWORD 0x00000001(1)
0000 - values the same as above except MBAMProtector instead of
mbamchamelon
LEGACY_MBAMSERVICE same values as above.
0000 same values as above except MBAMService
LEGACY_MBAMSWISSARMY same values as above. 0x00000001 (1)
ControlSet003 - the same entries.
CurrentControlSet the same entries.
HKEY_USERS
5-1-5-21-4 long series numbers and dashes
Softare
Microsoft
Windows
Current Version
Applets
Regedit
{Default} REG_SZ (value not set)
FindFlags REG_DWORD 0x0000000e (14)
LastKey REG_SZ My computer]HKEY_LOCALMACHINE]SOFTWARE
\Classes\AllFilesystemObjects\shellex\ContextMenuHandlers\MBAMShExt
View REG_BINARY 2c long strings of numbers. /f, ae, et.
HKEY_CURRENT_USERS
everything above except the line 5-1-5-21 etc.
----------------------------------------
There was also this value, which I removed; it referrs to a file that
is no longer in E:\Program Files.
HKEY_CURRENT_USER
Software
Microsoft
Windows
ShellNoRoam/ MUI Cache
E:\ Program Files\REG_SZ Malabytes Anti-Malware
Yours,
Dora Smith
Service Pack 3 computer. I recently had fake av infection; it may
be entirely off my computer or may not be. The program installs but
the service, MBAMService, won't appear in the services.msc or msconfig
service lists, and the program is not able to start. Malabytes tech
support seems to have both limited competence and an attitude. He
had me run some stuff and send him some logs and says no running
processes are interfering with the service installing, but he refuses
to look at the entries that pertain to mbam in my system registry.
He keeps wanting me to run ComboFix, and after looking into that
program I won't touch it with a ten foot pole. Both ComboFix and
Malawrebytes tech support have terrible safety records. Both
routinely leave users' entire systems nonfunctioning and
irreperable.
Here is the result of searching my entire registry for mbam, after
uninstalling anti-malware and running Malwarebytes' MBAM_Clean
tool.
Can someone please tell me if any of the following entries are causing
the mbam service to fail to install.
Also is it alright to delete these entries, after uninstalling the
program, and before re-installing it?
Thanks!
Also I need to know more about how to back up the registry, especially
what means to save an entry before deleting it - hard to know what on
earth that means. And in what file is it better to export registry
files - reg or txt or the third option pvc or whatever?
HKEY_LOCAL_MACHINE
System
Control Set 002 (after folder for Control Set 001 w/ + in front of it)
Enum
Root
LEGACY_MBAMCHAMELEON Default REG_SZ (value not set)
NextInstance REG_DWORD 0x00000001 (1)
0000 (Default) REG_SZ (value not set)
Class " LegacyDriver
ClassGUID " {BECCO55D-047F-11D1-AS37-0000F8753ED1}
ConfigFlags REG_DWORD 0x00000000 (0)
Device Desc REG_SZ mbamchameleon
Legacy REG_DWORD 0x00000001 (1)
Service REG_SZ mbamchameleon
LEGACY_MBAMPROTECTOR {Default} REG_SZ (value not set)
NextInstance REG_DWORD 0x00000001(1)
0000 - values the same as above except MBAMProtector instead of
mbamchamelon
LEGACY_MBAMSERVICE same values as above.
0000 same values as above except MBAMService
LEGACY_MBAMSWISSARMY same values as above. 0x00000001 (1)
ControlSet003 - the same entries.
CurrentControlSet the same entries.
HKEY_USERS
5-1-5-21-4 long series numbers and dashes
Softare
Microsoft
Windows
Current Version
Applets
Regedit
{Default} REG_SZ (value not set)
FindFlags REG_DWORD 0x0000000e (14)
LastKey REG_SZ My computer]HKEY_LOCALMACHINE]SOFTWARE
\Classes\AllFilesystemObjects\shellex\ContextMenuHandlers\MBAMShExt
View REG_BINARY 2c long strings of numbers. /f, ae, et.
HKEY_CURRENT_USERS
everything above except the line 5-1-5-21 etc.
----------------------------------------
There was also this value, which I removed; it referrs to a file that
is no longer in E:\Program Files.
HKEY_CURRENT_USER
Software
Microsoft
Windows
ShellNoRoam/ MUI Cache
E:\ Program Files\REG_SZ Malabytes Anti-Malware
Yours,
Dora Smith