* Home Help Search Login Register  

Welcome, Guest. Please login or register.
November 20, 2009, 10:41:05 PM

Login with username, password and session length

336419 Posts
37219 Topics
84377 Members
Latest Member: Johnzz

more news...
Search:     Advanced search | Tag Cloud
+  Welcome to the Comodo Forum
|-+  Desktop Security Products
| |-+  Comodo Internet Security - CIS
| | |-+  Wishlist - CIS
| | | |-+  Anti Virus Wishlist
| | | | |-+  Fix/undo anti-antimalware registry hacks		 « previous next »
Pages: [1] Go Down Print
Author Topic: Fix/undo anti-antimalware registry hacks  (Read 137 times)
AlphaRosea
Comodo Member
**
Offline Offline

Posts: 40



WWW
« on: November 07, 2009, 12:22:40 AM »
There are some occasions where I install MBAM or SAS on a computer and try them only to encounter errors and conclude that a worm etc may be responsible for this. It would be handy for CAV to be able to detect and fix known registry hacks that serve to disable antimalware.

I currently have a computer that actually belongs to me/my dad (which was lent to a friend of his for a few months) that came back with an crap-load of infections and neither MBAM nor SAS worked... though CIS wasn't threatened by the malware. I got another antimalware, a-squared Free, (it's initial def update is ~65MB lawwwwd) that detected them all but couldn't remove half of them (those were deeply entrenched in the system apparently. Explorer would crash and Windows would hang or the computer would even BSOD if I forced the removal of the stubborn ones).

Hopefully I can get a screenshot for the names of some of those infections sometime and post it. I remember there are a few instances of Vundo in there...
Logged

MUUUUHAHAHAHA! Cheesy
jay2007tech
Malware Research Group
Comodo's Hero
*****
Offline Offline

Posts: 330
« Reply #1 on: November 14, 2009, 11:53:41 AM »
Quote
though CIS wasn't threatened by the malware
CIS has it's own self-defense  mechanism for that purpose

Quote
There are some occasions where I install MBAM or SAS on a computer and try them only to encounter errors and conclude that a worm etc may be responsible for this
I think a better idea would be to request that to MBAM and SAS forum.  

I would write to saying this to them in their forum and/or email (below)
Ask them "You would like MBAM to have a stronger "self-defense mechanism" against malware from tampering MBAM or a least have that option available to make it stronger. (or weaker if it interferes with other software).   <-----feel free to copy and paste it to save you from typing

Quote
You would like MBAM to have a stronger "self-defense mechanism" against malware from tampering MBAM or a least have that option available to make it stronger. (or weaker if it interferes with other software)


=========================================================
until they put in a stronger self-defence, reinstall it.  (Don't uninstall the program, just download the newest MBAM and click "install".  It will fix itself.  AND as a added bonus, you won't need to redownload the anti-virus definitions again Thumb Up

P.S. after doing this, reboot the computer and then start hitting the "F8" key until a new screen comes up.  go to windows "safe mode"  Run MBAM and clean the infection from there will most likely prevent the same infections from coming back again and again. 

I hope this helps you Smiley
« Last Edit: November 14, 2009, 11:59:53 AM by jay2007tech » Logged
It's hard being a crooked Admin when the files won't pass an md5checksum test.  But like any other good crooked Admin it can be done, it just takes time(and lots of it) and a few aspirins
Tags:
Pages: [1] Go Up Print 
« previous next »
Jump to:  

SSL Certificate Free Virus Removal Firewall
Page created in 0.035 seconds with 22 queries.
Powered by SMF 1.1.10 | SMF © 2006, Simple Machines LLC
Seo4Smf v0.2 © Webmaster's Talks 		Design by 7dana.com