Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

When Malware softwares won't open?


  • Please log in to reply
9 replies to this topic

#1 mystic12

mystic12

  • Members
  • 1,599 posts
  • OFFLINE
  •  
  • Local time:03:05 AM

Posted 10 September 2013 - 02:57 PM

Strange situation, I am working on this machine and ran Mbam, SAS and TDS killer in Safe Mode then I was able to clean from within regular windows but I cannot get ADWCleaner and Roguekiller to open even in safe mode, any idea why and any fixes for this please? I know rename Mbam can work but does it work with these 2 mentioned?

 



BC AdBot (Login to Remove)

 


#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:06:05 PM

Posted 10 September 2013 - 05:18 PM

Have you used this direct link for the Updated AdwCleaner

 

Download AdwCleaner by Xplode and Save To Desktop.

XP users, Double click on AdwCleaner - All others Right-click on AdwCleaner icon and select -> Run as administrator :


Edited by noknojon, 10 September 2013 - 05:19 PM.


#3 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 52,070 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:05 AM

Posted 12 September 2013 - 08:09 AM

Renaming tools sometimes work with certain types of malware which may be targeting and stopping it.

However, there can be other reasons a tool may not work properly. Did you get any error messages when attempting to run those programs?
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#4 mystic12

mystic12
  • Topic Starter

  • Members
  • 1,599 posts
  • OFFLINE
  •  
  • Local time:03:05 AM

Posted 12 September 2013 - 08:48 AM

No, the softwares mentioned simply would not open



#5 bory504

bory504

  • Members
  • 224 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Orleans
  • Local time:04:05 AM

Posted 12 September 2013 - 08:59 AM

Not sure, they might have a certain service that is required to run in order to open but wont because youre in safe mode. Just a wild guess.


Sincerely, Blake.

7 year Computer Hardware + Software Technician.

Operations Technician at a retail company.

Rhythm guitarist for the band Headspill.

:guitar: 


#6 mystic12

mystic12
  • Topic Starter

  • Members
  • 1,599 posts
  • OFFLINE
  •  
  • Local time:03:05 AM

Posted 12 September 2013 - 09:12 AM

If only in Safe Mode would be one issue but why not in regular windows "after" I had cleaned out the virus?



#7 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 52,070 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:05 AM

Posted 12 September 2013 - 09:13 AM

AdwCleaner should work in Safe Mode but using that mode is only necessary if it does not run in normal mode.

Scanning with Malwarebytes Anti-Malware in safe or normal mode will work but removal functions are not as powerful in safe mode. MBAM is designed to be at full power when malware is running so safe mode is not necessary when using it. In fact, MBAM loses some effectiveness for detection & removal when used in safe mode because the program includes a special driver which does not work in safe mode. Further, scanning in safe mode prevents some types of malware from running so it may be missed during the detection process. Additionally, there are various types of malware infections which target the safeboot keyset so booting into safe mode is not always possible. For optimal removal, normal mode is recommended so it does not limit the abilities of MBAM but sometimes there is no alternative but to do a safe mode scan. If that is the case, after completing a safe mode scan, rebooting normally and rescanning again is recommended.


Safe Mode is a troubleshooting mode designed to start Windows with minimal drivers and running processes to diagnose problems with your computer. This means some of the programs that normally start when Windows starts will not run.

Why use safe mode? The Windows operating system protects files when they are being accessed by an application or a program. Malware writers create programs that can insert itself and hide in these protected areas when the files are being used. Using safe mode reduces the number of modules requesting files to only essentials which make your computer functional. This in turn reduces the number of hiding places for malware, making it easier to find and delete the offending files when performing scans with anti-virus and anti-malware tools. In many cases, performing your scans in safe mode speeds up the scanning process. Scanning in safe mode was a recommended course of action years ago before malware writers began to employ more sophisticated techniques to counter removal efforts in that mode.

Why not use safe mode? Some security tools like anti-rootkit scanners (ARKs) and programs with anti-rootkit technology use special drivers which are required for the scanning and removal process. These tools are designed to work in normal mode because the drivers will not load in safe mode which lessens the scan's effectiveness. Other security tools are optimized to run from normal mode where they are most effective.

Scanning in safe mode prevents some types of malware from running so it may be missed during the detection process. If the malware is not related to a running process (i.e. malicious .dll) it probably will not make a difference performing a scan in normal or safe mode. A hidden piece of malware such as a rootkit which protects other malicious files and registry keys from deletion may not be detected in either mode without the use of special tools. Additionally, if the scanner you're using does not include definitions for the malware, then they may not detect or remove it regardless of what mode is used. Also keep in mind that there are various types of malware infections which target the safeboot keyset so booting into safe mode is not always possible.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#8 mystic12

mystic12
  • Topic Starter

  • Members
  • 1,599 posts
  • OFFLINE
  •  
  • Local time:03:05 AM

Posted 12 September 2013 - 09:27 AM

Have you used this direct link for the Updated AdwCleaner

 

Download AdwCleaner by Xplode and Save To Desktop.

 

 

No, I think I downloaded it from either this site or from CNET, can't remember which, but will do so next time, thanks!



#9 mystic12

mystic12
  • Topic Starter

  • Members
  • 1,599 posts
  • OFFLINE
  •  
  • Local time:03:05 AM

Posted 12 September 2013 - 09:29 AM

Ok, thanks for the info Quietman7.



#10 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 52,070 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:05 AM

Posted 12 September 2013 - 12:02 PM

You're welcome.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users