Jump to content

MBAM and OTL

Essexboy

By Essexboy
in Malwarebytes for Windows

 Share

Recommended Posts

Essexboy

Essexboy

Posted
Posted

I have a major problem with my clearing routines when I run OTL

As I need to empty the temporary files I use the empty temp command, this command asks processes to stop, now with windows processes like explorer if they refuse then OTL moves on to the next. But with MBAM it just locks the system and refuses to let OTL complete. Is there any way around this or do I have to resort to either not emptying the temporary folders or get the OP to run from safe mode. This behaviour is also apparent with TFC

As you can expect, someone who has an infection thinks the worst when OTL locks the system.

Trying to stop or pause the MBAM service has no effect because access is denied.

I can understand the reasoning behind not letting any other programme stop MBAM, but why can it not just release OTL and let it get on with it's job ?

Link to post
Share on other sites
Firefox

Firefox

Posted
Posted

I can not comment on how Malwarebytes does it work as I do not work for Malwarebytes or am I a developer.....

That being said, you do not want to run any temp file cleans on a computer that is infected. Temp file cleaners should only be run after the infection has been repaired. There are a lot of malware programs out there that hide files and folders and also move the start menu items to the temp folders. Cleaning out temp files before these items have been restored will only make the process harder to recover from the infection, or lead you to have to re-install the operating system.

Link to post
Share on other sites
exile360

exile360

Posted
Posted

The solution should be simple enough, just have the user temporarily set Malwarebytes Anti-Malware not to start with Windows, reboot, then run the temp file cleaner:

post-2103-0-35730500-1333735115.png

Once done clearing out the temp files, just have them reverse the option and enable the protection module again.

That all being said, I've run tools like TFC with Malwarebytes Anti-Malware's protection module active and didn't have any issues, though it's been a long time since I've done so (I generally just use CCleaner). I can easily see the system locking up if OTL and/or TFC are trying to kill mbamservice though, as it's simply unsafe to do so because it runs in kernel mode and can (and often does, case in point being the system freeze) lead to system instability if terminated after it has been started.

Link to post
Share on other sites
Essexboy

Essexboy

Posted
  • Author
Posted

Ah thank you I will try that next time

I must admit I do not get this problem on my system and OTL/TFC seem to work happily, I suppose it may well be system specific

@Firefox... Yes I am well aware of that but I clear all the temps after I am sure that there are no missing icons/shortcuts ;)

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.