How to run a scan with Malwarebytes' Anti-Malware
Download Malwarebytes' Anti-Malware from Here
Double-click mbam-setup-2.X.X.XXXX.exe to install the application (X's are the current version number).
- Make sure a checkmark is placed next to Launch Malwarebytes' Anti-Malware, then click Finish.
- If MBAM fails to open, refer to the MBAM FAQ for alternate ways to start the program.
- Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.
- On the left pane select Settings.
- Select the Protection tab.
- Scroll down to Scan Options and ensure Scan for Rootkits is 'On' and leave all other settings to default.
- Go back to Dashboard and select the blue Scan Now tab; Note: The scan may take some time to finish, so please be patient.
- When the scan completes if potential threats are detected, ensure to checkmark all the listed items, and click the Quarantine Selected button.
- While still on the Scan tab, click the View Report button, and in the window that opens click the Export button, select Text file (*.txt), give it a name and save it to your Desktop.
- The log can also be viewed by clicking the log to select it, then clicking the View Report button.
- Note: If asked to restart the computer, please do so immediately.
Troubleshooting MBAM Problems
Some malware targets Malwarebytes' Anti-Malware and other cleaning tools to prevent you from using them to clean your system.
Unable to Run MBAM
If you attempt to run the installer for MBAM and it won't run, or starts and closes, using Windows Explorer go to the folder you saved the install program and try renaming it to one of the following file names:Then double-click on the renamed file to try to run it. If that doesn't work, try one of the other file names above. If you are still unable to run the MBAM installer, then download and run this program to try to kill the malware process:
Please download Rkill by Grinler from one of these links:
Rkill.exe
Rkill.com
Rkill.scr
Rkill.pif
Save rkill.exe to your Desktop.
Double-click on rkill.exe to run it.
If the first one does not run successfully, try the other copies and see if one of them will run.
Once the Rkill program has completed, then try again to run the MBAM installer.
Once you have installed MBAM, if you try to run the program and it won't start, it may still be targeted by malware. Try the same steps that you may have had to try to run the installer program. Using Windows Explorer, go to the folder that you installed MBAM and rename mbam.exe to one of the following file names:If you are still unable to run MBAM, Follow the same instructions in the box above to download and run Rkill, and after running it, see if you can run MBAM.
Unable to Update MBAM
Once you are able to start MBAM, if you receive an Error 732 when trying to update the program it could be because malware has changed your connection settings so that you are using a proxy server. To make sure your connection has not been set to use a proxy server, please do the following:
Go to Start > Settings > Control Panel > Internet Options > Tools Menu -> Internet Options -> Connections Tab ->Lan Settings > uncheck "use a proxy server" or reconfigure the Proxy server again in case you have set it previously.
In Firefox in Tools Menu -> Options... -> Advanced Tab -> Network Tab -> "Settings" under Connection.
If you are still unable to update MBAM, there are two other ways to update the program.
1. Download the updated rules as an installable file - download mbam-rules.exe and save it to a convenient location such as your Desktop and double-click on the program to run it, It will install an updated database for MBAM. After updating MBAM with mbam-rules.exe, run MBAM again, scan your system, and clean anything found.
2. The other way to update the program is more complicated, but will result in the very latest update (mbam-rules.exe isn't updated as often as the online updater). Download and install MBAM on an uninfected system, start the program, and update it. Then you can copy the database file (rules.ref) from the folder below and transfer it manually to the infected system. I would recommend burning the file to CD to transfer to the infected system. If you use a flash drive, it could potentially become infected when you insert it into the infected system and then infect any other system it's inserted into. Please see this topic - USB/Flash Drive Safety/
The database file (rules.ref) is found in the following folder:
- Windows XP: C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware
- Windows Vista/Windows 7: C:\Documents and Settings\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware
If you are unable to see the folder, you may need to reconfigure windows to allow you to see hidden files and folders:
XP: https://www.microsof...s.mspx?mfr=true
Vista: http://windows.micro...s=windows-vista
Windows 7: http://windows.micro...e#1TC=windows-7
Windows 8: http://answers.micro...94-8aeecac0f3b5
More Detailed Troubleshooting Information
For more detailed information on troubleshooting MBAM, please see this topic at their website:
http://forums.malwar...showtopic=10138
Edited by Rocket Grannie, 03 December 2019 - 05:44 PM.
updated instructions