MS AntiSpyware hangs scanning registry -- even in safe mode ??

Discussion in 'Computer Security' started by =?Utf-8?B?c2hvZXM=?=, Sep 30, 2005.

  1. Trying to clean up a freinds machine, XP Home. AntiS gets most of the way
    thru the scan then stops dead. Have tried letting it sit for an hour (still
    stuck on the same numbers), tried safe mode (identical result). It will not
    abort the scan, usually won't shut down and most often requires a restart.
    I have also done a little preliminary cleaning with the advanced tools before
    running it and no change. The registry file it gets stuck on is one of the
    nasties I am trying to get rid of and the key will not delete manually
    either. Any Suggestions? The problem app is WinTools and it's gang of
    offspring.
     
    =?Utf-8?B?c2hvZXM=?=, Sep 30, 2005
    #1
    1. Advertisements

  2. Please,post any questions to the ^Microsoft Antispyware^ specific newsgroup
    that Microsoft had established

    Here is the URL :

    http://www.microsoft.com/communities/newsgroups/en-us/default.aspx?dg=microsoft.private.security.spyware.general&cat=en_US_f8c59240-bc0e-42f4-b741-765a827e6fb0&lang=en&cr=US

    There you'll have an answer from IT specialist that best know MS
    Antispyware- Beta 1.

    Try these
    MALWARE REMOVAL INSTRUCTIONS :
    Follow them carefully and step-by-step

    1. Delete all the Internet Explorer's temporary stuff

    Start -> Settings- > Control Panel -> Internet Options

    There ,on the General Tab you will see where you can delete
    internet temporary files
    cookies
    history
    Delete them all.


    2. Delete all Temporary files

    Windows XP users (all new versions)

    The path is :
    C:\Documents and Settings\USER\Local Settings\Temp
    Delete all files from this folder
    and also
    C:\Windows\Temp


    3. Run Disc Clean up

    Start -> Programs -> Accessories -> System Tools -> Disc Cleanup

    Make sure you have checked :
    Downloaded program files
    Temporary files
    Recycle bin
    Web Client/Publisher content


    4. Remove any unwanted programs

    Boot in Safe Mode (see how below)
    Then ,in Safe Mode, Start - Settings – Control Panel – Add /Remove programs
    See if you have any unknown /unwanted software
    installed- toolbars and/or known spy programs.
    Remove them with the REMOVE button.
    Then restart with booting in Normal Mode .


    5. Remove spywares ,adwares ,hijackers ,dialers and other junk

    @ Download Spybot Search & Destroy and Ad-Aware SE Personal

    http://www.lavasoftusa.com/software/adaware
    and
    http://www.safer-networking.org/microsoft.en.html

    These programs are free of charge, they are compatiable to each other
    and also recommended by Microsoft, so use them together.
    Be sure to update them before running!!!
    You can also scan in Safe Mode.


    6. How to boot your computer in Safe Mode

    Do this by repeatedly typing F8 while Windows is starting before
    Windows logo appears.
    Then you'll open the BIOS menu where you can choose to boot
    the hard drive in SAFE MODE

    (If you are XP user ,find more about Safe Mode
    in Help and Support Center ; Start-Help and Suport)


    7. Run a Firewall

    Windows XP
    has integrated firewall -
    Internet Connection Firewall (ICF) for SP1 and
    Windows Firewall (WF) for SP2

    !!! Use only 1 firewall !!!
    !!! If you/your friend has different firewall,disable the
    others!!!


    8. Windows Updates
    Download all the security updates - Critical updates with Express install.
    Start -> Windows Updates
    or
    http://windowsupdate.microsoft.com


    9. Scan all your system with antivirus software

    Update the program and its definitions !
    You should use current version of your av software.
    Before scanning make sure all the security settings are turned ON.
    You’d rather scan in Safe Mode,too.

    Scan with
    http://www.microsoft.com/malwareremove
    Microsoft Windows Malware Removal Tool

    http://www.pandasoftware.com/products/activescan/com/activescan_principal.htm
    Panda Software free Active Scan,where you can check your
    PC for ALL TYPES of security threats and clean viruses and worms

    If no antivirus available,download one from here:
    http://www.microsoft.com/athome/security/downloads/default.mspx


    10. System Restore (for XP and ME only)

    If you are running Windows ME or XP , you have to
    disable/enable System Restore
    AFTER the system is clean of all kind of malware because malware will be
    in Restore Points.
    Check Turn off system restore.Click OK
    Make sure the PC is clean of malware !!!
    Uncheck Turn off system restore ,so you'll have your Restore function ON.


    11. For better performance ,it is advisable to check your hard drives for
    errors
    Open My computer .
    Then right click on the hard drive you want to check -> Properties -> Tools
    In the error-checking area ,click "Check now" to start the process.


    --- Useful pages ---

    http://www.microsoft.com/athome/security/downloads/default.mspx
    different kinds of free or trial security software.

    http://www.pandasoftware.com/about/resp_social/children_internet
    Because of the campaign "Children and the Internet"
    Panda Software offers 90 day free trial version of one of the best security
    software
    Panda Platininum Internet Security 2005

    http://www.pandasoftware.com/protected/tips.htm
    useful tips for protecting computers

    http://www.pandasoftware.com/products/activescan/com/activescan_principal.htm
    Panda Software free Active Scan,where you can check your
    PC for ALL TYPES of security threats and clean viruses and worms

    http://housecall.trendmicro.com
    Trend-Micro free online scanner HouseCall where you can scan for
    Viruses and Spywares and clean them. CWShredder is also available here

    http://www.kaspersky.com/virusscanner
    Kaspersky free online scanner
    and checker for suspicious files.If you have issues with suspicious
    file,here is the right place!

    http://www.f-prot.com/virusinfo/submission_form.html
    Send F-prot AV suspicious files for fast analyze and and it is all for FREE

    http://www.microsoft.com/malwareremove
    Microsoft Windows Malware Removal Tool

    http://support.microsoft.com
    Free Microsoft support and suggestions (for genuie clients)




    Now ,when you have cleaned your computer,you need to think about your
    security!
    Microsoft
    suggests 3 + 1 general steps how to protect
    your PC and the infomation stored on it,
    your privacy and your family
    1.Use an internet firewall
    2.Enable Automatic Updates for your PC
    3.Use an antivirus software
    4.Use antispyware software

    Goto http://www.microsoft.com/athome/security and learn more
    Check the Security Essentials for your OS and also have a look at all
    sections!



    Panda_man
    "Let's beat malware black and blue"
    "No new epidemic of all kind of malware -> Panda TruPrevent"
     
    =?Utf-8?B?UGFuZGFfbWFu?=, Sep 30, 2005
    #2
    1. Advertisements

  3. =?Utf-8?B?c2hvZXM=?=

    PA Bear Guest

    Microsoft has established separate newsgroups for the Microsoft Windows
    AntiSpyware Beta. Please post your query to:

    http://communities.microsoft.com/newsgroups/default.asp?ICP=spyware&sLCID=us

    Checking for/Help with Hijackware
    http://aumha.org/a/parasite.htm
    http://aumha.org/a/quickfix.htm
    http://aumha.net/viewtopic.php?t=5878
    http://mvps.org/winhelp2002/unwanted.htm
    http://inetexplorer.mvps.org/data/prevention.htm
    http://inetexplorer.mvps.org/archive/tshoot.html
    http://www.mvps.org/sramesh2k/Malware_Defence.htm
    http://defendingyourmachine.blogspot.com/

    When all else fails, HijackThis v1.99.1
    (http://aumha.net/downloads/hijackthis.zip) is the preferred tool to use.
    It will help you to both identify and remove any hijackware/spyware. **Post
    your log to http://forums.spywareinfo.com/,
    http://castlecops.com/forum67.html or http://aumha.net/viewforum.php?f=30
    for expert analysis, not here.**
     
    PA Bear, Oct 1, 2005
    #3
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.