MSAS Locks up

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

Whenever the scan gets to "variable browser hijack scan", the program quits
responding and will not continue. I have uninstalled and reinstalled but that
didn't help. It has run completely a couple of times (can't understand why)
but usually will not complete a scan. Any ideas??
 
Some threats use techniques that the current beta isn't able to work around.
If it still fails in safe mode, try a different product. Don't neglect your
antivirus, keep it up to date and scan with it and Microsoft Antispyware.

Ewido has trial downloads, and seems to be doing a great job for a number of
threats.
 
Hm, mine was working fine until this evening when I got a message along the
lines, "... has recovered from a serious error". After that I get the same
problem (and same place) as amckitt. I've also uninstalled and reinstalled
but no joy. I haven't tried it in safe mode becuase I don't want to have to
keep swapping in to safe mode just to run an anti-spyware program, nor did it
seem to work for amckitt.

With respect, Bill, your answer seems a bit of a cop out. I'd love to scan
with my AV AND MS AntiSpyware... but MSAS won't complete a scan.

Any progress with this, or are you really saying MS AntiSpyware doesn't
really work properly and we need to get something that does?

Apologies if I sound 'hostile', but this is rather annoying.

Mike
 
I don't blame you for feeling that this response leaves something to be
desired.

I believe it is correct, however.

Do me a favor? Download a trial of Ewido, scan with it, and lets see what
it finds on your system?

The current beta1 product has seen very little change over the course of the
year since it was released. It is largely third-party code which was
purchased by Microsoft. It definitely has limitiations--there are specific
circumstances--in particular, permission settings on registry keys, which can
cause it to malfunction--loop, leak memory, crash.

If you can spot what registry key it is looking at when this happens, a
knowledgable user can go in and modify the permissions on that specfic key
and allow the scan to continue. I'm not clear from the messages in this
thread whether or not that bit of information is visible, nor whether the
posters involved are up to this kind of relatively delicate task.

It is simpler, at this point, when a scan in safe mode also fails, to
suggest that a competent alternative product be tried--this is safer advice
for the users involved, and likely to get the system cleaned sooner.

On the face of it--a working system, with scans able to complete, then a
"crash message" followed by scans not able to complete--this doesn't
necessarily sound like malware. However, some malware does produce bogus
crash or other error messages. An alternative explanation might be disk
corruption, so I suppose that a scandisk run might be a good suggestion.

I'm not sure why I wrote that original reply--it is short, glib, and not
terribly helpful--probably I was on the HTML interface, and in a hurry. But,
yes, Microsoft Antispyware beta1 does have limitations--and if cleaning is
your primary goal, and Microsoft Antispyware is failing to do the job--trying
a different product to get the cleaning accomplished is a valid suggestion.
Microsoft Antispyware provides real-time protection which is well worth
maintaining, even in a situation where it clearly isn't doing the job from a
cleaning perspective.
 
Bill, thanks for a very prompt and clear answer. I don't feel up to messing
with the registry. Hopefully, the hard drive is OK as I had to get a new one
about six months ago - but I'll do as you suggest. I've run a quick scan with
ewido (full version) and it came up clean. I'll try a full/deep scan but I
should be OK. Guess it means shelling some bucks out as I rated MS AS above
anything else that's free. Thanks again.
 
Hmm - so Microsoft Antispyware hangs, but Ewido finds nothing wrong?

Scandisk sure wouldn't hurt to try. I don't know what the possible causes
are here--

The event log may have more detail about the "serious error."--right-click
My Computer, choose Manage, expand Event logs, click on the System event log,
and scroll down in the right window 'til you reach the approximate time you
remember getting that error message. A blue screen crash could corrupt
things, although it is odd that Microsoft Antispyware is completely stymied
by whatever is happening, and Ewido doesn't even notice it.....
 
Ran CHKDSK /R, came up clean. Several errors reported in the log and one
warning, related to TCP/IP, which it reckons could be malware-related. Ran
Ad-Aware and that only ‘found’ SahAgent (hmmmm - not life-threatening,
anyway). Did full scan with NOD32 and Ewido – clean.
 
Just been reading thru some of the posts from people who had similar
problems. One suggestion was a corrupt wininit.ini file - don't seem to have
one, so that's out. Another was too large a HOSTS file. Just killed the HOSTS
file and the scan completed! Only thing I can't figure out is why MSAS ran
with exactly the same HOSTS file for about three weeks before objecting to
it. Now to download the mvps HOSTS file.
 
OK, removed my hosts file, worked ok. Installed mvps hosts file - back to
square one. Any ideas?
 
Back
Top