When I clicked the old link for spynet, it redirected me to the MSAS
homepage. I looked on the left for any links that would possibly contain
vendor/discrepancy links and voila! - there they were!
--
If you are under attack and MSAS does not seem to help:
*Submit suspected spyware report in the tools menu of MSAS*
1. Download:
lspfix.exe
www.cexx.org/lspfix.htm
winsockxpfix.exe
www.snapfiles.com/get/winsockxpfix.html
ccleaner.exe
www.ccleaner.com
killbox.exe
www.bleepingcomputer.com/files/killbox.php
2. Reboot into safe mode -
http://tinyurl.com/pfca
3. Clean out all temp file locations - ccleaner.exe
(be sure to configure to delete all temp files
and not just those 48 hours old or older)
4. Run MSAS at least twice in full/deep mode
5. Run a robust, updated antivirus software scan
6. Reboot into normal mode,see if problem has been corrected
7. Install and use killbox to delete stubborn files
8. If you think something is there but can't see it:
- Download:
Blacklight by F-Secure to look for rootkits
www.europe.f-secure.com/exclude/blacklight/blbeta.exe
RootKitRevealer by SysInternals
www.sysinternals.com/ntw2k/freeware/rootkitreveal.shtml
Battle Notes:
- If you have trojans (files that won't go away),
you may have to disable System Restore on XP:
http://tinyurl.com/movy
- If your Internet connectivity quits:
http://support.microsoft.com/kb/892350
http://support.microsoft.com/kb/811259
LSPFix -
www.cexx.org/lspfix.htm
Winsockxpfix -
www.snapfiles.com/get/winsockxpfix.html
- Install SpywareBlaster to block thousands of malware apps
from installing on your machine. It does not actively
run on your machine, you run it, it makes changes that
protect you.
http://www.javacoolsoftware.com/
- This program will not detect or remove viruses
http://www.microsoft.com/athome/security/viruses/default.mspx
**For a detailed attack plan **
http://spywarewarrior.com/sww-help.htm
*** For assistance in battling infestations***
- Get HijackThis.exe from:
http://tomcoyote.org/hjt/hjt199//HijackThis.exe
- Save it to C:\hjt (new folder)
- Open it and select "Scan and Save Log"
- Note where you saved the log
- Send it to Ron Kinner as an attachment
- Ron's email address is (e-mail address removed)
- Put Hijack in the subject so he knows it's not spam
- He will tell you what to do next
Application Notes:
Registering a VB6 dll seems to fix missing agents:
1) Open up a command prompt (start -> run -> cmd)
2) Type in the following "regsvr32 msvbvm60.dll" (without the quotes).
3) Close and re-open Windows AntiSpyware
- Several issues are addressed by Microsoft -
Cookies, supported OS, and cost.
http://www.microsoft.com/athome/security/spyware/software/faq.mspx
- This program will not work with Windows 98 or ME.
If you need a tool for 9X/ME, go here:
http://www.majorgeeks.com/downloads31.html
- If your taskbar is on the side of your screen, the alerts
scroll off the screen. Move the taskbar back to the
bottom or top to stop the scroll, then revert back.
- To report false positives:
www.microsoft.com/athome/security/spyware/software/isv/fpform.aspx
- To submit disputes or requests:
www.microsoft.com/athome/security/spyware/software/isv/cdform.aspx
- To learn more about how MS analyzes suspected spyware:
www.microsoft.com/athome/security/spyware/software/isv/analysis.mspx
- Mark Ferguson maintains an FAQ:
http://www.geocities.com/marfer_mvp/FAQ_MSantispy.txt