WIN32 Sasser which is also know as The shutdown virus,Shuts down the computer in 30 seconds leaving your computer unusable.
Win32/Sasser is a family of network worms that exploit the Local Security Authority Subsystem Service (LSASS) vulnerability fixed in Microsoft Security Update MS04-011. The worm spreads by randomly scanning IP addresses for vulnerable machines and infecting any that are found.
When Win32/Sasser runs on a computer, it copies itself to the %WINDOWS% folder. In most cases, it adds a value to the registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run. This value causes the worm to start when Windows is started.
Win32/Sasser is a family of network worms that exploit the Local Security Authority Subsystem Service (LSASS) vulnerability fixed in Microsoft Security Update MS04-011. The worm spreads by randomly scanning IP addresses for vulnerable machines and infecting any that are found.
When Win32/Sasser runs on a computer, it copies itself to the %WINDOWS% folder. In most cases, it adds a value to the registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run. This value causes the worm to start when Windows is started.
EFFECTS OF WIN32 SASSER VIRUS
Your computer may be infected with Win32/Sasser if you experience one or more of the following symptoms:
- You see an LSA Shell crash dialog box
- Your computer restarts every few minutes without user interaction.
- Your computer performance is decreased or your network connection is slow.
HOW TO REMOVE WIN32 SASSER VIRUS / SHUTDOWN VIRUS
First we need to stop the shutdown action initiated by the virus.
There are 2 ways to do this:
1: Click Start>Run and type shutdown -A and press Enter.
2: On the lower right side, right click on the time and change the time and go 1 hour back.
In my opinion, the 1st option is really easy. It will remove the shutdown dialog box.
There are 2 ways to do this:
1: Click Start>Run and type shutdown -A and press Enter.
2: On the lower right side, right click on the time and change the time and go 1 hour back.
In my opinion, the 1st option is really easy. It will remove the shutdown dialog box.
Install Anti Virus or free Anti-spyware Software
Download it .
After installation, it will prompt you to update the database. Click Yes to update.
Click on the Scan PC button. Now select Deep Scan button and click Scan.
After the scan completes it will show the scan results.
Select all harmful items found during the scan.
Click on Delete Selected Object. Click Yes if prompted.
After restart, your PC is clean as ever. Feel free to ask if you face any issues.
NOTE:Restart the computer after scan.Don't use any other application when the scan is in progress.
Download it .
After installation, it will prompt you to update the database. Click Yes to update.
Click on the Scan PC button. Now select Deep Scan button and click Scan.
After the scan completes it will show the scan results.
Select all harmful items found during the scan.
Click on Delete Selected Object. Click Yes if prompted.
After restart, your PC is clean as ever. Feel free to ask if you face any issues.
NOTE:Restart the computer after scan.Don't use any other application when the scan is in progress.
No comments:
Post a Comment