News:

:) Be aware all of you from laziness (al-kasal). The prophet, ^alayhi-s-salatu was-salam, said as part of his du^a': Wa^udhu bika minal^ajzi w-al-kasal. Al-^ajz means the weak endeavor in working for the Religion. It is not the weakness of the body. Many people have weak bodies, but when it comes to endeavor they are stronger than men with strong bodies. Both, weakness and laziness delay the person from reaching higher ranks.

Main Menu

W32.Sasser.avserve2 THE SOLUTION

Started by alsunna, 03, 16

Previous topic - Next topic

alsunna

W32.Sasser.avserve2

Overview : W32.Sasser.avserve2 is worm spreading by exploiting a security hole in the Windows operating system.

Classification: Worm

Files : avserve2.exe

Detection
Bazooka Adware and Spyware Scanner detects W32.Sasser.avserve2. Bazooka is freeware and detects spyware, adware, foistware, trojan horses, viruses, worms, etc. Read more ยป


Uninstall procedure
Please go to the anti-virus recommendation page. You can find both free products or use one of the trials to remove the virus.


Manual removal
Please follow the instructions below if you would like to remove W32.Sasser.avserve2 manually. Please notice that you must follow the instructions very carefully and delete everything that is mentioned. In most cases the removal will fail if one single item is not deleted. If W32.Sasser.avserve2 remains on your system after stepping through the removal instructions, please double-check by stepping through them again.

Start your computer in safe mode.

Start the registry editor. This is done by clicking Start then Run. (The Run dialog will appear.) Type regedit and click OK. (The registry editor will open.)

Browse to the key:
'HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Run'

In the right pane, delete the value value called 'avserve2.exe'.
Exit the registry editor.

Start Windows Explorer and delete:
%WinDir%\avserve2.exe
Note: %WinDir% is a variable (?). By default, this is C:\Windows (Windows 95/98/Me/XP) or C:\WINNT (Windows NT/2000).
Install all security patches from www.windowsupdate.com.



Direct removal tool for sasser:

http://www.microsoft.com/downloads/details.aspx?familyid=76C6DE7E-1B6B-4FC3-90D4-9FA42D14CC17&displaylang=en