I have vent about this one...
Posted 21 July 2004 - 10:56 AM
First, it took right over my computer, it would shut it off when it wanted to, and I couldn't get onto anything. Then there was no way for me to get rid of it, so as a last resort we restarted the computer back to the very beginning. All those things we lost and now I have to re-do all my e-mail addresses, bookmarks, etc. What a pain in the well, you know what I mean.....
Now, I have alot of things on my computer to protect it. I am alot more educated about spyware,virus's, all of it. I never read so much in my life as I have this past week but, I am learning and I will try to never let that happen again.
Anyone else ever have the MS Blaster worm? What did you do to get rid of it? It would be nice to talk with someone else who had that hijack there system on them.
Posted 21 July 2004 - 11:00 AM
It was hard to get rid of him (her?). But now i'm feed with the following knowledge:
If you have the Blaster worm or Sasser worm on the computer, you may go to Start - Run, and type there: shutdown -a. Now your computer shouldn't reboot until you've found a fix for the worm.
Edited by H@ns, 21 July 2004 - 11:00 AM.
Posted 21 July 2004 - 07:41 PM
AVG caught it immediately but was unable to clean it completely - the PC kept rebooting even after AVG reported no more trace of the Blaster. I even ran the Symantec tool, and got the exact same result.
So I got my sister to download the patches and removal tools for Blaster from M$ on her own PC and put them on a Zip disk for me, then applied the patches, ran AVG again for good measure, activated the XP firewall and that was it. The Blaster was finally dead and gone.
I confess I was a little disappointed to see this mishap occur right before my eyes just after I'd installed XP, and was ready to switch back to 98 SE (but in the end stuck with it and installed 98 SE on a second PC, used mostly for testing purposes).
Edited by rosso_acido, 21 July 2004 - 07:58 PM.
Posted 09 August 2004 - 06:29 AM
The best thing is to keep the patch ready on a CD and apply it right after a fresh install, even before going onto the internet. I usually keep my net unplugged physically [unplug the cable ;-)] before applying this patch. It's not that hard for me to do it, since I have every possible version of the patch available for English and Polish languages on my website for download, and thus on any website-backup CD. ;-)
Edited by Egon_Freeman, 09 August 2004 - 06:31 AM.
Posted 21 August 2004 - 02:03 AM
Free Anti-Spyware Tools
Ad-Aware | Spybot S&D | Spyware Blaster | IE-Spyad
Free Spyware removal tools
Hijackthis | CWShredder | AboutBuster | VX2Finder | LSPFix | SPHJfix | DllCompare | KillBox | McAfee Stinger | GetServices
Online Anit-Virus Scans
Trend Micro HouseCall | McAfee online scan | Symantic Security Check | Panda ActiveScan
How did I get infected? | AVG Anti-Virus | Sygate Firewall | ZoneAlarm Firewall
Posted 06 March 2006 - 11:05 AM
The thing is, both blaster and sasser worms keep sending their propagation messages all the time, so it takes just one infected PC on a subnet for all of the unprotected computers to become infected within two or three seconds (and I'm talking about a class-C network). The only way to be sure is this:
a) go to the Microsoft site, browse their Knowledge Base for SASSER and BLASTER worms, download the patches for your operating system (it can be done on the same PC before the reformat, or at a freinds' PC / net cafe etc., but one must be sure to have the required storage space, I'd propose a pendrive or sth. because theose patches can be bigger than 1.4 MB);
b) reformat the PC (make a backup of all important data, y'know );
c) install Windows;
d) apply the patches (BOTH of them);
e) NOW connect to the internet to download other patches.
It's pretty much important to have these two patches ready at all times. ;-) You can also try and slipstream them into Your Windows installation disk (slipstreaming is incorporating patch file / service pack data into an existing Windows CD so that it all installs along with the system).
MS Blaster patch is listed in the Microsoft Knowledge Base as article KB823980, while MS Sasser is article KB835732.