Sasser… UGHHHHHH

100 pts.
Tags:
Antivirus
Desktop
Sasser
Virus removal
worms
I usually take great pride in how good I am at removing spam and viruses and cleaning a computer to a great potential (at my job and for friends). About 2 months ago I somehow received the Sasser virus. Did 3 different types of virus scans and at least 4 different types of antispware scans. With no results. Over the last 2 months i have formatted my computer, literally, at least 12 times. What happens is about 1/3 times I boot up it comes up with LSA (Export) error or Lsass.exe is shutting down my system. I've checked every program I install to see if it somehow embedding it in to the system and I cannot find anything. I've run HiJack this and had there checker check the data results. I've even switched to a new hard drive. Just been a humongous frustration and suggestions would be greatly appreciated.

Answer Wiki

Thanks. We'll let you know when a new response is added.

Maybe its not you at all. What are you connecting to?
Home router, work router?
Is there a server between you and the ‘outside’?
I would start looking back from your device to the internet. Maybe there’s another device constantly searching just for your pc, or username and will send a trojan each time you login.
If you think it’s constantly happening to your pc, no matter what you do, then maybe it’s not your pc.

Discuss This Question: 3  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • BigMike10
    "Search and Destroy" (not to be confused with "SpyBot Search and Destroy" is at least Malware. Please see the F-Secure WebLog at http://www.f-secure.com/weblog/archives/00001545.html Also, I did download the Search and Destroy product (in my Lab) and Symantec A/V detected it as MalwarePro, a "Misleading Application"
    25 pointsBadges:
    report
  • Kevin Beaver
    Yeah, this may not be a malware issue...or a hardware issue. Lsass.exe is a legitimate service for Windows security policy enforcement. What happens when you boot to safe mode with networking?
    17,140 pointsBadges:
    report
  • mshen
    The LSASS exploit was fixed with Service Pack 2. If an up-to-date virus scan can't find any viruses, you should check for conflicting applications. If you use applications similar to TweakXP, you may run into issues like the one you described.
    27,385 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following