Re: What steps to prevent Sasser infection while downloading the fix?
Date: Wed, 05 May 2004 01:41:22 +0200
Bill Sanderson wrote:
> "Spacen Jasset" wrote:
>> Block all incomming ports while you download the patch.
>> Also if you PC keeps rebooting while you download then you could
>> try this batch file
>> shutdown -a
>> goto loop
> The batch file you suggest will not stop the reboot
> if it comes from Sasser.
Microsoft states that “shutdown.exe -a” can be used on WinXP
for the reboot caused by the LSASS.EXE crash, from
If your computer is vulnerable to the worm, the worm may cause
LSASS.EXE to crash which will force the operating system to
shutdown after 60 seconds. This shutdown can be aborted on
Windows XP systems by using the built-in “shutdown.exe -a” command.
torgeir, Microsoft MVP Scripting and WMI, Porsgrunn Norway
Administration scripting examples and an ONLINE version of
the 1328 page Scripting Guide:
- Re: auto shutdown
... script will do a reboot of the remote computer. ... If you want a forced shutdown, ... You can find peer-to-peer support for Scripting technologies in the Windows Server Scripting newsgroup. ...
- Re: Scheduled Auto reboot
... I am not an expert in scripting, but I can lead you to one... ... If you run it without any input arguments, it will reboot ... If you want a forced shutdown, ... AKA: Windows Server Scripting ...
- Re: Current security settings put your computer at risk ...
... They want me to disable or at least prompt "Download Active X ... ... Reboot and ... ... Download, install, run, update and perform a full scan with the ... Download/Install the latest Windows Installer: ...
- Re: Homepage has been hijacked & registry has been changed
... This may be a newer variant of about: ... THEN REBOOT AND RUN THEM AGAIN TO BE SURE ALL FILES ... Download Registrar Lite 2.0, ...
- Re: Massive problem with Windows 2000 and my computer
... Reboot your system when ... After doing so, download ... > I went into safe mode and removed all of the "Windows Hot ... presumably because I touched the windows updates. ...