Re: What steps to prevent Sasser infection while downloading the fix?

From: Marc Liron MVP (anonymous_at_discussions.microsoft.com)
Date: 05/04/04

• Next message: Haq: "Automatic Updates"
• Previous message: Info Network: "NORTON SASSER WORM FIX TOOL"
• In reply to: Crusty \(-: Old B_at_stard :-\): "Re: What steps to prevent Sasser infection while downloading the fix?"
• Next in thread: David H. Lipman: "Re: What steps to prevent Sasser infection while downloading the fix?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Tue, 4 May 2004 02:15:13 -0700

Also be aware that there is a new Netsky worm variant
(Netsky-AC) just out that claims to be able ti "fix" the
sasser worm vulnerability!

Of course it comes with an attachment that once clicked
deploys its own payload to cause yet more problems...

http://www.sasser-worm.com

Marc Liron
Microsoft MVP
http://www.updatexp.com

>-----Original Message-----
>Firewall your system. Then download the patch.
>
>--
>Regards:
>
>Richard Urban
>
>aka Crusty (-: Old B@stard :-)
>
>"Piotr Makley" <pmakley@mail.com> wrote in message
>news:8e3efe3c458193b1dabd01bcc97e8ccd@news.teranews.com..
.
>> If someone has not patched their PC with Microsoft's
fix then maybe
>> they will get infected with Sasser when they connect
to the Net to
>> actually download the fix for Sasser!
>>
>> Are there any steps that can be taken to allow the
Sasser fix to be
>> downloaded but which will prevent Sasser from
infecting the
>> machine?
>>
>> Maybe switch off some of the Component Services?
>> Maybe enable your firewall to a "high" level of
security?
>> Maybe rename some EXE or DLL file until the fix is
installed?
>> etc
>
>
>.
>

---

• Next message: Haq: "Automatic Updates"
• Previous message: Info Network: "NORTON SASSER WORM FIX TOOL"
• In reply to: Crusty \(-: Old B_at_stard :-\): "Re: What steps to prevent Sasser infection while downloading the fix?"
• Next in thread: David H. Lipman: "Re: What steps to prevent Sasser infection while downloading the fix?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: What steps to prevent Sasser infection while downloading the fix? ... Firewall your system. ... Then download the patch. ... > If someone has not patched their PC with Microsoft's fix then maybe ... > they will get infected with Sasser when they connect to the Net to ... (comp.security.misc) Re: What steps to prevent Sasser infection while downloading the fix? ... Firewall your system. ... Then download the patch. ... > If someone has not patched their PC with Microsoft's fix then maybe ... > they will get infected with Sasser when they connect to the Net to ... (microsoft.public.security.virus) Re: What steps to prevent Sasser infection while downloading the fix? ... Firewall your system. ... Then download the patch. ... > If someone has not patched their PC with Microsoft's fix then maybe ... > they will get infected with Sasser when they connect to the Net to ... (microsoft.public.windowsxp.security_admin) Re: Video links wont open: Help please! ... I had previously downloaded the fix for Sasser, ... I am also aware that the links work just fine since ... > firewall and may be the cause of the behaviour you are seeing right now. ... > they provide for Sasser and ensure that it is not the problem. ... (microsoft.public.windows.inetexplorer.ie6_outlookexpress) RE: "Parser Message": Value Creation failed at Line 422 error at startup ... >how to fix it. ... >infected with Sasser or Blaster - it is on DSL internet. ... >Jerry Riedel ... (microsoft.public.windowsxp.general)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(11)