Amazingly, a worm or virus can enter your PC the very moment
you establish an internet connection and have not enabled a firewall.
You don't have to visit any website to become infected. Chances are
your PC running Windows XP has indeed contracted the Sasser worm.
If you have Sasser, follow these directions to remove it from your computer:
http://www3.telus.net/dandemar/sasser.htm
[Courtesy of MS-MVP Jupiter Jones]
What You Should Know About the Sasser Worm and Its Variants
http://www.microsoft.com/security/incident/sasser.asp
PSS Security Response Team Alert - Sasser Worm and Variants
http://www.microsoft.com/technet/Security/alerts/sasser.mspx
W32.Sasser.B.Worm Critical Information
http://securityresponse.symantec.com/avcenter/venc/data/w32.sasser.b.worm.html
W32.Sasser Removal Tool
http://securityresponse.symantec.com/avcenter/venc/data/w32.sasser.removal.tool.html
3 Steps to Help Ensure your PC is Protected
http://www.microsoft.com/security/protect/
Frequently Asked Questions About Antivirus Software
http://www.microsoft.com/security/protect/antivirus.asp
Special note if you use AOL:
America Online installs its own connection settings that override
the ones that come with Windows XP. America Online's
connection settings don't include a way to turn on Windows XP's
built-in firewall.
Visit the following web site for instructions on downloading
a FREE firewall program for your computer.
Ref:
http://www.updatexp.com/free.html
Consider purchasing a top-notch Internet Security program
that will help protect your PC from future viruses, hackers, and
privacy threats:
http://www.symantec.com/sabu/nis/nis_pe/
--
Carey Frisch
Microsoft MVP
Windows XP - Shell/User
Be Smart! Protect your PC!
http://www.microsoft.com/security/protect/
-----------------------------------------------------------------------------------------------------
| Amazingly enough I came to this newsgroup to ask this very question. Supposedly the sasser worm is connected
with lsa shell. But it may not be the problem. See artcle:
|
|
http://support.microsoft.com/default.aspx?scid=kb;en-us;300038
|
| I received an old computer that was running windows 2000 on a network. I removed the hard drive and
installed XP clean on a new hard drive. Once connected to the internet the first time I received the above
error message within 5 minutes of being online. I did not go anywhere online except the MSN homepage.
Basically, unless I received this sasser virus from MSN I could not be infected. But my symptoms are exactly
the same as Nick.
|
| My question is: when windows 2000 is being run on a network, can there be any residual code left in the BIOS
or in the DOS start-up? Having removed the hard drive no part of the 2000 OS can remain on the computer, or
can it? The above article is for windows 2000, but the exact symptoms are ocurring in XP. Is the cause exactly
the same? Can the same Hotfix be used?
|
| I also read that LSA shell can cause problems when memory is low. I intend to increase my pagefile space on
my disk. Does anyone know anything about this?
|
