Step 1: Disconnect your computer to the Internet
To prevent further problems, drop out of Internet connection your computer:
For Broadband Internet Connection Users Find the cable that connects the computer to a modem or a cable that connects the computer to the modem or the telephone connection. Freelance cord from the modem or the phone line, so that your computer into an Internet connection is lost.
Dial-up connection users: Find the cable that connects the internal modem in your computer to a telephone connection, then unplug it to keep your computer connects to the Internet.
Step 2: Stop the Shut down Cycle
This worm will cause the file lsass.exe not react to other commands (stop responding), which then causes the operating system shut down again after 60 seconds. If you begin to shut down your computer, follow these steps for the system did not experience a shut down.
This worm will cause the file lsass.exe not react to other commands (stop responding), which then causes the operating system shut down again after 60 seconds. If you begin to shut down your computer, follow these steps for the system did not experience a shut down.
On the taskbar below your computer screen, click Start, then click Run.
Enter: Cmd and then click OK.
At the command prompt, type: shut down.exe-a and then press ENTER button.
Step 3: Perform Prevention
You can periodically remove all signs of the worm infects your computer by creating a log file.
Creating a log file
On the taskbar at the bottom of your monitor screen, click Start, then click Run.
Typing: cmd then click OK.
At the prompt, type: echo dcpromo>% systemroot% \ debug \ dcpromo.log and press ENTER.
Creating a log file read-only status
At the prompt, type: attrib + R% systemroot% \ debug \ dcpromo.log then press ENTER button.
Step 4: Change the System Performance
If your computer is giving signs of a slow Internet connection, the worm may have been entered into your computer network. Make you difficult to download and install the software upodate nya.Untuk change your system performance do:
Press CTRL + ALT + DELETE, and then click Task Manager.
For each of the following steps that may exist in the list, click the task to select it, then click the End Task button to end it.
Any task ending with _up.exe (for example, 12345_up.exe).
Each task begins with avserve (for example, avserve.exe).
Each task begins with avserve2 (for example, avserve2.exe).
Each task begins with skynetave (for example, skynetave.exe).
hkey.exe
msiwin84.exe
wmiprvsw.exe
CAUTION: Do not end the wmiprvse.exe task; because this is a task system that is being used.
Step 5: Enable FirewallA firewall is a piece of software or hardware designed to shield barrier between your computer and the Internet. If your computer is infected, a firewall will help minimize the effects of the worm. Windows XP comes with Internet Connection Firewall (ICF). Oprate ICF:
On the taskbar at the bottom of your monitor screen, click Start, then click Control Panel.Click Network and Internet Connections category.(If the Network and Internet Connections is not visible, click Switch to Category View in Control Panel the left side of the Control Panel window.)Click Network Connections.Click your right mouse button on the Dial-up, LAN, or on High-Speed Internet connection that there use to access to the Internet, and then click Properties from the shortcut menu.On the Advanced tab, in Internet Connection Firewall, select Protect my computer and network, and then click OK. Windows XP firewall is enabled now.Step 6: Connect to the Internet BackConnect the cables as mentioned in step 1, into the back of your computer, to a telephone line or to modem.
Step 7: Update Installation Files RequiredTo help protect your computer against worms in the future, you must download and install the security update files 835 732, which was announced in Microsoft Security Bulletin MS04-011. To download the security update 835732, find a site http://go.microsoft.com/?LinkID=526067
Step 8: Checking and Cleaning SasserAfter you install security update files on your computer and restart your computer, access the web page "What You Should Know About the Sasser Worm and Its Variants" on the site http://www.microsoft.com/security/incident/sasser.asp . Wear the Sasser worm cleaner software to your hard drive can be scanned and cleaned of Sasser.A, Sasser.B, Sasser.C, and Sasser.D.
About Internet Connection FirewallWindows XP Internet Connection Firewall can block useful tasks such as file sharing or printer via a computer network, transmission or storage of multiplayer gaming. Microsoft recommends that you use a firewall to protect your computer.
Enter: Cmd and then click OK.
At the command prompt, type: shut down.exe-a and then press ENTER button.
Step 3: Perform Prevention
You can periodically remove all signs of the worm infects your computer by creating a log file.
Creating a log file
On the taskbar at the bottom of your monitor screen, click Start, then click Run.
Typing: cmd then click OK.
At the prompt, type: echo dcpromo>% systemroot% \ debug \ dcpromo.log and press ENTER.
Creating a log file read-only status
At the prompt, type: attrib + R% systemroot% \ debug \ dcpromo.log then press ENTER button.
Step 4: Change the System Performance
If your computer is giving signs of a slow Internet connection, the worm may have been entered into your computer network. Make you difficult to download and install the software upodate nya.Untuk change your system performance do:
Press CTRL + ALT + DELETE, and then click Task Manager.
For each of the following steps that may exist in the list, click the task to select it, then click the End Task button to end it.
Any task ending with _up.exe (for example, 12345_up.exe).
Each task begins with avserve (for example, avserve.exe).
Each task begins with avserve2 (for example, avserve2.exe).
Each task begins with skynetave (for example, skynetave.exe).
hkey.exe
msiwin84.exe
wmiprvsw.exe
CAUTION: Do not end the wmiprvse.exe task; because this is a task system that is being used.
Step 5: Enable FirewallA firewall is a piece of software or hardware designed to shield barrier between your computer and the Internet. If your computer is infected, a firewall will help minimize the effects of the worm. Windows XP comes with Internet Connection Firewall (ICF). Oprate ICF:
On the taskbar at the bottom of your monitor screen, click Start, then click Control Panel.Click Network and Internet Connections category.(If the Network and Internet Connections is not visible, click Switch to Category View in Control Panel the left side of the Control Panel window.)Click Network Connections.Click your right mouse button on the Dial-up, LAN, or on High-Speed Internet connection that there use to access to the Internet, and then click Properties from the shortcut menu.On the Advanced tab, in Internet Connection Firewall, select Protect my computer and network, and then click OK. Windows XP firewall is enabled now.Step 6: Connect to the Internet BackConnect the cables as mentioned in step 1, into the back of your computer, to a telephone line or to modem.
Step 7: Update Installation Files RequiredTo help protect your computer against worms in the future, you must download and install the security update files 835 732, which was announced in Microsoft Security Bulletin MS04-011. To download the security update 835732, find a site http://go.microsoft.com/?LinkID=526067
Step 8: Checking and Cleaning SasserAfter you install security update files on your computer and restart your computer, access the web page "What You Should Know About the Sasser Worm and Its Variants" on the site http://www.microsoft.com/security/incident/sasser.asp . Wear the Sasser worm cleaner software to your hard drive can be scanned and cleaned of Sasser.A, Sasser.B, Sasser.C, and Sasser.D.
About Internet Connection FirewallWindows XP Internet Connection Firewall can block useful tasks such as file sharing or printer via a computer network, transmission or storage of multiplayer gaming. Microsoft recommends that you use a firewall to protect your computer.
0 komentar:
Posting Komentar