Well if you your all patched up you might wanna do one last scan just to be sure and if it finds nothing your all set.~bk said:Xie, i did the Windows update. What now?
Yeah if it wasn't coded so poorly it probably would be spreading like wild firej79zlr said:Always keep your windows updated I would check once a week or so. This new sasser worm installs without any user intervention through a SSL vulnerability, the patch was released 2 weeks ago.
# Copyright (c) 1993-1999 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host
127.0.0.1 localhost
You can use this tool to search your hard disk for and try to remove Sasser.A and Sasser.B.