Windows update and patches

I thought Windows automatically downloaded patches. I received an alert. It
said Trend has detected a malicious piece of code that has went through your
computer. Install patch from Microsoft. I am not sure if I should because it
said if you already have the patch not to download it again. I don't know if
I have it or not. Everything seems to be OK.

Windows version?

What patch?

What has Trend Micro Support suggested?
--
~Robear Dyer (PA Bear)
MS MVP-Windows (IE, OE, Security, Shell/User)
AumHa VSOP & Admin; DTS-L.org

Tresa wrote:
> I thought Windows automatically downloaded patches. I received an alert.
> It
> said Trend has detected a malicious piece of code that has went through
> your
> computer. Install patch from Microsoft. I am not sure if I should because
> it
> said if you already have the patch not to download it again. I don't know
> if
> I have it or not. Everything seems to be OK.

"PA Bear" wrote:

> Windows version?
>
> What patch?
>
> What has Trend Micro Support suggested?
>
This is part of the heading.
-- MS02-039_SQL_SERVER_RESOLUTION_EXPLOIT

Vulnerability Identifier: CAN-2002-0649,CAN-2002-0650
Discovery Date: Jul 24, 2002
Risk: Critical
Related Malware: SQLSLAMMER.A
Affected Software:
Microsoft Desktop Engine 2000
Microsoft SQL Server 2000





> ~Robear Dyer (PA Bear)
> MS MVP-Windows (IE, OE, Security, Shell/User)
> AumHa VSOP & Admin; DTS-L.org
>
> Tresa wrote:
> > I thought Windows automatically downloaded patches. I received an alert.
> > It
> > said Trend has detected a malicious piece of code that has went through
> > your
> > computer. Install patch from Microsoft. I am not sure if I should because
> > it
> > said if you already have the patch not to download it again. I don't know
> > if
> > I have it or not. Everything seems to be OK.
>
> The Worm is called SQLSLAMMER.A and the patch is

"Tresa" wrote:

>
>
> "PA Bear" wrote:
>
> > Windows version?
> >
> > What patch?
> >
> > What has Trend Micro Support suggested?
> >
> This is part of the heading.
> -- MS02-039_SQL_SERVER_RESOLUTION_EXPLOIT
>
> Vulnerability Identifier: CAN-2002-0649,CAN-2002-0650
> Discovery Date: Jul 24, 2002
> Risk: Critical
> Related Malware: SQLSLAMMER.A
> Affected Software:
> Microsoft Desktop Engine 2000
> Microsoft SQL Server 2000
>
>
>
>
>
> > ~Robear Dyer (PA Bear)
> > MS MVP-Windows (IE, OE, Security, Shell/User)
> > AumHa VSOP & Admin; DTS-L.org
> >
> > Tresa wrote:
> > > I thought Windows automatically downloaded patches. I received an alert.
> > > It
> > > said Trend has detected a malicious piece of code that has went through
> > > your
> > > computer. Install patch from Microsoft. I am not sure if I should because
> > > it
> > > said if you already have the patch not to download it again. I don't know
> > > if
> > > I have it or not. Everything seems to be OK.
> >
> > I think I probably have already have the patch, since it was a long time ago. Right?

Run the Microsoft Baseline Security Analyzer.
http://www.microsoft.com/technet/sec...2/default.mspx

That'll let you know if anything is missing.

--
====================================
TaurArian [MS-MVP] 2005-2007 - Australia
====================================
How to make a good post: http://www.dts-l.org/goodpost.htm
Backup and data recovery: http://www.acronis.com.sg/
Enhancing file system performance: http://www.diskeeper.com/defrag.asp
Defending your machine: http://defendingyourmachine2.blogspot.com/


"Tresa" <> wrote in message
news:793C97E0-661C-4A20-8107-...
|
|
| "Tresa" wrote:
|
| >
| >
| > "PA Bear" wrote:
| >
| > > Windows version?
| > >
| > > What patch?
| > >
| > > What has Trend Micro Support suggested?
| > >
| > This is part of the heading.
| > -- MS02-039_SQL_SERVER_RESOLUTION_EXPLOIT
| >
| > Vulnerability Identifier: CAN-2002-0649,CAN-2002-0650
| > Discovery Date: Jul 24, 2002
| > Risk: Critical
| > Related Malware: SQLSLAMMER.A
| > Affected Software:
| > Microsoft Desktop Engine 2000
| > Microsoft SQL Server 2000
| >
| >
| >
| >
| >
| > > ~Robear Dyer (PA Bear)
| > > MS MVP-Windows (IE, OE, Security, Shell/User)
| > > AumHa VSOP & Admin; DTS-L.org
| > >
| > > Tresa wrote:
| > > > I thought Windows automatically downloaded patches. I received an alert.
| > > > It
| > > > said Trend has detected a malicious piece of code that has went through
| > > > your
| > > > computer. Install patch from Microsoft. I am not sure if I should because
| > > > it
| > > > said if you already have the patch not to download it again. I don't know
| > > > if
| > > > I have it or not. Everything seems to be OK.
| > >
| > > I think I probably have already have the patch, since it was a long time ago.
Right?

And your Windows version? And Trend Micro Support's recommendation?

Absent any of the above information or what you were doing when you got the
alert and assuming you've had Automatic Updates enabled all along, I'd very
much doubt that you don't have MS02-039 installed. Perhaps the alert was
just telling you to be sure it /is/ installed, not that you /need/ to
install it.
--
~Robear Dyer (PA Bear)
MS MVP-Windows (IE, OE, Security, Shell/User)
AumHa VSOP & Admin; DTS-L.org


Tresa wrote:
> "PA Bear" wrote:
>
>> Windows version?
>>
>> What patch?
>>
>> What has Trend Micro Support suggested?
>>
> This is part of the heading.
> -- MS02-039_SQL_SERVER_RESOLUTION_EXPLOIT
>
> Vulnerability Identifier: CAN-2002-0649,CAN-2002-0650
> Discovery Date: Jul 24, 2002
> Risk: Critical
> Related Malware: SQLSLAMMER.A
> Affected Software:
> Microsoft Desktop Engine 2000
> Microsoft SQL Server 2000
>
>
>
>
>
>> ~Robear Dyer (PA Bear)
>> MS MVP-Windows (IE, OE, Security, Shell/User)
>> AumHa VSOP & Admin; DTS-L.org
>>
>> Tresa wrote:
>>> I thought Windows automatically downloaded patches. I received an alert.
>>> It
>>> said Trend has detected a malicious piece of code that has went through
>>> your
>>> computer. Install patch from Microsoft. I am not sure if I should
>>> because
>>> it
>>> said if you already have the patch not to download it again. I don't
>>> know
>>> if
>>> I have it or not. Everything seems to be OK.
>>
>> The Worm is called SQLSLAMMER.A and the patch is

Hi,
I am also getting the same MS02-039_SQL_SERVER_RESOLUTION_EXPLOIT from my
trend program. It keeps halting my internet traffic several times a day. I
have the automatic updates scheduled and also have been running them manually
in case that maybe it wasn't working. I ran the Baseline Security Analizer
and that said I don't have a SQL Server or MSDE installed in my computer. I
am not the most computer savvy person out there so this is really confusing
to me. What should I do? suggestions would be greatly appreciated.


"PA Bear" wrote:

> And your Windows version? And Trend Micro Support's recommendation?
>
> Absent any of the above information or what you were doing when you got the
> alert and assuming you've had Automatic Updates enabled all along, I'd very
> much doubt that you don't have MS02-039 installed. Perhaps the alert was
> just telling you to be sure it /is/ installed, not that you /need/ to
> install it.
> --
> ~Robear Dyer (PA Bear)
> MS MVP-Windows (IE, OE, Security, Shell/User)
> AumHa VSOP & Admin; DTS-L.org
>
>
> Tresa wrote:
> > "PA Bear" wrote:
> >
> >> Windows version?
> >>
> >> What patch?
> >>
> >> What has Trend Micro Support suggested?
> >>
> > This is part of the heading.
> > -- MS02-039_SQL_SERVER_RESOLUTION_EXPLOIT
> >
> > Vulnerability Identifier: CAN-2002-0649,CAN-2002-0650
> > Discovery Date: Jul 24, 2002
> > Risk: Critical
> > Related Malware: SQLSLAMMER.A
> > Affected Software:
> > Microsoft Desktop Engine 2000
> > Microsoft SQL Server 2000
> >
> >
> >
> >
> >
> >> ~Robear Dyer (PA Bear)
> >> MS MVP-Windows (IE, OE, Security, Shell/User)
> >> AumHa VSOP & Admin; DTS-L.org
> >>
> >> Tresa wrote:
> >>> I thought Windows automatically downloaded patches. I received an alert.
> >>> It
> >>> said Trend has detected a malicious piece of code that has went through
> >>> your
> >>> computer. Install patch from Microsoft. I am not sure if I should
> >>> because
> >>> it
> >>> said if you already have the patch not to download it again. I don't
> >>> know
> >>> if
> >>> I have it or not. Everything seems to be OK.
> >>
> >> The Worm is called SQLSLAMMER.A and the patch is
>
>