republican-creole
site Search:


Home Reviews Tools Forums FAQs Find Service ISP News Maps About  
 
    All Forums Hot Topics Gallery






how-to block ads

  
Forums >

DSL Reports At Code Red Forefront > New Version out?

Search Topic:
 Uniqs:
648		 Share Topic
Post a:
Post a:
AuthorAll Replies

ntwrkguy2

join:2001-08-07
West Lafayette, IN

New Version out?

could there be a new version of the virus that is starting to spread? this is the only hit I have under this format.

8/6/01 21:03:27 - NON AUTHORIZED IP 24.10.xx.xx(ccxxxxxx-a.taylor1.mi.home.com) GET /x.ida?aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa=x Status Code 403 688 Bytes Outbound 265 Bytes Inbound [Refrence Number 1185]

I have xx's out portions of the IP for the "protection" of the owner of this machine.

Brian
Network Administrator
Round Grove Machine Corp.
to forum · permalink · 2001-08-07 10:00:49 ·


Steve
I know your IP address
Consultant
join:2001-03-10
Yorba Linda, CA
kudos:5

said by ntwrkguy:
GET /x.ida?aaaaa....aaa=x
This looks very much like the eEye Code Red Scanner tool (though I believe they use A instead of a). I'm quite sure this can't do any infection because the "overflow" code is too small to actually do anything.

Steve
--
Stephen J. Friedl / Software Consultant / Tustin, California USA / »www.unixwiz.net
to forum · permalink · 2001-08-07 10:24:35 ·


rocko_

@64.46.x.x

Speaking of eEye's code red scanner - anyone know of another tool that will scan more than a single class C at a time?

Thanks

to forum · permalink · 2001-08-07 14:54:57 ·
Forums > DSL Reports At Code Red Forefront

Tuesday, 21-May 10:44:49 Terms of Use & Privacy | feedback | contact | Hosting by nac.net - DSL,Hosting & Co-lo
over 13.5 years online © 1999-2013 dslreports.com.
Most commented news this week
Hot Topics