Code Red 2 cleanup; reporting..

• Previous message (by thread): Code Red 2 cleanup; reporting..
• Next message (by thread): Code Red 2 cleanup; reporting..
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> FWIW, I just tried to telnet to the 20 most recent hosts I got Code Red II 
> probes from, and didn't get a shell prompt on any of them. Are people 
> cleaning up their boxes that quickly?

I have been told, but not personally conformed confirmed of non IIS
machines being infected with CodeRed (I or II not known, assume II).
Infection method: running an file from somewhere? They still scan out
and seek victims, just no webserver running.

• Previous message (by thread): Code Red 2 cleanup; reporting..
• Next message (by thread): Code Red 2 cleanup; reporting..
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]