> It might be discussable installing a - easily uninstallable - routine > which send emails and (broadcast) messages to admin account > accessible from the infected box, http://targethost/scripts/root.exe?/c+net+send+*+Your+computer+is+infected+b y+the+Code+Red+Worm.+CLEAN+IT+UP+OR+DIE!! You can easily modify the vigilante script to do what you want. The above should pretty much broadcast the net send message to everything the compromised box can talk to. Geo.
This archive was generated by hypermail 2b30 : Thu Sep 06 2001 - 23:07:38 PDT