Code Red II
#1
![Post](https://www.scoobynet.com/images/icons/icon1.gif)
This is a new worm that uses the exploit that code red uses, so make sure your servers are patched. I'm getting alot more of these attempts on my servers at work then the code red worm. Started seeing this one on saturday.
#3
Moderator
iTrader: (2)
![Unhappy](https://www.scoobynet.com/images/icons/icon9.gif)
Anyone else had a buggered W2K SQL 7.0 server???
It had W2K SP2 & 7.0 SP3 & after applying the W2k anti-code red patch, on re-boot knackered SQL database
Shafted dll...
May be a co-incidence but this is Microsoft we're talking about
![](http://bbs.scoobynet.co.uk/wink.gif)
Anyhow, its all back together & IIS is no-longer avail on that server (previous default install
) - just tedious
![](http://bbs.scoobynet.co.uk/frown.gif)
![](http://bbs.scoobynet.co.uk/frown.gif)
May be a co-incidence but this is Microsoft we're talking about
![](http://bbs.scoobynet.co.uk/rolleyes.gif)
![](http://bbs.scoobynet.co.uk/wink.gif)
Anyhow, its all back together & IIS is no-longer avail on that server (previous default install
![](http://bbs.scoobynet.co.uk/rolleyes.gif)
![](http://bbs.scoobynet.co.uk/frown.gif)
#4
![Talking](https://www.scoobynet.com/images/icons/icon10.gif)
Personally Puff I wouldn't mix W2K and SQL 7 bit of a 'orrible Microsoft mix IMO.
Am I right in saying that you are a beta site for the latest DA systems masterpiece? If so and you have the time I would appreciate a wee chat offline if you don't mind...
[This message has been edited by WillieF (edited 06 August 2001).]
Am I right in saying that you are a beta site for the latest DA systems masterpiece? If so and you have the time I would appreciate a wee chat offline if you don't mind...
[This message has been edited by WillieF (edited 06 August 2001).]
#5
![Post](https://www.scoobynet.com/images/icons/icon1.gif)
Puff, what is it about you and computers?!
I've got Win2k, SQL 2000, Oracle plus lots of other stuff and the patches applied fine!
For anyone who's responsible for a server, I'd suggest getting the MS HOTFIX checker (don't think that windows update gets you ALL the fixes: it doesn't!) as well as subscribing to at least the MS security mailing list.
I've had 40 code red attempts per day on one of my machines (increasing each day since the first) and despite knowing I'd patched it, still panicked when I realised I'd not removed the .ida mappings from one website!
I've got Win2k, SQL 2000, Oracle plus lots of other stuff and the patches applied fine!
For anyone who's responsible for a server, I'd suggest getting the MS HOTFIX checker (don't think that windows update gets you ALL the fixes: it doesn't!) as well as subscribing to at least the MS security mailing list.
I've had 40 code red attempts per day on one of my machines (increasing each day since the first) and despite knowing I'd patched it, still panicked when I realised I'd not removed the .ida mappings from one website!
#6
![Post](https://www.scoobynet.com/images/icons/icon1.gif)
One of our web servers runs Win 2000 AS and SQL 2000 and no problems with the patch.
Not tried SQL 7 + W2000 with the patch though.
<BLOCKQUOTE><font size="1" face="Verdana, Arial">quote:<HR>I'd suggest getting the MS HOTFIX checker (don't think that windows update gets you ALL the fixes: it doesn't!) <HR></BLOCKQUOTE>
We've modified it to send e-mail alerts when missing hotfixes are found. I'll trade a copy for a beer or two.![](http://bbs.scoobynet.co.uk/smile.gif)
ChrisB.
[This message has been edited by ChrisB (edited 06 August 2001).]
Not tried SQL 7 + W2000 with the patch though.
<BLOCKQUOTE><font size="1" face="Verdana, Arial">quote:<HR>I'd suggest getting the MS HOTFIX checker (don't think that windows update gets you ALL the fixes: it doesn't!) <HR></BLOCKQUOTE>
We've modified it to send e-mail alerts when missing hotfixes are found. I'll trade a copy for a beer or two.
![](http://bbs.scoobynet.co.uk/smile.gif)
ChrisB.
[This message has been edited by ChrisB (edited 06 August 2001).]
Trending Topics
#8
Scooby Senior
Join Date: Feb 2000
Location: West Midlands
Posts: 5,763
Likes: 0
Received 0 Likes
on
0 Posts
![Question](https://www.scoobynet.com/images/icons/icon5.gif)
Does anyone know what the real impact of the latest Code Red II is having on the Internet?
I am getting loads of HTTP access attempts (stealth blocked by my firewall), typically from 212.*.*.* addresses. The first batch (they are typically in threes) came two minutes into me connecting via dial-up.
Bloody kids!!![](http://bbs.scoobynet.co.uk/mad.gif)
mb
I am getting loads of HTTP access attempts (stealth blocked by my firewall), typically from 212.*.*.* addresses. The first batch (they are typically in threes) came two minutes into me connecting via dial-up.
Bloody kids!!
![](http://bbs.scoobynet.co.uk/mad.gif)
mb
#11
Scooby Senior
Join Date: Feb 2000
Location: West Midlands
Posts: 5,763
Likes: 0
Received 0 Likes
on
0 Posts
![Thumbs up](https://www.scoobynet.com/images/icons/icon14.gif)
SL2,
thanks for the GRC pointer (i should of thought of that in the first place
)
It looks very worrying, because "part time" system managers won't know how to put all the bits back, once it's broken.
Why-oh-why do Microsoft write such (un-necessarily) complex code (with not enough error traps)![](http://bbs.scoobynet.co.uk/rolleyes.gif)
mb
thanks for the GRC pointer (i should of thought of that in the first place
![](http://bbs.scoobynet.co.uk/redface.gif)
It looks very worrying, because "part time" system managers won't know how to put all the bits back, once it's broken.
Why-oh-why do Microsoft write such (un-necessarily) complex code (with not enough error traps)
![](http://bbs.scoobynet.co.uk/rolleyes.gif)
mb
Thread
Thread Starter
Forum
Replies
Last Post
Mattybr5@MB Developments
Full Cars Breaking For Spares
28
28 December 2015 11:07 PM
Mattybr5@MB Developments
Full Cars Breaking For Spares
12
18 November 2015 07:03 AM
Sam Witwicky
Engine Management and ECU Remapping
17
13 November 2015 10:49 AM