Re: Default.ida requests

From: Sheik Abdulla (Sheik@pt.com.sg)
Date: 09/11/01 

From: Sheik Abdulla <Sheik@pt.com.sg>
To: "Balunos, Don" <don.balunos@analog.com>
Message-ID: <124501c13a93$54ae09e0$9a050180@pt.com.sg>
Subject: Re: Default.ida requests
Date: Tue, 11 Sep 2001 15:28:14 +0800

If you are using Trend Micro Office Scan in your network, you can scan for
CR and remove it remotely.

regards,
sheik abdulla j

----- Original Message -----
From: "Balunos, Don" <don.balunos@analog.com>
To: "Marc Richter" <mrichter@eu.uu.net>; "Andrew Blevins"
<ABlevins@arrowheadgrp.com>
Cc: <SECURITY-BASICS@securityfocus.com>
Sent: Tuesday, September 11, 2001 2:23 AM
Subject: RE: Default.ida requests

> So, if I'm seeing it from some of my box inside my network therefore
> they are infected if so, can you guys help me out where can i source out
> some
> utility tools for us to check in box remotely. Thanks.
>
> Regards,
>
> Don Balunos
> Analog Devices Inc.
> vox (781) 461-3040
> fax (781) 461-4476
> email don.balunos@analog.com
>
>
> -----Original Message-----
> From: Marc Richter [mailto:mrichter@eu.uu.net]
> Sent: Saturday, August 18, 2001 8:52 AM
> To: Andrew Blevins
> Cc: SECURITY-BASICS@securityfocus.com
> Subject: Re: Default.ida requests
>
>
> On Fri, Aug 17, 2001 at 03:15:45PM -0700, Andrew Blevins wrote:
> > If I am seeing alot of default.ida requests to a box, is that indicative
> of
> > Code Red on the requestor?
>
> Oh yes, it is !
>
> --Marc

Relevant Pages