Code Red and Windows 2000

F. Alsaffar - LT Tech SRV MGR ALSAFFAR at ONLINE.EMICH.EDU
Fri Jul 27 19:27:11 GMT 2001


Subj:	Fwd: Code Red

   -------------------------- [Original Message] -------------------------     

This is an update on the "Code Red Virus".  The report sent to us by CERT does
mention Windows 2000 as being a target for this virus though CERT, and Microsft,
are stressing Windows NT and 2000 web servers as the machines that are most at
risk.  However Spencer Schubbe and I found that several machines were infected
with the virus that were not servers but standard Microsoft Windows 2000
Professional Workstations. The virus affects the Indexing Service in Windows
2000 and does not not necessarily show any outward apperance that it has been
infected however it still may be responsible for Distributed Denial of Service
(DDOS) attacks.  The Indexing Service is used in file searching so I would not
recommend trying to remove the service.  My advice is to run the patch on all
2000 machines whether they are servers or not.  Below is the URL provided by
Microsoft.
http://www.microsoft.com/Downloads/Release.asp?ReleaseID0800

Michael Sheppard
Manager, ATIS


----- End forwarded message -----



More information about the unisog mailing list