> It might be discussable installing a - easily uninstallable - routine
> which send emails and (broadcast) messages to admin account
> accessible from the infected box,

http://targethost/scripts/root.exe?/c+net+send+*+Your+computer+is+infected+b
y+the+Code+Red+Worm.+CLEAN+IT+UP+OR+DIE!!

You can easily modify the vigilante script to do what you want. The above
should pretty much broadcast the net send message to everything the
compromised box can talk to.

Geo.

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]