The CodeRed word itself sounded like a hot red jelly seeds in jack and the beanstalk. I mean, frankly speaking, it is a worm that caused possible billions of dollars of damage in the summer of 2001. The malicious program is very sneaky and can stand alone which uses computer or network resources to make complete copies of itself. If the malicious program infected your system or network, it will turned your computer into a slave.
Meaning to say, the malicious program could steal what was on your computer or even use your computer to do bad things. If you were connected to the internet that day, you might as well get infected. The worm runs entirely in memory, and cannot be found on the disk. It is about 3,569 bytes long. Since the worm's code is not written to a hard disk (it exists only in memory) rebooting will eliminate the infection completely.
The virus launched itself on computer users in July, infecting up to 300,000 machines before bombarding the White House web site on July 19 with requests that threatened to overload the site's server. Code Red infected between 1 and 2 million computers and resulted in an estimated $2.75 billion in clean-up costs and lost productivity. This is out of a possible 6 million, as that is the number of IIS servers in existence at the time.
It contains the text string "Hacked by Chinese!", The phrase in the payload became an Internet meme indicating an online defeat. Sometimes it means being beaten in a game by a less-experienced player or someone with less skills. This phrase was still used as late as mid January in 2010. Some people believed that the worm originated in Makati City, Philippines (the same origin as the VBS/Loveletter worm).
The defaced web pages strongly suggest that it might come from China. China was a natural line of inquiry for US investigators, experts say that could simply be a red herring intended to lead investigators away from the worm's true origin. A chinese government spokesman said the country had no information about the worm.
The signature of the malicious virus log as:
GET
/default.ida?NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN
NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN
NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN%u9090%u6858%ucbd3%u7801%u9090
%u6858%ucbd3%u7801%u9090%u6858%ucbd3%u7801%u9090%u9090%u8190%u00c3%u0003%u8b00%u531b%u53f
f%u0078%u0000%u00=a HTTP/1.0
The Code-Red worm is a wake-up call. This exploit demonstrates clearly the need to keep machines up-to-date with security developments. The worm stopped propagating on July 28, 2001 and goes into an infinite sleep mode. It cannot be awakened unless deliberately executed.
References:
“All Versions of Microsoft IIS Remote Buffer Overflow.” June 18, 2001.
http://www.eeye.com/html/Research/Advisories/AD20010618.html
Saita, Anne. “Code Red’s Costs and Hunt for Creator Mount.” Information Security
Magazine. Security Wire Digest, Vol. 3, No. 68. September 6, 2001.
The Code-Red worm is a wake-up call. This exploit demonstrates clearly the need to keep machines up-to-date with security developments. The worm stopped propagating on July 28, 2001 and goes into an infinite sleep mode. It cannot be awakened unless deliberately executed.
References:
“All Versions of Microsoft IIS Remote Buffer Overflow.” June 18, 2001.
http://www.eeye.com/html/Research/Advisories/AD20010618.html
Saita, Anne. “Code Red’s Costs and Hunt for Creator Mount.” Information Security
Magazine. Security Wire Digest, Vol. 3, No. 68. September 6, 2001.
awesome blog spot here...
ReplyDeletetnx :))
Deleteawesome info brah..
ReplyDeletethanks dude!
DeleteAwesome! Your really good at this, and the information are really well explained. Super like! By the way cool blog spot. :)
ReplyDeletewow, I mean.. very much appreciated the way you post a comment. actually, it's my first time making a blog like this. thanks man!
Deletehey!. nice blog i would say. . information are well stated and pretty much interesting!. nice 1!. not bad for a first time blogger. its a job well done and a 2 thumbs-up for you Clem Carlo Suizo. .
ReplyDeleteKeep up!
overwhelming arise!
Deletethanks man.
*speechless :x
Code red Virus
ReplyDeletethanks Gov'. hehe :P
Deleteka o.e sa pesteee ! oh dara nagcomment naku. Hope u like it. HAHAHAHAHAHA
ReplyDeletepare, ang ganda ng commento mu. every characters meaningful kaau! salamat! gikan ud diay ni sa heart. AHHAHA.
DeleteLOL :D
ahahaha.. natawa ako sa comment.. trolol
Deletepatawa si pareng hanz nu?
Deletehehehe. toink :D
a virus using a string words..wow
ReplyDeletefascinating isn't it?
Deletewell, thanks anyway..
i love the way you used the worm term and how you constructed this blog. Very nice! beware of the CodeRed. :))
ReplyDeletethe malicious virus is in infinite sleep mode, no to worry. I appreciated your comment. thanks there :)
Deletenice one bayot! galing jud! ^^
ReplyDelete^_^
Deletegaling.. kumpleto sa info,.. strong virus, but STRING WORDS makes it much cooler.. nice..who would ever thought, string words could be so tough..ahahha.. (I didn't)
ReplyDeleteyeah! very interesting virus indeed!
Deleteit should be SEED in Jack and the Beanstalk :))
ReplyDeleteso far, good enough for a newbie :))
good job Clem and keep it up =^^,=V
ohhh, I see.
Deletesorry bout' that. next time I'll double check the singularity and plurality of my content.
tnx 'bout that :)
nice clems! kung may kulang man sa blog q ,iyong blog mu ang kukumpleto nito.. haha.... LOL ! so far , your design inspired me kaya fan aq sa simplicity and uniqueness, paiba jud au! ^^
ReplyDelete-ashura
parang love birds, mamamatay ang isa kapag walang kapares na kokompleto sa kanya.
Delete-achichee :)
tnx lou. u rock!!!!
haha! uo clems, kaya wag tayo mag iwanan hah pag lumipad kah, sama mu din aku!LOL!
Deleteachicee talaga pare!
wc clems!i rock!
hahaha. the "i rock" makes me laugh.
Deletedamn cool lou. :))
nice style with your blog simple yet attracts people.
ReplyDeletethank you!
Delete#very much appreciated.
The information is well delivered and constructed and I can't barely think a comment to say. Your blog is good, I liked it from the info/content to the design. And if I were given a chance to rate it, I would give 10/10.
ReplyDeletewow, I'd like the sound of that. 10/10. thanks glenn. I'm overwhelmed. frankly, I'm speechless!
Deletethnk u again :)
- pareng clem isa lng masasab ko :))) good job :))
ReplyDeletesalamat pare, you too..
Deletesabi nga ng iba, simplicity is beauty. nasa sau rin ang mga katangiang iyon. nakita ko ang blog mu! isa lang ang masasabi ko..
Good job din :))
pare...isa lng masasabi ko, ayan nasabi ko na.. :D
ReplyDeletehey Clem! It's a very nice blog you have here. Full of information and well thought of. Siguro basaha ni ug usab then correct some of your grammars. Medyo naay mali eh. :)
ReplyDeleteBut all in all, it was worthy to read. Good job!
hawud man diay ka anang sulat2. :D
han ay tanan..
ReplyDeletenice choice of fonts and layout
:D
informative..