1 of two things. 1. hacker trying to exploit default.ida 2. code red -----Original Message----- From: Martin Smith [mailto:martin.smith@xxxxxxxxxx] Sent: Tuesday, September 11, 2001 2:41 AM To: [ISAserver.org Discussion List] Subject: [isalist] deafult.ida http://www.ISAserver.org This has just started to appear within the ISA log files 211.217.24.13 anonymous - 2001-09-08 10:43:51 ISA - 444.444.444.444 10.10.10.19 80 911 3818 - http GET http://10.10.10.19:80/default.ida?XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX Inet 10053 Anyone know what it is Thanks Martin ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jmobley@xxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')