Security Basics mailing list archives

Re: dispatcher.aspx

From: Jeff Harris <jharris () rallycentral us>
Date: Fri, 2 May 2003 10:33:38 -0700 (PDT)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I just ran a virus check with an updated virus file, and ran Ad-Aware 6
with an updated config. They both show nothing suspicious. Maybe I'll try
some of the other tools brought up in the Xupiter thread, unless someone
else has any more ideas.

On Thu, 1 May 2003 SMiller () unimin com wrote:

{
{ Have you run Ad-Aware? A Google search on just "dispatcher.apsx" yields
{ results at 2 sites. 1 is "cermet.net", which appears to be an Italian Q/C
{ certification outfit of some sort. The second site "vajlugkub.com", looks
{ suspiciously like a spammer's site to me.
{
{ -Scott Miller
{
{                       Jeff Harris
{                       <jharris@tahongaw        To:       security-basics () securityfocus com
{                       aka.nu>                  cc:
{                                                Subject:  dispatcher.aspx
{                       04/30/2003 05:45
{                       PM
{
{
{
{
{
{
{ I was checking my log files for my linux webserver/router/firewall/NAT,
{ and noticed that my Win2K machine (internal network) was pounding the
{ webserver for http://myurl/internal/dispatcher.aspx
{
{ This only happpened on Friday, at the rate of about 3 times a minute, and
{ only from the Win2K machine. A Check of Google, Symantec and McAfee don't
{ yield any results. Does anyone have any insights as to what might be
{ causing this?
{
{ Thanks,
{ Jeff
{

- -- 
Registered Linux user #304026.
"lynx -source http://jharris.rallycentral.us/jharris.asc | gpg --import"
or "gpg --keyserver pgp.mit.edu --recv-key B0890FED"
Key fingerprint = 52FC 20BD 025A 8C13 5FC6  68C6 9CF9 46C2 B089 0FED
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
Comment: Made with pgp4pine 1.76

iD8DBQE+sqv8nPlGwrCJD+0RAvN4AJ0c04gFd9UpgcR/PiI7N+ek4dJmfwCg0TRq
UKG5ADye6ap2OfLEToWKjSw=
=huXT
-----END PGP SIGNATURE-----



---------------------------------------------------------------------------
FastTrain has your solution for a great CISSP Boot Camp. The industry's most 
recognized corporate security certification track, provides a comprehensive 
prospectus based upon the core principle concepts of security. This ALL INCLUSIVE curriculum utilizes lectures, case 
studies and true hands-on utilization 
of pertinent security tools. For a limited time you can enter for a chance 
to win one of the latest technological innovations, the SEGWAY HT. 
Log onto http://www.securityfocus.com/FastTrain-security-basics 
----------------------------------------------------------------------------

Current thread:

dispatcher.aspx Jeff Harris (May 01)
- <Possible follow-ups>
- Re: dispatcher.aspx SMiller (May 02)
  - Re: dispatcher.aspx Jeff Harris (May 02)