In my opinion, it is tapering off but will never go away 100%, there will always be some morons out there who can't patch a server if their life depended on it, or who just don't care that their server is a spawning station for worms.
What it will take to eradicate it for good is some hacker to make a more dangerous strain, one that actually wipes out the target computers, or worse. Then they'll be *forced* to patch their servers.
Or, like I suggested in another thread, somebody could modify the worm so it installs the patch itself, then reboots the server for a fresh-start. Or better yet, install Linux... ;-)
I think that is just what will happen Bolo. Those that are still running will get targeted for total takeover. They'll either fix the hole, or suffer fatal results.
That said, while I was gone for two weeks, my box has close to 8k requests for default.ida.
...keep in mind, a Virus is not an internet problem.
It is a MicroShaft problem.
"Sorry, it is too expensive for us to bother testing and engineering for security problems. Just buy more of our products, and shut up."
It has tapered off condiderably now. The ones that remain are primarily cable modem customers with Not Today set up as a server.
it definitely messed with stats analyzing a little......
<<somebody could modify the worm so it installs the patch itself, then reboots the server for a fresh-start>>
Not a bad idea!
<not a bad idea>
Yeah, but it would probably be against the law, even if it's well intentioned. Still, if somebody wrote the patch in the form of a worm... I guess we'd never know who started it?! :)
<<Still, if somebody wrote the patch in the form of a worm... I guess we'd never know who started it>>