Nodoze:

Oh C'mon.... If spybot.sd is that bad it takes 2 seconds to create a primary zone in your AD integrated to redirect them... Done... No writing of scripts.... You could also block the IP's at the firewall.... A single issue isn't an issue..... It's the thousands of "issues" that I'm looking at....

I gave you a nice quick way to defeat some 2500 "issues" from removing the need to change your AD DNS from integrated... (The RIGHT way), to Standard Primary, (the risky/WRONG way), that I found out there that someone smarter then me came up with that, in a properly set up DNS system, I adapted a little..... If you don't want to use it or if you think that you have a better way take it up with him, not me, or just do your own thing, it's fine by me....

Do you use the Bleeding Snort Malware rules? Didn't think so.... Trust me... It makes the IDS's go much quieter.... Remember, (or learn, since we don't know each other), I manage domains I have _no_ control over.... A quiet IDS where malware is concerned is a beautiful thing......