Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsMicrosoft WindowsConficker busted with standard linux tool - nmap
freakalad

236 posts

Master Geek
+1 received by user: 9


#31811 31-Mar-2009 12:58

Conficker is now caught out using a tried & testsed standard GNU/Linux tool: nmap

Please refer to this page for details, but the summary basically goes like this:

nmap -PN -T4 -p139,445 -n -v --script=smb-check-vulns --script-args safe=1 [targetnetworks]

note: you'll need to download the beta "4.85BETA5" & compile from source

now you can pick up infected (win) systems on your network

happy hunting ;)




FLOSS'er, aspiring Maker

Create new topic
freakalad

236 posts

Master Geek
+1 received by user: 9


  #204422 31-Mar-2009 13:41

UPDATE: alternative build instuctions available here is you're not getting the desired results




FLOSS'er, aspiring Maker



freitasm
BDFL - Memuneh
80653 posts

Uber Geek
+1 received by user: 41045

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

#204486 31-Mar-2009 17:42
Send private message

Since  the topic is Conficker, most home users should have Windows Update enabled by default and should not be affected by Conficker. As a fact I think most of the affected machines I've heard of were corporate PCs - in which case some IT departments choose to enable or disabled automatic updates depending on their management policies.

There are some common sense tips though:

• Fully Install the MS08-067 update on all your Windows PCs.
• Use an antivirus product. All the major ones detect and block Conficker from copying itself to other machines. Microsoft Forefront Client Security and Windows Live OneCare can/did block this worm.
• Use strong passwords both for any user account and also for any file shares.

I know Microsoft has a US$250,000 reward for information that results in the arrest and conviction of those responsible for illegally launching the Conficker malicious code on the Internet...

A lot of information on Conficker can be found here at http://www.microsoft.com/protect/computer/viruses/worms/conficker.mspx. Also more information here:

• The MSRC weblog (http://blogs.technet.com/MSRC)
• The MMPC weblog (http://blogs.technet.com/MMPC)
• The consumer security weblog (http://blogs.msdn.com/securitytipstalk/)
• The consumer Conficker landing page  (same as above) (http://www.microsoft.com/protect/computer/viruses/worms/conficker.mspx)
• IT Pro Conficker landing page (http://www.microsoft.com/conficker
• More information and free support for Conficker issues can be found here http://microsoft.com/protect or in the US and Canada can call the PC Safety hotline at 1-866-PCSAFETY.






Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies 

 

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

 

Create new topic








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.








RSS feeds
Main feed
Forums feed
Copyright
©2002-2026 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright