Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




208 posts

Master Geek
+1 received by user: 1


Topic # 31811 31-Mar-2009 12:58

Conficker is now caught out using a tried & testsed standard GNU/Linux tool: nmap

Please refer to this page for details, but the summary basically goes like this:

nmap -PN -T4 -p139,445 -n -v --script=smb-check-vulns --script-args safe=1 [targetnetworks]

note: you'll need to download the beta "4.85BETA5" & compile from source

now you can pick up infected (win) systems on your network

happy hunting ;)




FLOSS'er

Create new topic


208 posts

Master Geek
+1 received by user: 1


  Reply # 204422 31-Mar-2009 13:41

UPDATE: alternative build instuctions available here is you're not getting the desired results




FLOSS'er

BDFL - Memuneh
61812 posts

Uber Geek
+1 received by user: 12466

Administrator
Trusted
Geekzone
Lifetime subscriber

Reply # 204486 31-Mar-2009 17:42
Send private message

Since  the topic is Conficker, most home users should have Windows Update enabled by default and should not be affected by Conficker. As a fact I think most of the affected machines I've heard of were corporate PCs - in which case some IT departments choose to enable or disabled automatic updates depending on their management policies.

There are some common sense tips though:

• Fully Install the MS08-067 update on all your Windows PCs.
• Use an antivirus product. All the major ones detect and block Conficker from copying itself to other machines. Microsoft Forefront Client Security and Windows Live OneCare can/did block this worm.
• Use strong passwords both for any user account and also for any file shares.

I know Microsoft has a US$250,000 reward for information that results in the arrest and conviction of those responsible for illegally launching the Conficker malicious code on the Internet...

A lot of information on Conficker can be found here at http://www.microsoft.com/protect/computer/viruses/worms/conficker.mspx. Also more information here:

• The MSRC weblog (http://blogs.technet.com/MSRC)
• The MMPC weblog (http://blogs.technet.com/MMPC)
• The consumer security weblog (http://blogs.msdn.com/securitytipstalk/)
• The consumer Conficker landing page  (same as above) (http://www.microsoft.com/protect/computer/viruses/worms/conficker.mspx)
• IT Pro Conficker landing page (http://www.microsoft.com/conficker
• More information and free support for Conficker issues can be found here http://microsoft.com/protect or in the US and Canada can call the PC Safety hotline at 1-866-PCSAFETY.






Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Geekzone Live »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.