CONFLICKER UPDATE:<\/p>\n
Symantec’s got a pretty simple (and free) tool specifically for Conficker: Or.<\/p>\n Doxpara Research has release a ‘scanner’ to check for conflicker infection.<\/p>\n Security expert Dan Kaminsky, working with the Honeynet Project’s Tillmann Werner and Felix Leder, have discovered an easier way to detect if a machine on a network is infected by Conflicker. Go here: Navigate to the exanded directory and ‘run’ the scanner on each individual computer. If you are unsure of how to find your IP address. Update – Another way to scan: CONFLICKER UPDATE: Symantec’s got a pretty simple (and free) tool specifically for Conficker:Download this file on an uninfected computer, follow the steps, and you should be okay. Or. Doxpara Research has release a ‘scanner’ to check for conflicker infection. Security expert Dan Kaminsky, working with the Honeynet Project’s Tillmann Werner and Felix Leder, have discovered … Continue reading “MORE CONFLICKER – CHECK FOR INFECTION”<\/span><\/a><\/p>\n","protected":false},"author":587,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[48,47,83,51,1],"tags":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/mikemartinezonline.com\/blog\/wp-json\/wp\/v2\/posts\/76"}],"collection":[{"href":"https:\/\/mikemartinezonline.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mikemartinezonline.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mikemartinezonline.com\/blog\/wp-json\/wp\/v2\/users\/587"}],"replies":[{"embeddable":true,"href":"https:\/\/mikemartinezonline.com\/blog\/wp-json\/wp\/v2\/comments?post=76"}],"version-history":[{"count":0,"href":"https:\/\/mikemartinezonline.com\/blog\/wp-json\/wp\/v2\/posts\/76\/revisions"}],"wp:attachment":[{"href":"https:\/\/mikemartinezonline.com\/blog\/wp-json\/wp\/v2\/media?parent=76"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mikemartinezonline.com\/blog\/wp-json\/wp\/v2\/categories?post=76"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mikemartinezonline.com\/blog\/wp-json\/wp\/v2\/tags?post=76"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
Download this file<\/a> on an uninfected computer, follow the steps, and you should be okay. <\/p>\n
Dan writes:”What we’ve found is pretty cool: Conficker actually changes what Windows looks like on the network, and this change can be detected remotely, anonymously, and very, very quickly. You can literally ask a server if it’s infected with Conficker, and it will tell you.<\/p>\n
http:\/\/www.doxpara.com\/<\/a>
download the scanner:
http:\/\/www.doxpara.com\/scs.zip<\/a>
Extract to folder and run it against your workstaions and servers:
Open command window – Start>run>type ‘cmd’<\/p>\n
Example:
C:\\ yourdesktop \\scs\\scs>scs.exe 192.168.31.2
[For the admins out you can use a host file for a range of IPs]<\/p>\n
Open up command windows – – Start>run>type ‘cmd’ then type in “ipconfig \/all”
[If you don’t know how to navigate in the DOS window check this out:
http:\/\/www.online-tech-tips.com\/computer-tips\/how-to-use-dos-command-prompt\/<\/a> ]<\/p>\n
1. Download and install Python 2.6.1: [www.python.org]<\/a> [python.org]
2. Download Impacket from [oss.coresecurity.com]<\/a> [coresecurity.com] (or maybe [pypi.zestsoftware.nl]<\/a> [zestsoftware.nl] or some other mirror)
3. Download the scanner from [iv.cs.uni-bonn.de]<\/a> [uni-bonn.de]
4. Unpack Impacket into a folder, then install Impacket from a command line with c:\\python26\\python setup.py install
5. Run the scanner with the command c:\\python26\\python scs.py [starting_ip] [ending_ip]<\/p>\n","protected":false},"excerpt":{"rendered":"