02 June 2009

Deteksi Virus Conficker di BlankOn

Apa itu virus Conficker, sudah dijelaskan panjang-lebar di wikipedia.
Sekarang saya akan deteksi virus Conficker dari sistem operasi BlankOn.
Berikut tahapannya :
1. Install impacket, sudo apt-get install python-impacket.
2. Download scs2 dari http://iv.cs.uni-bonn.de/wg/cs/applications/containing-conficker/, wget http://iv.cs.uni-bonn.de/uploads/media/scs2.zip
3. Ekstrak scs2, unzip scs2.zip.
4. Masuk ke direktori scs2, cd scs2.
5. Melakukan deteksi, ./scs2.py 192.168.0.1 192.168.0.5
Hasil deteksi kurang lebih :
Simple Conficker Scanner v2 -- (C) Felix Leder, Tillmann Werner 2009

[INFECTED] 192.168.0.4: Windows 5.1 [Windows 2000 LAN Manager]: Seems to be infected by Conficker B or C.
[CLEAN] 192.168.0.1: Windows 5.1 [Windows 2000 LAN Manager]: Seems to be clean.
[UNKNOWN] 192.168.0.2: No response from port 445/tcp.
[UNKNOWN] 192.168.0.3: No response from port 445/tcp.
[UNKNOWN] 192.168.0.5: No response from port 445/tcp.
Done


Nah lo....ada yang kena...!!!
Silahkan sang empunya IP dihubungi untuk segera diberi vaksin dengan menginstall BlankOn Linux.
heheheh....:)

2 comments:

  1. Hi Ded,
    Thx nih. Gue cari2 susah nemu. Rupanya ada di blog loe.

    ReplyDelete
  2. @Lutfi :
    Dah lama mo nulis ini tapi baru sempet.
    Di Mac OS juga berjalan. :)

    ReplyDelete

Disqus for Dedy selalu Milisdad