Solved

what port number does conflicker use?

Posted on 2009-03-31
9
1,775 Views
Last Modified: 2013-11-22
Who has any idea about the port number used by conflicker?
0
Comment
Question by:oandosupport
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
  • +2
9 Comments
 
LVL 6

Expert Comment

by:Grizzly072000
ID: 24033283
Apparently, port numbers for connections are hashed from the IP address of each peer (See: http://mtc.sri.com/Conficker/)

http://en.wikipedia.org/wiki/Conficker

See https://wikis.uit.tufts.edu/confluence/display/Conficker/Conficker+Resource+Page for some tools.
0
 
LVL 18

Accepted Solution

by:
Rartemass earned 500 total points
ID: 24033717
The port used is generally between 1024 and 10000.
0
 
LVL 6

Expert Comment

by:Grizzly072000
ID: 24033808
For (obsolete) variants A and B only. See above article (http://en.wikipedia.org/wiki/Conficker)
0
Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

 
LVL 16

Expert Comment

by:warturtle
ID: 24037130
Hello,

I am interested in finding out if you only need the port number for Conficker propogation or you want to remove it from your machine?? If you want to remove it, then you can use the Microsoft Malicious Software Removal Tool based at:

http://www.microsoft.com/security/malwareremove/default.mspx

Hope it helps.
0
 
LVL 16

Expert Comment

by:warturtle
ID: 24288231
I don't know if the asker got the correct answer or if the question was more than what had been asked. Hard to tell because we never heard back from the asker. Its upto other experts to decide if they want to split points for time spent or refund points to asker.
0
 
LVL 18

Expert Comment

by:Rartemass
ID: 24291898
The links and advice provided by the experts could be useful for other people.
As the asker hasn't responded there is no knowing what comment provided his solution.

If giving points, the only fair way in this case would be to split between all contributing experts.

0
 

Author Closing Comment

by:oandosupport
ID: 31565036
Thank you
0

Featured Post

What Is Transaction Monitoring and who needs it?

Synthetic Transaction Monitoring that you need for the day to day, which ensures your business website keeps running optimally, and that there is no downtime to impact your customer experience.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many of you may be aware of the recent Google Docs scam emails that have been floating around coming from various people that you know. Here's a guide on identifying How To Identify the Scam Email You will see an email from someone you’ve had co…
In this blog we highlight approaches to managed security as a service.  We also look into ConnectWise’s value in aiding MSPs’ security management and indicate why critical alerting is a necessary integration.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question