How to check if Windows computer has SMB accessible over the internet?

Question

The currently spreading ransomware WannaCry exploits SMB vulnerabilities to infect new computer.

Is this exploitation possible over the internet?

How to check if my computer has SMB accessible over the internet or not?

Soufiane Tahiri · Accepted Answer · 2017-05-15T08:58:09.697

5

If your port 445/tcp is exposed to the outside then your SMB is accessible over internet. This usually requires port forwarding and your public/private IP must be reachable from the outside.

(Wannacry) as you might now is using "an exploit" and is not accessing SMB the regular way..

And for the sake of sharing, I guess you asked this question following what happened last Friday, Cisco released a snort rule for ETERNALBLUE (the SMB exploit) as SID 41978

edited May 15 '17 at 08:58

answered May 15 '17 at 08:45

Soufiane Tahiri

2,667
12
27

Thanks, so I guess that a "normal Windows computer with dynamic private IP behind a router" will not be infected from the internet by this exploit. – THN May 16 '17 at 08:58
I this that you will be fine if you are using private IPs – Soufiane Tahiri May 16 '17 at 11:59

How to check if Windows computer has SMB accessible over the internet?

1 Answers1