I went through Intel's press release and document on how to detect the exploit.
https://downloadmirror.intel.com/26754/eng/Intel-SA-00075%20Mitigation%20Guide-Rev%201.2.pdf
Intel says this to detect:
netstat -na | findstr "\<16993\> \<16992\> \<16994\> \<16995\> \<623\> \<664\>"

Is that all we can do? just scan for port numbers and throw them into our firewalls?