Troubleshooting Conficker

Here are the steps to take to overcome Conficker.

1. Download Microsoft® Windows® Malicious Software Removal Tool from microsoft website (check the latest version).

2. Copy this tool to the problem server and run it.

3. Run a full scan (find at least 2 files that cause conficker) then stop the scan.

4. Then disable file/printer sharing from network properties

5. Disable port 445

- You can check it first in cmd

netstat -na | find "445" (Check the port that is open on 445)

5. Disable port 445:


You can easily disable port 445:

a. Open the Registry Editor (Regedit.exe).

b. Find the registry key below:

HKLM\System\CurrentControlSet\ Services\NetBT\Parameters

c. On the right, look for an option named TransportBindName.

d. Then double click, and delete the default value, then it will give a blank value.

e. Close the registry editor


6. Apply the patch from conficker.

7. Restart the server.

8. Run windows update and patch to the latest version.

Did you find it helpful? Yes No

Send feedback
Sorry we couldn't be helpful. Help us improve this article with your feedback.