Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

The endless war on Conficker, need some advice.

Posted on 2009-07-15
4
407 Views
Last Modified: 2013-12-09
When I was hired to a new technology team at my school district, we were faced with a huge task.  This included battling a network that was 100% beat down by variants of the Conficker virus.  Three months into the job, we are making progress, but feel that it is not enough.  After imaging the whole school and ensuring that all workstations and servers are up to date in terms of OS and Symantec EP, we are starting to see attacks rising on our domain controller once again (Failure audits in our security log).  Is anyone else successfully battling this in their district or company?  If so, how?  We are looking to other possible AV solutions, so if anyone has recommendations, please share.  Note that our network is locked down very well.  As of right now, we are still allowing teachers and summer school students to use flash drives.  I am aware that these drives are most likely infected, but theoretically shouldn't SEP pull conficker off the second it is detected??  And with the most current Microsoft patches, why would this cause any issues?
0
Comment
Question by:jsantora83
4 Comments
 
LVL 5

Expert Comment

by:KETTANEH
ID: 24865071
i've installed Kasbersky internet security on the machine in my network  ... all conficker issue gone ..

you should have good antivirus + good firewall (important)
0
 
LVL 7

Assisted Solution

by:vvlada
vvlada earned 100 total points
ID: 24866715
Hi,

You probably have a few machines that has "false" patch and are still infected. Are you sure that you have SEP on ALL machines in the network? Do you use full install package with Network Threat Protection or just antivirus? Are you sure that all machines are updated and scaned?

We have a lot of customers with SEP and 0 problems with Conficker!

Best regards,
Vladimir
0
 
LVL 16

Expert Comment

by:warturtle
ID: 24867297
0
 
LVL 2

Accepted Solution

by:
jsantora83 earned 0 total points
ID: 24898682
We are installed and patched across the whole network.  We have now decided to do a walkthrough of the entire school and sit at each machine individually.
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I recently had to create a utility which aim is to update McAfee's Virusscan and that had to be launched from a command line. I thought I’d share my experience with you. Why is it useful to be able to update an Antivirus from the command line?…
When you upgrade from Windows 8 to 8.1 or to Windows 10 or if you are like me you are on the Insider Program you may find yourself with many 450MB recovery partitions.  With a traditional disk that may not be a problem but with relatively smaller SS…
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question