Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

The endless war on Conficker, need some advice.

Posted on 2009-07-15
4
Medium Priority
?
412 Views
Last Modified: 2013-12-09
When I was hired to a new technology team at my school district, we were faced with a huge task.  This included battling a network that was 100% beat down by variants of the Conficker virus.  Three months into the job, we are making progress, but feel that it is not enough.  After imaging the whole school and ensuring that all workstations and servers are up to date in terms of OS and Symantec EP, we are starting to see attacks rising on our domain controller once again (Failure audits in our security log).  Is anyone else successfully battling this in their district or company?  If so, how?  We are looking to other possible AV solutions, so if anyone has recommendations, please share.  Note that our network is locked down very well.  As of right now, we are still allowing teachers and summer school students to use flash drives.  I am aware that these drives are most likely infected, but theoretically shouldn't SEP pull conficker off the second it is detected??  And with the most current Microsoft patches, why would this cause any issues?
0
Comment
Question by:jsantora83
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 5

Expert Comment

by:KETTANEH
ID: 24865071
i've installed Kasbersky internet security on the machine in my network  ... all conficker issue gone ..

you should have good antivirus + good firewall (important)
0
 
LVL 7

Assisted Solution

by:vvlada
vvlada earned 400 total points
ID: 24866715
Hi,

You probably have a few machines that has "false" patch and are still infected. Are you sure that you have SEP on ALL machines in the network? Do you use full install package with Network Threat Protection or just antivirus? Are you sure that all machines are updated and scaned?

We have a lot of customers with SEP and 0 problems with Conficker!

Best regards,
Vladimir
0
 
LVL 16

Expert Comment

by:warturtle
ID: 24867297
0
 
LVL 2

Accepted Solution

by:
jsantora83 earned 0 total points
ID: 24898682
We are installed and patched across the whole network.  We have now decided to do a walkthrough of the entire school and sit at each machine individually.
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

By the time you finish reading this article, you may have already lost all your money because you don't know the simple steps to securing your BitCoin wallet. BitCoin is an incredible invention. It is a decentralized currency system, which is the…
This article investigates the question of whether a computer can really be cleaned once it has been infected, and what the best ways of cleaning a computer might be (in this author's opinion).
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
Windows 8 comes with a dramatically different user interface known as Metro. Notably missing from the new interface is a Start button and Start Menu. Many users do not like it, much preferring the interface of earlier versions — Windows 7, Windows X…

604 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question