The endless war on Conficker, need some advice.

When I was hired to a new technology team at my school district, we were faced with a huge task.  This included battling a network that was 100% beat down by variants of the Conficker virus.  Three months into the job, we are making progress, but feel that it is not enough.  After imaging the whole school and ensuring that all workstations and servers are up to date in terms of OS and Symantec EP, we are starting to see attacks rising on our domain controller once again (Failure audits in our security log).  Is anyone else successfully battling this in their district or company?  If so, how?  We are looking to other possible AV solutions, so if anyone has recommendations, please share.  Note that our network is locked down very well.  As of right now, we are still allowing teachers and summer school students to use flash drives.  I am aware that these drives are most likely infected, but theoretically shouldn't SEP pull conficker off the second it is detected??  And with the most current Microsoft patches, why would this cause any issues?
LVL 2
jsantora83Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

KETTANEHCommented:
i've installed Kasbersky internet security on the machine in my network  ... all conficker issue gone ..

you should have good antivirus + good firewall (important)
0
vvladaCommented:
Hi,

You probably have a few machines that has "false" patch and are still infected. Are you sure that you have SEP on ALL machines in the network? Do you use full install package with Network Threat Protection or just antivirus? Are you sure that all machines are updated and scaned?

We have a lot of customers with SEP and 0 problems with Conficker!

Best regards,
Vladimir
0
warturtleCommented:
0
jsantora83Author Commented:
We are installed and patched across the whole network.  We have now decided to do a walkthrough of the entire school and sit at each machine individually.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Anti-Virus Apps

From novice to tech pro — start learning today.