Solved

The endless war on Conficker, need some advice.

Posted on 2009-07-15
4
406 Views
Last Modified: 2013-12-09
When I was hired to a new technology team at my school district, we were faced with a huge task.  This included battling a network that was 100% beat down by variants of the Conficker virus.  Three months into the job, we are making progress, but feel that it is not enough.  After imaging the whole school and ensuring that all workstations and servers are up to date in terms of OS and Symantec EP, we are starting to see attacks rising on our domain controller once again (Failure audits in our security log).  Is anyone else successfully battling this in their district or company?  If so, how?  We are looking to other possible AV solutions, so if anyone has recommendations, please share.  Note that our network is locked down very well.  As of right now, we are still allowing teachers and summer school students to use flash drives.  I am aware that these drives are most likely infected, but theoretically shouldn't SEP pull conficker off the second it is detected??  And with the most current Microsoft patches, why would this cause any issues?
0
Comment
Question by:jsantora83
4 Comments
 
LVL 5

Expert Comment

by:KETTANEH
ID: 24865071
i've installed Kasbersky internet security on the machine in my network  ... all conficker issue gone ..

you should have good antivirus + good firewall (important)
0
 
LVL 7

Assisted Solution

by:vvlada
vvlada earned 100 total points
ID: 24866715
Hi,

You probably have a few machines that has "false" patch and are still infected. Are you sure that you have SEP on ALL machines in the network? Do you use full install package with Network Threat Protection or just antivirus? Are you sure that all machines are updated and scaned?

We have a lot of customers with SEP and 0 problems with Conficker!

Best regards,
Vladimir
0
 
LVL 16

Expert Comment

by:warturtle
ID: 24867297
0
 
LVL 2

Accepted Solution

by:
jsantora83 earned 0 total points
ID: 24898682
We are installed and patched across the whole network.  We have now decided to do a walkthrough of the entire school and sit at each machine individually.
0

Featured Post

ScreenConnect 6.0 Free Trial

Discover new time-saving features in one game-changing release, ScreenConnect 6.0, based on partner feedback. New features include a redesigned UI, app configurations and chat acknowledgement to improve customer engagement!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Vulnerabilities & precautions when using WorldCard software (Windows Version) 5 116
Symantec EndPoint Protection 15 61
Full list of ransomwares to date 6 130
turbotax on windows 10 80
I recently had to create a utility which aim is to update McAfee's Virusscan and that had to be launched from a command line. I thought I’d share my experience with you. Why is it useful to be able to update an Antivirus from the command line?…
This is a little timesaver I have been using for setting up Microsoft Small Business Server (SBS) in the simplest possible way. It may not be appropriate for every customer. However, when you get a situation where the person who owns the server is i…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…

832 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question