Avatar of sasllc
sasllc
Flag for United States of America asked on

How to best prevent malware problems?

Most of our customers have small networks with just a few PCs, while others are single-user.  Most all are running Win7 Pro.  We install Norton internet Security on each one and keep it current.  Many are in rural areas of the country, and most get their internet connectivity from local DSL providers, while a few are on cable or satellite.

The problem is that a few of our users have constant malware problems, where I have to run Malwarebytes and Spybot on a regular basis, often cleaning up dozens of infections each time.  Recently it got so bad at one location that I had to reformat two PCs just to get them running right again.

I have never understood why Norton seemingly lets so much get by for these customers.  I've tried others in the past, such as Trend Micro and McAfee, with the same results.

I'm wondering if there is a better solution.  I am 'aware' of hardware firewalls, but there are many things I don't know.  Do they do a far better job of preventing these infections?  Are they affordable for a small network or single-user computer?  Are they easy to maintain and keep updated--assuming that is needed?  Do they tend to block legitimate work that the user needs to do, or have other quirks?

Or maybe there is a completely different solution that I don't know about.  Any clear, detailed guidance based on experience would be greatly appreciated.  TIA
Anti-Virus AppsSoftware FirewallsHardware Firewalls

Avatar of undefined
Last Comment
waynehedrick

8/22/2022 - Mon
SOLUTION
jerseysam

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
SOLUTION
aadih

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
ASKER CERTIFIED SOLUTION
Jon Snyderman

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
SOLUTION
rindi

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
SOLUTION
willcomp

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
SOLUTION
McKnife

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
SOLUTION
Rob Hutchinson

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
SOLUTION
Giovanni

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
SOLUTION
Thomas Zucker-Scharff

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
willcomp

All of these exotic solutions are well and good for us experts/geeks. They won't cut it for the average home/mom and pop business users.
Jon Snyderman

Amen!   Run a reputable AV and a reputable anti-malware and ideally have a nice hardware firewall and 98% of threats will be averted with very little user training (maybe some scolding though :-) )    As the IT professionals, it is our job to protect the non-savvy user without confusing the crap out of them.

~Jon
Giovanni

In practice, Invincea is about as "exotic" as a web browser.

One of the least technically sophisticated employees in my company of 25,000 would infect her machine nearly every other week.  After installing Invincea (under Dell Data Protection | Protected Workspace), she hasn't had any infections which weren't detected and automatically reverted.  This required no addition skill or interaction on her part.

Perhaps there is a reason Dell is deploying this product globally as part of their new base image for certain systems.  Then again, if you look for a reason to make another person wrong (in your own mind), you'll find it.
This is the best money I have ever spent. I cannot not tell you how many times these folks have saved my bacon. I learn so much from the contributors.
rwheeler23
aadih

x66_x72_x65_x65, Thank you for the information.  It's new(s) to me.  Helpful information is always welcome.  Cheers.  :-)
willcomp

In your company of 25,000!
Jon Snyderman

I know you were the last to post before it went south, but I don't think the comment was directed at you as much as the diversity and complexity of the thread in general.   My topologies if it was improperly stated.  

Jon
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
SOLUTION
Rich Rumble

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
McKnife

:) Allow the comment:
"Why has NO ONE mentioned running as NON-ADMIN? That's 99.9% of the problem btw"
Now that's a very strong assumption. Since malware authors have to fight with UAC since 7 years, they don't still write 99.9% of viruses to only work when admin & UAC is off, come on.
Many run in the user space, hard to say if that's the majority... but still, you are right, always one of the most important things.
Rich Rumble

99.9% is a little overstated for win7 :) But it does cut down on the users ability to infect themselves as well, making them ask permission for something often helps to curb or gi ve them pause. users are users, and they don't know what they are doing 99.9% of the time :)
-rich (aka mr. 99.9)
waynehedrick

1.  Symantec says that Antivirus is a dead end solution.  It is especially true for their product.  We have left it.

http://www.theregister.co.uk/2014/05/06/symantec_antivirus_is_dead_and_not_a_moneymaker/

2.  Get something on the network, like others, I recommend anything but Symatnec.

3.  Use a UTM firewall.  I recommend Sonicwall, with their Comprehensive Security Services.
Experts Exchange is like having an extremely knowledgeable team sitting and waiting for your call. Couldn't do my job half as well as I do without it!
James Murphy