PaulDotCom mailing list archives

Re: LAN Virus outbreak Procedures

From: Tyler Robinson <pcimpressions () gmail com>
Date: Thu, 2 Sep 2010 13:24:11 -0600

Thanks everyone for all the ideas the enviroment has about 350 machines at
least all on flat domain can't vlan due to stupid software configurations. I
have several systems that have to be live all the time (911 systems) and
vmware esx servers in cluster. Any other suggestions is again so much
appreciated I am willing to try just about anything right now I have a lot
of angry users right now due to network performace ( for there facebooking I
am sure) wanting this fixed and the sheriffs department has its busiest week
of the year starting sat so please no idea will not be tried.

Thanks all ways,
TR

On Sep 2, 2010 1:15 PM, "Arch Angel" <arch3angel () gmail com> wrote:

Tyler,

I would not go crazy and start hardening PC's. I would get a system with a
few nic's and install something like OSSIM or even get a trial of Astaro
setup and then begin to trace it down. Begin by what systems are causing
the problems and then fix them one by one hardening then as you do them so
they don't get reinfected.

Just my thoughts others may have better ones :-)

Robert
(arch3angel)

On Sep 2, 2010 2:06 PM, "Tyler Robinson" <pcimpressions () gmail com> wrote:

Hey everyone just wondering what kinds of procedures you are using to
prevent and stop virus outbreaks on your local network after some genius

end

user investigates child porn on local network PCs. Do most of you use
microsofts firewall with GP and just open exceptions for the applicatoins
that need it or run another piece of software. I have a massive infection
that i cannot track down our Eset is catching them but my network is

nothing

but trojan packets we were not running an internal firewall (previous

Admin

setup) without hardend systems, So do i start hardening systems first and
then do a GP with Firewall or does anyone have any better suggestions

first

to get my network back and clean the infection second to setup the

correct

way so there is no next time..As always thanks so much to the PDC

community

you guys are the best.
TR

--
Tyler Robinson
Owner of Computer Impressions

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

Current thread:

LAN Virus outbreak Procedures Tyler Robinson (Sep 02)
- Re: LAN Virus outbreak Procedures Butturini, Russell (Sep 02)
- Message not available
  - Message not available
    - Re: LAN Virus outbreak Procedures Pat (Sep 02)
- Re: LAN Virus outbreak Procedures Craig Freyman (Sep 02)
- Re: LAN Virus outbreak Procedures Arch Angel (Sep 02)
  - Re: LAN Virus outbreak Procedures Tyler Robinson (Sep 02)
    - Re: LAN Virus outbreak Procedures Chris Keladis (Sep 02)
    - Re: LAN Virus outbreak Procedures Tyler Robinson (Sep 02)
    - Re: LAN Virus outbreak Procedures Chris Keladis (Sep 02)
    - Re: LAN Virus outbreak Procedures Chris Keladis (Sep 02)
    - Re: LAN Virus outbreak Procedures Craig Freyman (Sep 03)
    - Re: LAN Virus outbreak Procedures d4ncingd4n (Sep 02)
    - Re: LAN Virus outbreak Procedures Tyler Robinson (Sep 02)
- Re: LAN Virus outbreak Procedures Bill Swearingen (Sep 02)
  - Re: LAN Virus outbreak Procedures Bill Swearingen (Sep 02)
  - Re: LAN Virus outbreak Procedures Tyler Robinson (Sep 02)

(Thread continues...)