I've had one teacher laptop hit so far, and that was at home, not here, so
I think our content filter is taking care of it, not our virus scanner.
Malwarebytes will fix this stuff, but it won't prevent infection.
All users here, me included, do most of their work all day in accounts
that have ordinary user privileges. Most staff also have access to a
local, not domain, administrator account on their machines, so if they
want to take it home and install Skype and talk to their adult children on
line, well, I don't have a problem with that. A lot of teachers gripe,
"Why do I have to have two different accounts? it's a pain..", but these
outbreaks have been a vindication of this way of doing things. Most of
this stuff, I've found, will only infect the one profile of the user who
stumbles on the bad site, and I can easily just log into an administrator
account and run Malwarebytes and fix it. If it's a common use machine, I
don't even bother to do that, I just delete the infected profile. On a
machine where the user was using an account with administrative privs,
though, the malware will sometimes install itself so every account is
infected. Then I have to resort to safe mode to clean things up.
There is a reason for the "principle of least privilege", it's a much
easier sell around here now, since it has saved our butts here a lot of
Brattleboro Union High School District # 6
School Information Technology Discussion <[log in to unmask]> writes:
>yes we had a few too. We used Malwarebytes and Superantivirusfree
>version and they seemed to work. Some we had to run in safe mode they
>were so bad. Make sure you have your restore point shut off.
>On Wed, Feb 10, 2010 at 1:59 PM, Craig Lyndes @ [ http://wcvt.com
>]wcvt.com <[ mailto:[log in to unmask] ][log in to unmask]> wrote:
>We're on our fourth Internet Security 2010 virus today!!! This has become
>our biggest service issue.
>One question - does anyone have an antivirus program that prevents a
>computer from becoming infected once a compromised web site is visited????
>I can say unequivocally that Microsoft Security Essentials and AVG DO NOT
>The human engineering with this virus is excellent. Once the person
>becomes convinced that they should install the program that pretends to be
>antivirus (but is actually a virus) then nothing, the antivirus we
>install, or Windows, stops them.
>I read an article yesterday that said there is a keystroke logger is part
>of some of these variations, and that has lead to $370,000 being
>transferred from the accounts of the town of Poughkepsie NY to somewhere
>in the Ukraine. I have alerted the business office.
>One of the people today said it first struck from Yahoo.... This is
>really bad news. Maybe an ad not they Yahoo web server, but it isn't from
>Thank god for imaging.
>The best way to forget your troubles -wear tight shoes