Well it's been months now and we have stopped Conficker from spreading and we even know how to remove it by being methodical. Our only problem is now that we are having a problem with some of the machines are not being seen in the WSUS console. This maybe a different problem entirely because we have totally removed Conficker from the affected machines.
We have tried the wuauclt /detecnow and wuauclt /resetauthorization /detectnow commands which have worked for other machines. Any suggestions?
I have exactely the same problem :
At1.job, At2.job,... on many computers of the domain... (I already clean them why removal conficker tool)
And also some computers are not visible in the WSUS !
Have you find a solution ?
We did a few things like
Disable Autorun in Group Policy
Disable Scheduled Tasks being created or edited through Group Policy
and a few other little things that i can not remember off the top of my head. but Symantec relaesed a good little guide to stopping conficker.
it makes good reading i would advise you have a look if you havnt already.
Stop Conficker from spreading by using Group Policy | Symantec Connect
Thank you, i will try this..