Sometimes free work pays off

ByMike McBride Reading Time: 1 minute

Although, truthfully I did get paid in Guinness and made from scratch cookies, but all the work I did on that laptop paid off in an unexpected way today.

I was sitting at the helpdesk early this morning, when our network admin came by with a laptop. It had been one of our pool laptops for a remote office before it got completely hosed by trojans and spyware. He had been working at cleaning it up off and on for a few weeks and had gotten to the point where there was just one trojan left on it, and he was having a hard time getting it cleaned, because the .dll that McAfee was identifying was attached to winlogon.exe. I agreed to take a look at it using some of the tools I still had on my thumb drive.

When I booted the laptop, and McAfee told me I was dealing with Adware.Virtumonde, the same exact bit of crap that I had struggled with on that other laptop, I knew I was only going to need one of those tools. The VundoFix tool. I ran it, let it do it’s thing, rebooted and voila, no more trojan warnings from McAfee.

Took me 15 minutes to do something our network admin had been struggling for weeks with. Tell me that doesn’t make me look good? 😉

Technorati tags: VundoFix, Spyware

Share with your friends!
LinkedInBlueskyMastodonThreadsRedditBuffer

Similar Posts

  • Reading with my coffee

    ByMike McBride Reading Time: 2 minutes

    Finally a day without fires to put out, maybe I can get caught up on the tech happenings around the ‘net this week: Windows 2000 SP3 is available. As Josh says in his pointer to it, there’s not much info on exactly what it does, so I’ll be following my normal “wait and let someone…

  • Post that made me laugh today..

    ByMike McBride Reading Time: 1 minute

    From Dennis “Think about it with me now: Summer—even with cargo shorts on, you look like a blooming idiot with a Pocket PC, your cell phone, accessories, and a wallet bulging out of various places. In winter, though, that’s not an issue. Everyone gets bulged up with a great lump of fleece and wool (called…

  • Decisions, decisions

    ByMike McBride Reading Time: 2 minutes

    I’m spending a goodly part of my morning, in between frantic phone calls from my wife, who’s work Mac has lost the ability to open Pagemaker on the same day that their newspaper is due to the printer (she’s uninstalling/reinstalling Pagemaker now, I think. Keep your fingers crossed), going over the seminar schedule for the…

  • Wow..

    ByMike McBride Reading Time: 1 minute

    I don’t write about sports on here much, because there are plenty of places to get into pseudo-religious arguments about sports online, but wow what a game and I can’t believe that Ohio State is going to the Fiesta Bowl! Of course, with the win, I’m just as glad that we don’t have to drive…

  • And another thing..

    ByMike McBride Reading Time: 1 minute

    Oh, by the way, there’s some stuff in Newsmonster that has some real promise. Both the integration with a PDA, and the Distributed Reputation System, which is not currently available, sound pretty interesting. I haven’t tried to integrate with the PDA, because that’s going to tie up some resources and disk space that I don’t…

  • Friends in Tech

    ByMike McBride Reading Time: 1 minute

    I was invited earlier this week to join the Friends in Tech network. It had been a group of podcasters, many of whom I’ve been a big fan of for a long time, but Kevin Devin asked Andy and I to join and contribute some written content to the FiT group weblog in order to…

4 Comments

  1. Does it even make sense to try and “clean-up” an infected PC in a business environment? How can you be sure you got all the viruses/spyware? Ghost it and move on.

    Reply

  2. In this case, because the laptop came in from a remote office and didn’t start with us, there was no Ghost image, the only option was to wipe it clean and start over, but, naturally, we have no idea where the install CD’s are, and again, we don’t necessarily have the serial numbers to install everything all over again either because this remote office is somewhat lacking in keeping track of these things (Hence the reason this thing got infected in the first place!). That being said, we’re also NOT using it in anything closely related to production on the network. It will have a very insignificant role being used outside of the office from time to time by members of the IS team only, so that we can keep an eye out for problems.

    Reply

  3. oh. seems like a fair amount of time was spent on an insignificant machine. but that’s how it works sometimes.

    Reply

  4. Yeah, I totally agree with your point, but hey, one, it wasn’t much of my time, and two, it really wasn’t my call on how to handle it. I’m just a helpdesk jockey, ya know? 🙂

    Reply

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

To respond on your own website, enter the URL of your response which should contain a link to this post's permalink URL. Your response will then appear (possibly after moderation) on this page. Want to update or remove your response? Update or delete your post and re-enter your post's URL again. (Find out more about Webmentions.)