Sometimes free work pays off

ByMike McBride Reading Time: 1 minute

Although, truthfully I did get paid in Guinness and made from scratch cookies, but all the work I did on that laptop paid off in an unexpected way today.

I was sitting at the helpdesk early this morning, when our network admin came by with a laptop. It had been one of our pool laptops for a remote office before it got completely hosed by trojans and spyware. He had been working at cleaning it up off and on for a few weeks and had gotten to the point where there was just one trojan left on it, and he was having a hard time getting it cleaned, because the .dll that McAfee was identifying was attached to winlogon.exe. I agreed to take a look at it using some of the tools I still had on my thumb drive.

When I booted the laptop, and McAfee told me I was dealing with Adware.Virtumonde, the same exact bit of crap that I had struggled with on that other laptop, I knew I was only going to need one of those tools. The VundoFix tool. I ran it, let it do it’s thing, rebooted and voila, no more trojan warnings from McAfee.

Took me 15 minutes to do something our network admin had been struggling for weeks with. Tell me that doesn’t make me look good? 😉

Technorati tags: VundoFix, Spyware

Share with your friends!
LinkedInBlueskyMastodonThreadsRedditBuffer

Similar Posts

  • Hmm

    ByMike McBride Reading Time: 1 minute

    I talked about running a firewall on Friday. Today, I find this article on ZDnet: Why you must install a firewall NOW Yes, once again, you heard it here first! Life of a one-man IT Department, beating major media sources on a regular basis, and by that, of course, I mean it happened at least…

  • More advice for end users

    ByMike McBride Reading Time: 1 minute

    So you’re working in a nice little corporate environment. You have your own office, nice PC sitting on top of your desk and maybe even a little free time. We’ve all been there, we’ve all taken our turn firing up the solitaire games that come with Windows. Some of us have even been brazen enough…

  • Week in review

    ByMike McBride Reading Time: 2 minutes

    I tell you, working for a larger organization, supporting 10 times the number of users I used to support and supporting a wider variety of tools, sure keeps you on your toes. This week I spent time battling a spyware infection, troubleshooting Word macros, Excel formulas, PowerPoint graphics, Outlook options, printer connections, and Acrobat Reader…

  • Supporting everything

    ByMike McBride Reading Time: 2 minutes

    Last week I was informed that I’ll be getting a new piece of hardware. Actually, I’ll be getting a second PC, because we’re going to be testing and then partially rolling out a new version of software, and since we will have to support users running both versions for awhile as the roll out moves…

  • Old scams never die

    ByMike McBride Reading Time: 1 minute

    I just got an email about Bill Gates and AOL wanting to send me money to forward emails to all of my friends. I haven’t seen that one in awhile, but what makes it especially noteworthy, is that it was sent by a salesperson for a company that I met at ITEC last month. A…

4 Comments

  1. Does it even make sense to try and “clean-up” an infected PC in a business environment? How can you be sure you got all the viruses/spyware? Ghost it and move on.

    Reply

  2. In this case, because the laptop came in from a remote office and didn’t start with us, there was no Ghost image, the only option was to wipe it clean and start over, but, naturally, we have no idea where the install CD’s are, and again, we don’t necessarily have the serial numbers to install everything all over again either because this remote office is somewhat lacking in keeping track of these things (Hence the reason this thing got infected in the first place!). That being said, we’re also NOT using it in anything closely related to production on the network. It will have a very insignificant role being used outside of the office from time to time by members of the IS team only, so that we can keep an eye out for problems.

    Reply

  3. oh. seems like a fair amount of time was spent on an insignificant machine. but that’s how it works sometimes.

    Reply

  4. Yeah, I totally agree with your point, but hey, one, it wasn’t much of my time, and two, it really wasn’t my call on how to handle it. I’m just a helpdesk jockey, ya know? 🙂

    Reply

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

To respond on your own website, enter the URL of your response which should contain a link to this post's permalink URL. Your response will then appear (possibly after moderation) on this page. Want to update or remove your response? Update or delete your post and re-enter your post's URL again. (Find out more about Webmentions.)