SpyWare BeWare! ASAP
May 30, 2017, 04:07:53 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News:
 
   Home   Help Search Calendar Donations Login Register Chat  



Google It!
Pages: [1]   Go Down
  Print  
Author Topic: FBI Moneypak attacked Safemode  (Read 1413 times)
0 Members and 1 Guest are viewing this topic.
y2klibra
Newbie
*
Offline Offline

Date Registered:January 15, 2013, 08:27:06 PM
Posts: 3


« on: January 15, 2013, 08:40:46 PM »

I hope someone can help me in here. I think this virus has gotten stronger. I have the FBI Moneypak on my dell desktop. It got past my antivirus. I have tried F8, safe mode, and safe mode w/networking and also command prompt and no luck. Any suggestions would help. Thanks guys.
Logged
MrCharlie
Moderator
Hero Member
*****
Offline Offline

Gender: Male
Date Registered:June 06, 2004, 05:50:23 PM
Posts: 6662


Coby


WWW
« Reply #1 on: January 15, 2013, 08:55:11 PM »

What's the operating system??
and 32 or 64 bit?

MrC
Logged

My help is always free here but if you would like to show your appreciation, it will be much appreciated.
Thanks MrC
y2klibra
Newbie
*
Offline Offline

Date Registered:January 15, 2013, 08:27:06 PM
Posts: 3


« Reply #2 on: January 15, 2013, 10:17:17 PM »

32, running windows 7
Logged
MrCharlie
Moderator
Hero Member
*****
Offline Offline

Gender: Male
Date Registered:June 06, 2004, 05:50:23 PM
Posts: 6662


Coby


WWW
« Reply #3 on: January 15, 2013, 10:23:12 PM »

OK, follow the instructions at the link below to scan the system with FRST:

http://forums.malwarebytes.org/index.php?showtopic=121107&view=findpost&p=634912

Post the ,log back here,  MrC
Logged

My help is always free here but if you would like to show your appreciation, it will be much appreciated.
Thanks MrC
y2klibra
Newbie
*
Offline Offline

Date Registered:January 15, 2013, 08:27:06 PM
Posts: 3


« Reply #4 on: January 15, 2013, 11:59:08 PM »

It did not work. I downloaded the FRST, saved it on a flash and when I tried opening it on the FRST.exe on infected computer, the message I kept getting is " The subsystem needed to support the image type is not present " it would not allow me to open it in order to continue the steps necessary.
Logged
MrCharlie
Moderator
Hero Member
*****
Offline Offline

Gender: Male
Date Registered:June 06, 2004, 05:50:23 PM
Posts: 6662


Coby


WWW
« Reply #5 on: January 16, 2013, 08:40:33 AM »

If you're sure you are using the correct version of FRST and followed the directs exactly, create an OTLPE cd as outlined in the link below....then scan the system...post back the log.

http://forums.malwarebytes.org/index.php?showtopic=120037&view=findpost&p=627789

MrC
Logged

My help is always free here but if you would like to show your appreciation, it will be much appreciated.
Thanks MrC
MrCharlie
Moderator
Hero Member
*****
Offline Offline

Gender: Male
Date Registered:June 06, 2004, 05:50:23 PM
Posts: 6662


Coby


WWW
« Reply #6 on: January 16, 2013, 10:05:46 AM »

    Please disregard the post above and try the other version of FRST (64bit)
    as per these instructions:


    [list=1]
    • Please download Farbar Recovery Scan Tool and save it to a flash drive.

      Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

      Plug the flash drive into the infected PC.

    • If you are using Windows 8 consult How to use the Windows 8 System Recovery Environment Command Prompt to enter System Recovery Command prompt.

      If you are using Vista or Windows 7 enter System Recovery Options.

      To enter System Recovery Options from the Advanced Boot Options:
      • Restart the computer.
      • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
      • Use the arrow keys to select the Repair your computer menu item.
      • Select US as the keyboard language settings, and then click Next.
      • Select the operating system you want to repair, and then click Next.
      • Select your user account an click Next.
      Note: In case you can not enter System Recovery Options by using F8 method, you can use Windows installation disc, or make a repair disc. Any Windows installation disc or a repair disc made on another computer can be used.
      To make a repair disk on Windows 7 consult: http://www.sevenforums.com/tutorials/2083-system-repair-disc-create.html
       


      To enter System Recovery Options by using Windows installation disc:
      • Insert the installation disc.
      • Restart your computer.
      • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
      • Click Repair your computer.
      • Select US as the keyboard language settings, and then click Next.
      • Select the operating system you want to repair, and then click Next.
      • Select your user account and click Next.
    • On the System Recovery Options menu you will get the following options:
          Startup Repair
          System Restore
          Windows Complete PC Restore
          Windows Memory Diagnostic Tool
          Command Prompt


          Select Command Prompt

          Once in the Command Prompt:
        • In the command window type in notepad and press Enter.
        • The notepad opens. Under File menu select Open.
        • Select "Computer" and find your flash drive letter and close the notepad.
        • In the command window type e:\frst (for x64 bit version type e:\frst64)  and press Enter
          Note: Replace letter e with the drive letter of your flash drive.
        • The tool will start to run.
        • When the tool opens click Yes to disclaimer.
        • Press Scan button.
        • It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.
        [/list]
        Logged

        My help is always free here but if you would like to show your appreciation, it will be much appreciated.
        Thanks MrC
        MrCharlie
        Moderator
        Hero Member
        *****
        Offline Offline

        Gender: Male
        Date Registered:June 06, 2004, 05:50:23 PM
        Posts: 6662


        Coby


        WWW
        « Reply #7 on: January 17, 2013, 10:05:54 AM »

        How are we doing??????  MrC
        Logged

        My help is always free here but if you would like to show your appreciation, it will be much appreciated.
        Thanks MrC
        MrCharlie
        Moderator
        Hero Member
        *****
        Offline Offline

        Gender: Male
        Date Registered:June 06, 2004, 05:50:23 PM
        Posts: 6662


        Coby


        WWW
        « Reply #8 on: January 18, 2013, 05:32:02 PM »

        Closed,  MrC
        Logged

        My help is always free here but if you would like to show your appreciation, it will be much appreciated.
        Thanks MrC
        Pages: [1]   Go Up
          Print  
         
        Jump to:  


        Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2013, Simple Machines Valid XHTML 1.0! Valid CSS!