It is currently Fri May 26, 2017 12:16 pm


fbi moneypak ransomware

All versions of Windows 7, 2008 and Vista including 32 bit and 64 bit

Moderator: icecube

fbi moneypak ransomware

Postby robym6 » Fri Aug 31, 2012 5:35 am

I got hit with the moneypak ransomware virus recently. As soon as it locked my computer, I physically disconnected the internet and was able to use ctrl alt del to unlock it. I have McAfee internet security, but apparently that didn't stop it. I was able to download malwarebytes and it removed two files--one detected with the quick scan and one detected with the full scan--and I also ran a full scan with McAfee which removed another file. I believe all files were in the app data folder in my user account folder.

Recent scans are clean, but I read where this is sometimes very hard to completely get rid of. If both malwarebytes and McAfee full scans don't detect anything (I've also ran spybot) should I still be looking or consider this a done deal?

I don't see anything suspicious in the processes shown in the task manager and nothing that I can see shows up at startup...
User avatar
robym6
Senior Geek
Senior Geek
 
Posts: 118
Joined: Tue May 25, 2004 1:00 am
Location: California

Thanks given:1
Thanks received:0
Top

Re: fbi moneypak ransomware

Postby Gecko » Fri Aug 31, 2012 12:53 pm

Please do an online scan with ESET Online Scanner. You must use Internet Explorer as it uses ActiveX.

Check (tick) this box: YES, I accept the Terms of Use.
Click on the Start button next to it.
When prompted to run ActiveX. click Yes.
You will be asked to install an ActiveX. Click Install.
Once installed, the scanner will be initialized.
After the scanner is initialized, click Start.
Check (tick) Remove found threats box.
Check (tick) Scan unwanted applications.
Click on Scan.
It will start scanning. Please be patient.
Once the scan is done, the log will be saved here: C:\Program Files\esetonlinescanner\log.txt.
User avatar
Gecko
Super Moderator
Super Moderator
 
Posts: 5206
Joined: Thu Oct 25, 2001 1:00 am
Location: Florida, USA

Thanks given:1
Thanks received:23
Top

Re: fbi moneypak ransomware

Postby robym6 » Sat Sep 01, 2012 10:23 am

ESET Online Scan was clean:

ESETSmartInstaller@High as CAB hook log:
OnlineScanner64.ocx - registred OK
OnlineScanner.ocx - registred OK
# version=7
# iexplore.exe=9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=703dc9c1f14a0f48a8eb9deb68a7227f
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-09-01 09:15:57
# local_time=2012-09-01 02:15:57 (-0800, Pacific Daylight Time)
# country="United States"
# lang=1033
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode=512 16777215 100 0 0 0 0 0
# compatibility_mode=5121 16777213 100 75 0 0 0 0
# compatibility_mode=5892 16776574 100 56 112259238 183079195 0 0
# compatibility_mode=8192 67108863 100 0 0 0 0 0
# scanned=323330
# found=0
# cleaned=0
# scan_time=10468
User avatar
robym6
Senior Geek
Senior Geek
 
Posts: 118
Joined: Tue May 25, 2004 1:00 am
Location: California

Thanks given:1
Thanks received:0
Top

Re: fbi moneypak ransomware

Postby Gecko » Sat Sep 01, 2012 12:36 pm

Looks clean to me #found=0

Who said thanks: robym6 (Sun Sep 02, 2012 8:33 am)
User avatar
Gecko
Super Moderator
Super Moderator
 
Posts: 5206
Joined: Thu Oct 25, 2001 1:00 am
Location: Florida, USA

Thanks given:1
Thanks received:23
Top


Return to Windows 7, 2008 and Vista

Who is online

Users browsing this forum: No registered users and 1 guest

cron