jhess56

Thanks but I dont know how I would download that on my laptop I get nothing but a black screen when I power it on. I tried restarting it and tapping f12, amd the other f buttons but no difference. I cant get it to come up on a secondary display either when I plug in my external monitor.

I read the faq/posting instructions but can't access anything/desktop/etc to download/run any of the programs or access any info... I have a win10 toshiba laptop...and was trying different things to try to fix the max disk 100% issue I'm always having to no avail. Updated some drivers, updated a registry file, which I later edited back via access my hd thru the 'hd sucker outer thing' I plugged into a secondary computer to poke around with.Was running scan disc after a restart and it just hung and hung and huuuuuuuuuuuuung at (I think it was) 14% and I just got so sick of it I forced a shutdown via the power button and now when I push the power button it does not click on like usual but takes a good many seconds and then seems to turn on, but doesn't go anywhere...I here it whirring and the indicator lights are on but the screen is totally black.As noted above I have one of those hard drive things that plug into it so you can see all your folders on another computer...not sure what they are called...and all my stuff is backed up in dropbox so no worries there and I've been needing a new udgraded laptop anyways, but I would rather not lose this laptop if possible.Thanks

I didn't see anything come up when searching for 'fbi moneypack' so dunno if this was covered already. I do not know how to get infected files of this stuff to submit so hopefully this is still a useful post in the right forum. I woke up today with my screenlocked, showing this 'fbi warning' that my computer was locked for downloading illegal mp3 or some nonesense. I have to go get a moneypack for $200 and submit the info within 48hrs to get my comp unlocked etc Could not open task manager to kill the process, had to turn on another laptop to access the net and see how to start win7 (which is new to me) in safemode, which is where I'm at now. I am on the infected comp in safemode now, and running full scan of mwb and micro sec. essent. and going over other websites talking about manual removal of all the nasty crap involved with this thing. My main question and reason for posting here is...why/how did this slip past my real time pro/paid version of mwv and micro sec. essent.? Is this something that can be added to mwb to prevent reinfection? If anyone has any specific tips on this thing I would appreciate it too, or a link to an existing thread on here that I was unable to find via search function. Thanks

yes i was not going to start a fresh thread for help here, i was more posting to try and get this horrible dubrute thing added to mwb..im sick of dealing with this thing and having to restore backups or lose files etc. especially while having paid programs running i appreciate your time and advice, dont mean to be bitchy, just real aggravated that there are people out there that purposeful do this to their fellow man

other than emailing support as a paid customer of mwb pro....would i have a better chance of someone helping me recover the files that got moved/deleted by signing up and having someone help me via the premium monthly services option?

When trying to reverse engineer how this is happening to better protect myself I found this link explaining what people are doing...scraping for ip addies being used by vps and then using dubrute to crack the password http://raditya-w.blogspot.com/2011/12/tuthow-to-hack-rdpstools.html Free speech at its finest there I guess, bunch of scumbags. Is there anything mwb or anything else you are aware of protect against the first ip scanner software? If not can the dubrute stuff be blocked effectively? It looks like perhaps they get the ip and crack the password and then go in manually and leave a virus or start messing around themselves.

Thanks for a speedy response and the advice. I will read it more thouroughly tomorrow after I get some sleep as it is very late here. With respect, this is the same thing that got thru before despite having mwb paid pro real time activated and running. The guy from mwb paid support that helped me last time did help me get it cleaned out but unable to recover the 'deleted' files...and he did the cleaning by telling me to use doc web which found the dubture where mwb did not. I dunno if it wasnt cleaned totally the first time or if it just hit me again separately Very discouraging as I thought I had all my stuff tightened up since then

I saw the other forums for reporting new threats...but I am unsure what I am supposed to do really. I read we are supposed to check it against virustotal or other similar sites and upload it and a report zipped. But how do I get these bad files to do so in the first place? The only time I seem able to see them is when I have them quarantined after mwb or mse or another program finds them for fixing. Last night I got hit again with a password changing pos...managed to get back in via another user acct (this is on a vps) and run malwarebytes on the whole drive..it didnt find anything, neither did mse. Doc web did though and it was the same horrid crap that hit me a few weeks ago and caused me a lot of problems. dubrute.exe why is this still slipping thru? I have mwb paid pro active real time version going along with micro sec essentials I dont know if it is starting on my desktop and then hacking into my vps pass via the remote access login section or if it is originating on my vps itself somehow and changing the password on me and messing stuff up from there. Do I need to get an active mwb and mse going on each user acct on my vps? What else can I add? Can mwb be set to block this dubrute crap? I still dont understand its purpose either...I can at least understand why a virus would make it look like files are deleted so I buy a fake recovery program...but I cant buy something if I am locked out of my accts and dont even see them? Unless this is something that is fishing for sensitive credit card or similar information? If that's the case, why did it delete my files before? I truly hate these wankers that make these awful things and hope someday I somehow meet one in person. Thanks

I was looking closer at this one http://www.bestbuy.com/site/Gateway+-+Desktop+-+10GB+Memory+-+2TB+Hard+Drive/5619219.p;jsessionid=2BBF29506585B79B4439F0C9B4C868C3.bbolsp-app02-53?id=1218674164674&skuId=5619219 Perhaps a dumb question but...when it says 'speakers-none' does that just mean external speakers? Or does that mean there are no default speakers internally in the tower either and it will not give off any audio unless I hook something up? When looking at just towers, I forgot I was needing a good microphone/audio to have skype conversations/screen video recordings and a good webcam. I guess I'll just hook up my separate webcam and buy a good micro to use...and hook up external speakers if need be.

I had a virus hit my vps that kept changing my password, preventing me or my vps admin from logging in to do anything. My vps admin switched me to a new vps desktop, and added my old vps desktop as drive E so I could try and access my files at least. I could technically access the old E:user/admin/desktop from my new desktop but the virus had deleted/hid virtually all of my old desktop files Someone from mwb support kindly guided me thru the process of getting rid of the nasty stuff from that drive (dubrute and some other crap, pretty nasty). Since the virus was no longer active and therefor could not change my passwords and lock me out anymore, my vps admin put me back directly onto my old vps desktop. I thought all would be well and I could try and run unhide.exe and get my stuff back or find a system restore point and do it that way. My problem is that he seems unable to get me directly logged in as the original user/profile 'admin' where all my desktop stuff is, and from what I was told, where I need to directly run unhide.exe for it to have any chance for effect. I was setup with multiple user names to get access including a new 'Administrator' but my vps admin is unable to help me further to connect to the original 'admin' I hope that makes sense as I find it very confusing myself, yet I've done the best I could to post what I'm dealing with in hopes of getting my files back. Any ideas or if you need further clarification just let me know. Thanks

Thanks, I wasnt planning on using their geek squad for anything at all...I've had family members interact with them in the recent past with results telling me they are a bunch of idiots. It doesnt make a difference on where I purchase the machine though right? If so what's a good physical shop to grab one from as I would like to go out and pick one up asap vs wait for something to ship and risk having it damaged in transit.

cool , so is this an example what your talking about? http://www.bestbuy.com/site/Asus+-+Essentio+Desktop+-+8GB+Memory+-+1TB+Hard+Drive/5555478.p?id=1218658995316&skuId=5555478 Specifically "Get brilliant performance from the Intel® Core™ i7 processor with four multithreaded cores." Is one brand better than the others or are they all pretty much being manufactured in the same few places making it moot?

I'm getting a new computer and am amazed at how much more powerful they are for the price compared to when I bought my last one (probably 6-7 years yikes!) I currently have a compaq laptop with 384mb ram (haha) with mobile amd sempron 3300+ 1.99Ghz and it is very slow and lags a lot, got it on some blow out sale for like 400 bucks or so... Now I am seeing desktop towers (I have a huge sweet screen, wireless mouse and keyboard already so all I need is the main tower) for 5-700+ bucks with 10GB ram and 1-2 TB hard drive and about had a heart attack that is so amazingly great! What I am hung up on though is what kind of brand/processor should I be looking for to get the best performance and fastest speed. I run my business via othe internet and use a lot of resource intensive software, so I am embarassed I have waited this long to get a new computer. I need something with a lot of balls so I don't get lagged down anymore. I'm looking for max performance speed for navigating the net and running various softwares...I do not care about video graphics for gaming or anything like that. I would sacrifice that sort of stuff for increased speed for what I do...if that's even relevant. Though I do admit it would be nice to get better picture and smoother play for watching netflix movies....that is far secondary as I can always watch that on my TV, so I do not want to sacrifice my main needs for that in any way. Thanks for any advice.

I remote access a vps to do a lot of work on. Yesterday I tried connecting as usual and it said my password wasnt right. I contacted the vps admin and he said there was a virus changing the password. He reset the password a couple times but whatever hit me kept changing it to fast to do anything. So he set me up on a new drive C using the same ip, and added my old desktop as drive E so that I could get my files (at least thats generally how I understood it) Anyways, I can login to the new setup just fine, yet when I navigate to E:user/admin/desktop to retrieve my files off the other drive the only thing I can find is one folder and inside that folder there are only a couple of random files. I'm missing 5 or so other main folders and 99.9% of the actual files from the one folder that actually shows. I have tried running unhide.exe and nothing changed. I don't know what else to do or where to look for my files... I ran microsoft security essentials on drive E and it found something it deemed 'high risk' so it quarantined it and deleted it. MWB found nothing which I thought was strange. I think there is one or more bad guys still on that drive..the day before this happened I saw something called dubrute.exe in my task manager running. I hoped that nights full anti v scan would take care of it but apparently not. I attached the two requested files, though not sure if they provide what is needed due to the switching of the vps drives. I'm not sure how to get the reports made for drive E? So to recap...I guess drive E is safe from infecting me since its not on the live server I dont know. I really need to find and get those missing old desktop files. I backup regularly to an external hd but had some important changes made just recently that were not saved yet. I cannot access a folder that I think some good data is on E:/documentsandsettings i get access denied, dunno if that is relevant or not Thanks for any help and advice Attach.txt DDS.txt

I remote access a vps to do a lot of work on. Yesterday I tried connecting as usual and it said my password wasnt right. I contacted the vps admin and he said there was a virus changing the password. He reset the password a couple times but whatever hit me kept changing it to fast to do anything. So he set me up on a new drive C using the same ip, and added my old desktop as drive E so that I could get my files (at least thats generally how I understood it) Anyways, I can login to the new setup just fine, yet when I navigate to E:user/admin/desktop to retrieve my files off the other drive the only thing I can find is one folder and inside that folder there are only a couple of random files. I'm missing 5 or so other main folders and 99.9% of the actual files from the one folder that actually shows. I have tried running unhide.exe and nothing changed. I don't know what else to do or where to look for my files... I ran microsoft security essentials on drive E and it found something it deemed 'high risk' so it quarantined it and deleted it. MWB found nothing which I thought was strange. I think there is one or more bad guys still on that drive..the day before this happened I saw something called dubrute.exe in my task manager running. I hoped that nights full anti v scan would take care of it but apparently not. I attached the two requested files, though not sure if they provide what is needed due to the switching of the vps drives. I'm not sure how to get the reports made for drive E? So to recap...I guess drive E is safe from infecting me since its not on the live server I dont know. I really need to find and get those missing old desktop files. I backup regularly to an external hd but had some important changes made just recently that were not saved yet. Thanks for any help and advice sorry for the double post, plz delete this one. i could not figure out how to edit a post after i realized i attached a wrong file. didnt want to just make a reply so it wouldnt look like someone was already helping me..sorry and thanks Attach.txt dds.zip