Jump to content

Infected with ransomware


Recommended Posts

I'm infected with a ransomware that poses as some kind of fbi criminal report scam. It follows up with them demanding me to pay them through prepaid debit cards. That part was a bit ridiculous.

How I got infected I don't know. I didn't download anything at the time I was surfing, nor did I watch any videos or listen to any audio.

As of right now, I'm in the process of trying to figure out how to disinfect? my computer. I've tried safe mode (with command prompt and networking), and no luck. Whenever I try these methods, it seems like there's a shell blocking any actions, or a program? I try task manager, but no luck. I try windows to try and open up programs, no luck. I can't even see the files on my desktop, just the FBI scamming picture.

I don't have a bootable disc, nor a partition drive. I've heard about using thumbsticks to boot up programs, but I have nowhere to start.

Oh, ya, I'm posting this from another computer.

Ahh, I can't edit.

In addition to my original question, would it be possible to use a windows 7 disc to repair my Vista Home Premium OS? Or would it just bypass the ransomware?

I've tried the usb method, but no luck. in the directions i've seen from other people it seems like the usb appears before windows booting up? Though if it does only work after booting up, I wouldn't even be able to access the usb drive because I'm locked out in both safe modes.

Link to post
Share on other sites

See if you can do the following:

Download Farbar Recovery Scan Tool on your clean PC and save to flash drive (memory stick). Use which ever of the folllowing is applicable to your system. (32 or 64 bit)

Download http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ <--- 64 bit version Save to USB flash drive

Download http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ <--- 32 bit version Save to USB Flash drive

Plug the flashdrive into the infected PC.

Enter System Recovery Options I give two methods, use whichever is convenient for you.

To enter System Recovery Options from the Advanced Boot Options:

  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select Your Country as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.

To enter System Recovery Options by using Windows installation disc:

  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Select Your Country as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.

On the System Recovery Options menu you will get the following options:

Startup Repair

System Restore

Windows Complete PC Restore

Windows Memory Diagnostic Tool

Command Prompt

  • Select Command Prompt
  • In the command window type in notepad and press Enter.
  • The notepad opens. Under File menu select Open.
  • Select "Computer" and find your flash drive letter and close the notepad.
  • In the command window type e:\frst64 or e:\frst depending on your version. Press Enter
    Note: Replace letter e with the drive letter of your flash drive.
  • The tool will start to run.
  • When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.

Kevin

Link to post
Share on other sites

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.