Hey guys so my moms computer that I reasently built got a virus. I did some research on how to get rid of it... And it didn't work :/ I tried several time but still could not get rid of the "root" to the virus. The virus is called " the fbi moneypak virus".
If anyone had experience with this kind of virus please help me out.
Thanks.
O btw maybe we should have a virus page? So people could write how to get rid of them.
If your computer is already badly infected, I doubt that installing MSE or Avast would even help. When coding a virus, any decent malware coder would stop such services from even starting and can even infect/hook onto newly started processes by infecting svchosts. If I were you, I'd download Combofix and rename it something like "svchost.exe" then start it up from safe mode. Combofix usually makes short work of viruses - however, if it doesn't work, try burning a kaspersky rescue disk. Once you're pretty sure that the virus is gone/dormant, THEN install MSE/AVG/AVAST/Kaspersky/Norton(eww) or whatever
If your mom is only going to be doing things like web browsing and media,I strongly suggest you install Ubuntu with unity (VERY easy to learn,I tought it to my computer illiterate 50 year old mom really fast) or Ubuntu with cinnimon (very simular style to windows)
That way she cant get viruses and it is easier for her to use.
download kaspersky boot cd and run that, then try to get into safe mode. If you can successfully get in safe mode download malwarebytes,super anti virus and combofix and run them in that order, then reboot and see if it pops up if not delete all of your restore points as it can hide in them and reinfect your computer
For a home computer I wouldn’t think twice about a format and reinstall. If there is personal data on the system you want to keep using something like SLAX to create a Linux live environment which you can use to copy said information off. I've seen SLAX fail to load on some new systems, so perhaps Ubuntu Live would work in its place. I suggest using a live environment like this as 99% viruses attack windows only and it will not directly infect your new drive. What I mean by this is sure the starter file for the virus might be copied, but the drive itself will not be infected. A virus must be executed for it to infect a system.
Once you have got your system up and running again make sure you have an AV installed; Microsoft Security Essentials I think is the best in free protection only because it doesn’t pester you to pay for the full thing like all the other "free" ones will; Comodo is also good. Scan you data before copying it back to your system so you don’t unknowingly reinfect your clean install.
Finally if your “mom” is torrenting or doing any file sharing; be sure your AV has monitoring so that file introduced to the machine are checked before launching.
I think that is the same one which is going around at our school, all of the infected computers were just reformatted, this may be what you will have to do.
It is worth a try to do a boot time scan with avast, and a full scan with Malwarebytes in safe mode (make sure to update it, manually or online, if online, have all other windows computers turned off on the network, see if it will update in Safemode With Networking).
Take a look at combofix from bleepingcomputer.com
You should be able to remove it as long as it has not installed a root kit into the MBR.
A little program called rkill (http://download.cnet.com/RKill/3000-8022_4-75221743.html) should stop the script from running then run your anit-virus to get rid of it. It's worked for me several times in the past. Hope it will for you.
For any serious malware/virus infiltration I typically resort to using HitmanPro, they have a 30 day free trial that will remove some of the worst stuff I've yet to see. It scans fairly quickly as well, give it a twirl. http://www.surfright.nl/en/hitmanpro/
I would recommend using one of these tools F-Secure rescue disk or Kasperzky rescue disk because if it is really root virus only way to disinfect the root files is to run separet OS, both of the programs are free and i use them daily on costumers computers and in 1/100 cases they are not enough so theyr really powerfull. After you finnish the rescue disk i still recommend using your malware scanner to scan whole computer when you get in Windows
boot into safe mode and try and grab the files that you need off of the computer. i had the same virus come after me and my norton( the worst one that HP Offers) caught it suprisingly and allocated it into it own private section of the computer. However i did have to re format but at least i was able to get all of my files that i wanted off of the HDD before i had to.
I'd ask myself why there is a virus on the pc, in the first place (and try to fix it!). Formating and reinstalling is the best solution because most anti-viruses are snake oil.