EFI University

Pantera EFI · Joined: 12 Feb 2005 Posts: 1266 Location: So. California

OFF TOPIC<SURE>, my problem is REAL, a locked PC.

When one of my PC's allows for internet connection, it becomes LOCKED !

Then the .dll will ask for a payment of $200.00 USD, OR the FBI will come to my door, arrest me.

Citadel Malware infected, looks real (FBI.gov site ???)

MY FIRST thought "freeked-out", though a bit fishy.

I then went to the USA FBI.gov site a found the truth, a MONEY SCAM.

My next step will be to use a Malware Tool, some suggestions, please !

I need help, Lance

John at J&S · Joined: 12 Nov 2005 Posts: 270 Location: GARDEN GROVE, CA

Lance:

Free Republic has an article about this type of virus:

http://www.freerepublic.com/focus/f-chat/2887459/posts

Sign up then ask one of the guys on that thread.

Buzzard · Joined: 14 Dec 2004 Posts: 160

Try MalwareBytes Anti malware

Steve Arndt · Joined: 07 Jan 2005 Posts: 58 Location: Idaho

The best bet is an AVG boot CD. It is the full AVG virus scan setup, but it runs from a bootable CD. If you let windows load then the virus is already running. The key is booting and running the PC from the CD and scan from there, rather than running windows and attempting removal.

http://www.avg.com/us-en/avg-rescue-cd-download

Download and burn the ISO file to a CDR (from a clean PC). Then boot the CD and scan.

Steve

El Verdugo · Joined: 15 Feb 2005 Posts: 502 Location: New Orleans

This forum has saved my laptop several times from malware and more serious infections.
http://tinyurl.com/6uuxu8p

Go there do the following procedure and download the necessary stuff to clean the PC.
The antimalware I use now is SuperAntiSpyware and Malwarebytes. Keep the definitions current and run a quick scan on a weekly basis and full scan every month on all my PCs. Good luck!
_________________
Alberto I Correa, Jr.
EFI 101 Graduate 7-16-05
AEM EMS factory trained
www.corrperformance.com

stevieturbo · Joined: 29 Aug 2006 Posts: 845 Location: Northern Ireland

We've all been caught out by such things.

Perhaps a system restore might work ?

And it's always worth getting something like Acronis, and taking a backup image of your hard drive at regular intervals. Either weekly or monthly etc.

then in a scenario like that, just use the backup drive and things will be as they were when it was saved.
_________________
LS1, V7 YSi Very Happy

9.85 @ 144.75mph
202mph standing mile
http://www.youtube.com/watch?v=XgWRCDtiTQ0

Micky Fin · Joined: 24 Apr 2007 Posts: 69

Another way of removing virus is to take the infected drive and put in in another PC as a slave. Make sure the new PC has decent up to date antivirus software Microsoft Security Essentials is OK and then scan the slave drive

Pantera EFI · Joined: 12 Feb 2005 Posts: 1266 Location: So. California

Thanks all, my infected PC was repaired Monday last, for free.

The effort required using the AVG "boot disk", booting in Linux.
Three scans later AND only the newest definitions allowed the Trojan found.

The file Trojan.ransom.gen was removed from my disk.

The required effort was hours long, wasted time.

The two firewalls, several virus machines running allowed the infection to halt my machine.
I was NOT safe from the newest Malware.

I can only hope my story will help my friends at EFI101.

Lance

Steve Arndt · Joined: 07 Jan 2005 Posts: 58 Location: Idaho

Glad to hear you got it repaired.
I've fixed a lot of machines with the AVG boot CD.

Steve

nfn15037 · Joined: 22 Dec 2005 Posts: 243 Location: Boston, MA

I use my tuning tuning computer at the p0rn sites Razz