Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Citadel Reveton Ransomware


  • Please log in to reply
4 replies to this topic

#1 pjlind

pjlind

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 03 July 2012 - 04:51 PM

Hello, I am new to this, so please bear with me.

I have the "FBI" trojan and all my attempts have failed to remove it. I am working with Malwarebytes but getting anything loaded onto my infected computer has not worked.

Any advice or step by step information would be helpful.

Thank you,

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:21 AM

Posted 03 July 2012 - 05:02 PM

Boot the PC into safemode with networking

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 pjlind

pjlind
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 03 July 2012 - 06:23 PM

Thank you,

I tried that string earlier, but I was in safe mode. I will try it in safemode with networking.

#4 pjlind

pjlind
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:21 AM

Posted 03 July 2012 - 08:12 PM

Thank you very much, narebxp.

Malwarebytes found no threats.

The TDSS killer found no threats.

The aswMBR found no threats.

The ESET online found: Win32/Reveton.H tojan and Win32/Toolbar.Zugo The machine seems to be performing normally now.

I thought I moved the logs onto my desktop, but when I looked they were not there. I apologize.

Like another poster queried on another thread, Do I need to be concerned that the Citadel bug is still lurking in my registry or other files, even though the visible threat appears to be gone?

I use the Avast antivirus(free program) It updates regualarly and seems to do a fair job. Would you recommend any further measures.

Also, I have some file fragments of Windows defender(that was supposedly uninstalled) that show up on the desktop from time to time. I have not been able to eliminate it. Do I need to either delete or reload windows security essentials?

I know this is a lot of questions, but you certainly seem to know what you are talking about and I do not want a repeat of the last 12 hrs.

Again, thank you very much,

Pjlind

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:21 AM

Posted 03 July 2012 - 09:16 PM

Like another poster queried on another thread, Do I need to be concerned that the Citadel bug is still lurking in my registry or other files, even though the visible threat appears to be gone?


Nope,but to be safe make sure to change your passwords ,update your antivirus,JAVA ,flash player frequently.

Also, I have some file fragments of Windows defender(that was supposedly uninstalled) that show up on the desktop from time to time. I have not been able to eliminate it. Do I need to either delete or reload windows security essentials?


DO you mean the microsoft security essentials or windows defender?

If you have avast,you can uninstall microsoft security essentials.

safe surfing




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users