Posted 29 November 2012 - 11:54 PM
Hello, I first noticed the virus on my Hp laptop tonight around 5:30pm when I attempted to open my yahoo email. I've confirmed through several sites that this is the FBI Ransom virus. I have the free version of Malwarebytes and a version of Trend Micro Titanium anti virus that just expired last night. I was able to update Malwarebytes in Safe Mode where it found 8 viruses, 6 of which were trojan. It successfully deleted all but 2 which keep returning despite removal & reboot. I eventually backed up all my files & attempted to manually delete the registry file under normal & safe mode. I have located the registry entry responsible under HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows\Load with the corresponding file name from Malwarebytes. However, even in Safe Mode, when I right click & choose Delete it says "Unable to delete all specified values". I have been working on this for 6 hours now & feel I have come so far to give up. Please help!!