Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


FBI Lockdown beaten, but computer's STILL all screwed up!

  • Please log in to reply
1 reply to this topic

#1 bcmac401


  • Members
  • 8 posts
  • Local time:03:01 PM

Posted 07 March 2013 - 02:41 PM

A couple days ago our file server @ the office (old Pentium D machine w/ WinXP Pro SP3) got hit with the FBI Cybercrime/Moneypak Lock.   I managed to get the lockout screen disabled but much of the system remains unusable. 



Some of the issues I've encountered include:

 Unable to install/uninstall some programs

- Programs do not shrink to the taskbar, Start button does not work

- Taskbar/Start Menu doesn't load at all in safe mode

- Unable to run/update Windows or MS Security Essentials

- Unable to run/update Malwarebytes in order to perform a scan - Error 372 w/ vbalsgrid6.ocx.  I tried Chameleon as well, but the links in the .chm file were inactivated a

- Programs take much longer to load or perform

- Unable to send/receive email via Outlook (I am able to upload/send web-based email

- Unable to copy/paste text or files from one program/location to another

- Unable to connect the server to our internal network (tried to scan remotely w/ MBAM) - internet connection is fine.

- Unable to run System Restore on any level ("System Restore is unable to protect your computer.  Please restart & run again")

- Unable to prevent these issues from occurring in Safe Mode, even in Command Prompt after loading explorer.exe manually.


Utilities used thus far:

- RKill (log available)

- DDS (logs available)

- HitmanPro (log available)

- ESET Online Scanner (log available)

- Kaspersky TDDSKiller

- AVG Rescue CD (Linux-based)


Let's do this!

Edited by bcmac401, 07 March 2013 - 03:13 PM.

BC AdBot (Login to Remove)


#2 Broni


    The Coolest BC Computer

  • BC Advisor
  • 42,735 posts
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:01 PM

Posted 07 March 2013 - 04:52 PM

Please follow the instructions in ==><== starting at Step 6.  If you cannot complete a step, skip it and continue.

Once the proper logs are created, then make a NEW TOPIC and post it ==><==  Please include a description of your computer issues, what you have done to resolve them, and a link to this topic.

If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.

It would be helpful if you post a note here once you have completed the steps in the guide and have started your topic in malware removal. Good luck and be patient.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

My Website


My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users