department of justice virus

Humor and off topic conversation

Moderators: Coyote, nebugeater, Brad, Omaha Cowboy, BRoss

Post Reply
User avatar
nebugeater
City Council
Posts: 108879
Joined: Wed Aug 04, 2004 6:07 pm
Location: Gretna NE

department of justice virus

Post by nebugeater »

I consider myself fairly computer literate, along with pretty careful with sites that I go to, keeping virus protection etc. on, up to date and tightly controlled.  With all that in mind I go hit on my home desktop computer with the department of justice virus that clams you have violated codes X, Y, Z etc. and you need to pay a fee to remove your computer from being locked up.   Got infected on Sunday, and just got things back late last night.  Dang that was hard to get rid of and cleaned up.  At this point it is not recognized by most if not all of the Virus software I have come to learn from many Google searched from another computer.  There are multiple ways to attempt to remove it but with each one I tried form easiest to most difficult I was not successful.  I finally  got it removed with a scan of a Malware removal and detection program that I felt was safe to use.  With my two HD's it took 40 Hours to run a deep scan and find and remove what was found.  

Good luck if you get this one.  I was at my last try and it worked.  The next step was going to be reformat and start over.  The backups I have would have made that manageable but not what I wanted to do.  

Anyone else fought through this one?
From what I have read in the last few days it is spreading rapidly right now so watch out.
For the record  NEBUGEATER does not equal BUGEATER    !!!!!!!
User avatar
S33
County Board
Posts: 4441
Joined: Wed May 07, 2008 12:15 pm

Post by S33 »

While I haven't had that particular virus, I have had something very similar. Basically, I first had to enter 'safe mode - networking enabled', then downloaded an updated version of malwarebytes. Some of these viruses obviously infect different areas of your computer, but that program deleted the bulk of it. Then, I actually had to have a buddy of mine who owns a networking company (knows a heck of a lot more than I do), go through my windows registry to find additional malware.

Pain in the a$$...
Socialism is a philosophy of failure, the creed of ignorance, and the gospel of envy, its inherent virtue is the equal sharing of misery. - Winston Churchill
User avatar
Brad
City Council
Posts: 1033312
Joined: Sat Feb 28, 2004 6:03 pm
Location: Omaha, NE
Contact:

Post by Brad »

I have had good luck with MalwareBytes.  The old IT guy at my work recommended it.
User avatar
nebugeater
City Council
Posts: 108879
Joined: Wed Aug 04, 2004 6:07 pm
Location: Gretna NE

Post by nebugeater »

S33 wrote:While I haven't had that particular virus, I have had something very similar. Basically, I first had to enter 'safe mode - networking enabled', then downloaded an updated version of malwarebytes. Some of these viruses obviously infect different areas of your computer, but that program deleted the bulk of it. Then, I actually had to have a buddy of mine who owns a networking company (knows a heck of a lot more than I do), go through my windows registry to find additional malware.

Pain in the a$$...

That is where I started but I could not do much in safe mode.  This thing really locked me down.  Once in Safe mode I cound not do a restore to a previouse back point.  That was first recomendation.  I could get to the net and try and launch the ERASE program from norton that was sopposed to work for some but it was never aloowed to run. Neither was any other program from the net.  The one difforence that the one I got had from the version that was a little older is that the ransom that you were supposed to pay was $400.  The version that has been around for awhile was "only" asking for $300.

What I was finally able to do was create another user account on my PC in safe mode.  I only had one.  I am running windows 7.  Once I created the new account I was able to log in to that account and then run the software that I needed to run.  Again the first tries were not sucessfull and I ended up with the Mallware program finally working.  

I would sugest, that if you do not already have a second account to log into on your windows machine that you consider setting one up and hope you never need it.
For the record  NEBUGEATER does not equal BUGEATER    !!!!!!!
User avatar
jessep28
Planning Board
Posts: 2755
Joined: Wed Sep 03, 2008 4:10 pm
Location: Omaha Metro Area

Post by jessep28 »

Here's a tutorial on how to disinfect your system of this if you are still looking for options.

[youtube][/youtube]
Verbum Domini Manet in Aeternum
Post Reply