One of my clients got this nasty virus. It blocks safe mode too. I
haven't tried cleaning it yet, but they said that if you go into safe mode
with command prompt and run control.exe, you can create another
administrator account, log into it, and clean out the virus.
The last time I encountered it, on Win XP, I was able to boot to "Safe Mode
with Command Prompt". In that mode, NOTHING executes unless it is called by
the user from the command prompt. Once you get to that point, the FBI
malware (also known as the moneypak virus) can be easily removed by a
recent version of MalwareBytes, and probably by several other anti-malware
programs.
Ken Dibble
www.stic-cil.org
_______________________________________________
Post Messages to: [email protected]
Subscription Maintenance: http://mail.leafe.com/mailman/listinfo/profox
OT-free version of this list: http://mail.leafe.com/mailman/listinfo/profoxtech
Searchable Archive: http://leafe.com/archives/search/profox
This message:
http://leafe.com/archives/byMID/profox/[email protected]
** All postings, unless explicitly stated otherwise, are the opinions of the
author, and do not constitute legal or medical advice. This statement is added
to the messages for those lawyers who are too stupid to see the obvious.
