Infected with fbi moneypak; cannot even start in safe mode.

My XP laptop will not even start in safe mode after infection.  I do not have a boot disk. 
 

Question Info


Last updated May 16, 2018 Views 5,002 Applies to:
Answer
See :

http://www.bleepingcomputer.com/virus-removal/remove-fbi-monkeypak-ransomware

http://123seminarsonly.com/Blog/how-to-remove-fbi-moneypak-virus

To remove this infection you need to start the computer in safe mode.

That is the only one option we have.....

After that Delete the FBI MoneyPack Virus Files

Windows Vista/ 7

C:\Users\{User Profile}\AppData\Local\Microsoft\Windows\[Random]\ [Random.exe]
C:\Users\{User Profile}\AppData\Local\Microsoft\Windows\ [Random]
C:\Program Data\lsass.exe
C:\Program Data\[Random.exe]
C:\Program Data\csrss.exe
C:\Users\{Your User Name}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ctfmon.exe

Windows Xp

C:\Documents and Settings\ {User Profile} \Local Settings\Application Data\Microsoft\Windows\[Random.exe]
C:\Documents and Settings\ {User Profile} \Local Settings\Application Data\Microsoft\Windows\[Random]
C:\Documents and Settings\{Your User Name}\Start Menu\Programs\Startup\ctfmon.exe
C:\Windows\[Random.exe](eg. Pmfjyiaj.exe)



MORE IMPORTANT THING DON'T FORGOT TO DELETE ALL THE TEMP FILES ON THE COMPUTER.



In order to avoid all this type infections from the internet please remove the temporary files from the computer daily. 

Please use the following method to remove those temporary files.

1.      Press “Windows” and “R” keys simultaneously on your keyboard.

  1. In the text box in the Run window, type %Temp% and click OK. A folder full of files and other folders will appear.

All of the folders and files you see in this Temp folder are no longer being used by Windows and can safely be deleted.

  1. To remove individual folders or files, hold down your Ctrl key while left-clicking on each item you want delete. Release the Ctrl key when you're finished.

To delete these items, hit your Delete key or choose File and then Delete from the menu.

  1. Confirm that you want to delete the files by clicking Yes on the Confirm Multiple File Delete window that opens.
  2. If you'd instead like to remove everything inside the Temp folder, choose Edit and then Select All from the menu.

Note: If you're prompted that there are hidden files in this folder, just click on OK to bypass the message. A few hidden files hanging out in the Temp folder probably aren't important enough to worry about.

  1. Now that all of the files and folders are selected, hit your Delete key or choose File and then Delete from the menu.
  2. Confirm that you want to delete the files by clicking Yes on the Confirm Multiple File Delete window that opens.
  3. After all of the files have been deleted you can close the window and empty your Recycle Bin, permanently removing the files from your PC.

Tips:

  1. You may receive a Error Deleting File or Folder message while the files are being deleted. This just means that one of the files is in use by a program right now. Click OK, close all open programs, and repeat the steps above. If you still receive the message, try restarting your PC and repeating the process again.
 


Find the step by step removal instructions here.....

http://www.bleepingcomputer.com/virus-removal/remove-fbi-monkeypak-ransomware

http://123seminarsonly.com/Blog/how-to-remove-fbi-moneypak-virus
MCSA, MCSE,MCP,MCTS & Exchange.
Mark helpful posts & answers

Did this solve your problem?

Sorry this didn't help.

Great! Thanks for marking this as the answer.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this response?

Thanks for your feedback.

Answer

How to remove FBI MoneyPak

 

http://www.bleepingcomputer.com/virus-removal/remove-fbi-monkeypak-ransomware

 

If you are using Microsoft Security Essentials, start here - https://support.microsoftsecurityessentials.com/ and select the link that says - I think my computer is infected. Options will vary by region, but phone support leads you to Microsoft Answer Desk (http://www.answerdesk.com/) in the US at this time. After an initial free consultation, a fee will be charged for assistance, based on the details of the case.

If not, go to your AV provider.

 

You might also try this web site - http://www.bleepingcomputer.com - contains details for many of the common infections, often immediately after they began to appear in the wild, and instructions are provided for how to remove the infections using their malware removal guides. They also have forums where you can seek help from people who specialize in malware removal.

 

These are other free programs that may help:

Malwarebytes Free - http://www.malwarebytes.org/products/malwarebytes_free  Please note: The final install dialog at  provides a pre-checked option to install the Pro trial. To install the free version, you need to uncheck that option.

 

Superantispyware Free - http://www.superantispyware.com/downloadfile.html?productid=superantispywarefree

 

TDSSKiller (free) - http://support.kaspersky.com/faq/?qid=208283363

 

HitmanPro (free for 30 days) - http://www.surfright.nl/en/hitmanpro

 

 

Did this solve your problem?

Sorry this didn't help.

Great! Thanks for marking this as the answer.

How satisfied are you with this reply?

Thanks for your feedback, it helps us improve the site.

How satisfied are you with this response?

Thanks for your feedback.