FBI MoneyPak Virus

Starr Duskk
Starr Duskk used Ask the Experts™
on
I got the FBI MoneyPak Virus last night and did a system restore from safemode. I then downloaded a free virus software program as recommended at malwarebytes.com. As it was running, eventually it crashed out into a blue screen and indicated it was doing a system dump. I pressed the OFF button and shut it down during that.

So I rebooted into safemode again and did a restore again. This time I used Windows Defender to do a quick scan and it found nothing. I worked a little more and there was another system dump. I pressed the OFF button and shut it down.

I rebooted and so far no more problems.

But is there more I have to do? Is it still on my system, or does System Restore take care of it? Why do you suppose I got the two system dump screens. I've gone through the sites with instructions for removal and it seems that doing a system restore should be enough.

I never click an executable that I didn't specifically download and don't know what it is. This is a development computer. I never download or watch videos on here, nor music. I don't do anything on illegal websites. I don't watch porn. I only use this for programming, checking mail. My mail has two forms of spam detector on it so spam goes directly there without me doing anything with it. I have no clue how I got this.

Thanks.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®

Commented:
This is a very common virus caused by drive by download. A website was visited that had this infection, which one..hard to say. A very easy virus to remove, hence the reason that the restore fixed it. Install Microsoft Security Essentials, run a scan, it will probably turn up nothing. How to prevent, very hard as no antivirus is 100%. Could be from a google search.
Starr DuskkASP.NET VB.NET Developer

Author

Commented:
My question was, "DID MY RESTORE FIX IT?" After all, I had the system shut itself down twice with a system dump after both restores. So is there something else that needs to be done?

I'd like perhaps someone who had this virus to confirm what they did to remove it all.

thanks.
Commented:
Your restore removed the entry from msconfig that started the virus when the computer booted. I have removed this virus manually from probably over 50 computers. If you would like to verify, go to start--search programs and files--type msinfo32--go to software environment--startup programs--file export--give the file a name and save it. Attach the results here. Also, to double check i recommended installing Microsoft Security Essential and running a scan
Success in ‘20 With a Profitable Pricing Strategy

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden using our free interactive tool and use it to determine the right price for your IT services. Start calculating Now!

Starr DuskkASP.NET VB.NET Developer

Author

Commented:
Is Microsoft Security Essential  not Windows Defender, which I already ran?

Commented:
That all depends on what version of windows you are running. Windows 8, defender is antivirus and spyware. In windows 7 or vista, it is only spyware and microsoft  essentials is needed for antivirus

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial