United States Department of Justice Ransom-ware

Hi There,

I have this malware on my sister's laptop which is an HP Pavilion running Windows 7, 64-bit software. At first, she said it was just showing the ransom screen with the pic it took, but I was able to run it in safe mode and sign on under different users other than the administrator today.

After reading previous posts, I was able to run the Farbar Recovery Scan Tool and have attached the frst.txt. Would really appreciate your guys help for the next steps. I understand after this that I should still do the RUN & READ ME STEPS to make sure all is good.

Thank you in advance for your help with this matter.
You guys are great!!

 

Hi Tim, :wave

Thank you so much for responding. Attached is the next message I received after the fixlist.txt. I am running the MGTools now and will post that when complete.

Doll

 

I tried rebooting on to the software and the Ransom-ware was back and locked me up. Tried getting into the flash drive where I put the MGTools on it to transfer it to the C drive and could not. Should I rerun the fixlist.txt ? I am not sure what to do now??

Thanks again.

 

I reran the farbar and attached the txt doc again just in case you need it.

 

Im hanging in there...any news yet on how to proceed?

 

Did that before but will try it again with this one and post again.

 

Okay downloaded file from you and had to change name for the fix to work. Ran it and please find attached the fixlog.txt. On to the MGTools wish me luck.

 

Okay I was able to run the MGTools and have attached the zip file. Also, wanted to let you know of a few issues while running this.

1. I was using the USB flash drive and working off my computer previously. When I tried to copy the MGTools.exe from the USB to the C: drive the laptop(the one we are fixing) will not recognize the USB drives...it only recognized it during the system repair. But I was able to sign on the internet and download the exe file and use it.

2. When I tried turning off the screen saver while the MGTools was running it said that my dll file was missing and will not allow me to adjust that.

3. Other dll files were missing at first and wouldn't allow me to run notepad and a few other files, however this seems to be intermittent, so hopefully these next steps will fix them.

I await your next instructions.
Thanks for your continued help!

 

:-o Oh really my mistake then...I did download someones post at first but after further reading..realized i needed to post my own problem and so when Tim gave me the first attachment I must have copied the wrong file from to the USB... Doh!! :foolish Thanks for the clarification.

 

What about issue #2...any idea on that?

Will run the CCleaner & Windows repair and let you know that feedback and I plan on doing the whole run & read me process afterwards as well...that always helps!

Thanks much!!