DOJ Trojan has computer locked down

keeferj2 · Jan 26, 2013

My daughters computer has been infected with the DOJ, FBI Trojan. I can find lots of explanation of how to get rid of it, but can't get past the Trojan.

She's tried to start in SAFE Mode but continues to reboot in SAFE with or without networking.

She's attempted to boot-up without the internet but she gets a white screen after she logs on.

If she attempts to by-pass the lock-down screen the start button doesn't work, nor will the Task-manager.

I can't get her past the lock-down to start removing the virus.

chaslang · Jan 26, 2013

First most important piece of information is always, what version of Windows are you running?

keeferj2 · Jan 27, 2013

Dang, I know that. She has a Windows 7 machine. Sorry.

chaslang · Jan 27, 2013

Please do the below so that we can boot to System Recovery Options to run a scan.

For 32-bit (x86) systems download Farbar Recovery Scan Tool and save it to a flash drive.
For 64-bit (x64) systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options from the Advanced Boot Options:

Restart the computer.

As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.

Use the arrow keys to select the Repair your computer menu item.

Select US as the keyboard language settings, and then click Next.

Select the operating system you want to repair, and then click Next.

Select your user account an click Next.

On the System Recovery Options menu you will get the following options:

Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt
Click to expand...

Select Command Prompt

In the command window type in notepad and press Enter.

The notepad opens. Under File menu select Open.

Select "Computer" and find your flash drive letter and close the notepad.

In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
Note: Replace letter e with the drive letter of your flash drive.

The tool will start to run.

When the tool opens click Yes to disclaimer.

Press Scan button.

It will make a log (FRST.txt) on the flash drive. Please attach this file to your next reply. (See: How to attach)

keeferj2 · Feb 4, 2013

Sorry it has been so long, it has taken awhile to get another computer. Here is the FRST.txt log.

chaslang · Feb 4, 2013

Download this >> View attachment fixlist.txt

Save fixlist.txt to your flash drive.

You should now have both fixlist.txt and FRST64.exe on your flash drive.

Now reboot back into the System Recovery Options as you did previously.
Run FRST64 and press the Fix button just once and wait.
The tool will make a log on the flashdrive (Fixlog.txt).
Please attach this to your next message. (See how to attach)

Now see if you can boot into normal Windows. If you can then it is advised that you now run the below.

READ & RUN ME FIRST. Malware Removal Guide

Log in or Sign up

DOJ Trojan has computer locked down

keeferj2 Private First Class

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

keeferj2 Private First Class

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

keeferj2 Private First Class

Attached Files:

FRST.txt

chaslang MajorGeeks Admin - Master Malware Expert Staff Member