NEWS
PARASITES
SOFTWARE
ASK US
DIRECTORY

 
 
 
 
 
 
  
Title: FBI Green Dot Moneypak Virus
Type: Ransomware
Also known as: FBI Moneypak

Remove FBI Green Dot Moneypak Virus
Ukash
Removal instructions

by
 
Severity scale:FBI Green Dot Moneypak Virus severity is 95  (95 / 100)
 

FBI Green Dot Moneypak Virus is a very serious cyber infection that has nothing to do with a governmental organization, which is called FBI. Just like FBI Moneypak or simply FBI virus, it displays an alert that locks computer down and disables victims from loading any of their programs or files. The minute user logs in, his PC goes straight to the Green Dot Moneypak screen and locks the entire system down. Even rebooting to Safe Mode with Networking or Safe Mode to Command Prompt do not help in most of the cases. You must be especially careful if you live in USA because most of the users who have been infected by this threat live this area. However, there are many other versions of this ransomware spreading in Europe as well (be aware about International Police Association (I.P.A.) ransomwareAn Garda Siochana virus,  Police Central e-crime Unit virus and others). 

HOW PEOPLE GET INFECTED WITH FBI GREEN DOT MONEYPAK VIRUS?

FBI Green Dot Moneypak Virus can be downloaded together with other programs or files without any permission asked. This may be fake video codecs, Flash updates or other freeware from the source that is not official. Besides, you should avoid opening spam email attachments as well if you don’t want to get this infection. Right after infiltration, FBI Green Dot Moneypak Virus replaces desktop’s background with large alert which seems to be sent by a governmental agency belonging to the United States Department of Justice. This alert tries to convince you that you have been breaking down various rules and now you have been caught for doing that:

All activity of this computer has been recorded.
If you use a webcam, videos and pictures were saved for identification.You can be clearly identified by resolving your IP address and the associated hostname.Your computer has been locked!I
llegally downloaded materials (MP3’s, Movies or Software) have been located on your computer.By downloading, those were reproduced, thereby involving a criminal offense under Section 106 of the Copyright Act.
The downloading of copyrighted material via the Internet or music-sharing networks is illegal and is in accordance with Section 106 of the Copyright Act subject to a fine of imprisonment for a penalty of up to 3 years.
Furthermore, possession of illegally downloaded material is punishable under Section 184 paragraph 3 of the Criminal Code and may also lead to the confiscation of the computer, with which the files were downloaded.To unlock your computer and to avoid other legal consequences, you are obligated to pay a release fee of $200. Payable through GreenDot Moneypak. After successful payment, your computer will be automatically unlocked. Failure to adhere to this request could involve criminal charges and possible imprisonment.
To perform the payment, enter the acquired GreenDot Moneypak code in the designated payment field and press the “Submit” button.

Of course, this alert is completely forged and it has nothing to do with legitimate organization. If your computer has also been locked by such FBI warning, you must understand that paying the fine won’t unlock your computer but will only support the owners of this screen locker. In order to bring your PC back to normal, you must unlock your PC first and then remove FBI Green Dot Moneypak virus.

HOW CAN I REMOVE FBI GREEN DOT MONEYPAK VIRUS?

To unlock your computer and get an ability to scan it with decent anti-malware, firstly you must follow these steps:

1. Take another machine and use it to download SpyHunterDefender Pro Ultimate Security Suite or other reputable anti-malware program.
2. Update the program and put into the USB drive or simple CD.
3. In the meanwhile, reboot your infected machine to Safe Mode with command prompt and stick USB drive in it.
4. Reboot computer infected with FBI ransomware once more and run a full system scan.

Now scan your computer with SpyHunter once more to remove all infected files from your PC.

UPDATE: We have alternative FBI Green Dot Moneypak Virus removal instructions. Try following them if flash drive option hasn't been helpful:

* Users infected with FBI Moneypak/FBI virus/FBI Green Dot Moneypak virus are allowed to access other accounts on their Windows systems. If one of such accounts has administrator rights, you should be capable to launch anti-malware program.

*   Try to deny the Flash to make your ransomware stop function as intended. In order to disable the Flash, go to Macromedia support and select 'Deny': http://www.macromedia.com/support/documentation/en/flashplayer/help/help09.html. After doing that, run a full system scan with anti-malware program.

* Manual FBI Green Dot Moneypak virus removal (special skills needed!):

  1. Reboot you infected PC to 'Safe mode with command prompt' to disable FBI virus (this should be working with all versions of this threat)
  2. Run Regedit
  3. Search for WinLogon Entries and write down all the files that are not explorer.exe or blank. Replace them with explorer.exe.
  4. Search the registry for these files you have written down and delete the registry keys referencing the files.
  5. Reboot and run a full system scan with updated SpyHunter to remove remaining FBI Green Dot Moneypak virus files.


Automatic FBI Green Dot Moneypak Virus removal:

We might be affiliated with any product we recommend on the site. Full disclosure in our Agreement of Use.
By Downloading any provided Anti-spyware software to remove FBI Green Dot Moneypak Virus you agree to our privacy policy and agreement of use.
remover for FBI Green Dot Moneypak Virus
SpyHunter is recommended remover to uninstall FBI Green Dot Moneypak Virus. You should confirm using free trial that it detects current version of parasite.

Note: Manual assistance required means that one or all of removers were unable to remove parasite without some manual intervention, please read manual removal instructions below.

If you failed to remove FBI Green Dot Moneypak Virus using SpyHunter, submit question to our support team and provide as much details as possible.
dot
Malwarebytes Anti Malware
Download | review
download
manual required
We are testing Malwarebytes Anti Malware's efficiency at removing FBI Green Dot Moneypak Virus (2012-09-06 03:13:32)
dot
Defender Pro Ultimate Security Suite
Download | review
download
manual required
We are testing Defender Pro Ultimate Security Suite's efficiency at removing FBI Green Dot Moneypak Virus (2012-09-06 03:13:32)
dot
STOPzilla
Download | review
download
manual required
We are testing STOPzilla's efficiency at removing FBI Green Dot Moneypak Virus (2012-09-06 03:13:32)
dot
XoftSpySE Anti Spyware
Download | review

what to do if you failed to remove the infection?
Phone Support to remove FBI Green Dot Moneypak Virus
Phone Support to remove FBI Green Dot Moneypak Virus
FBI Green Dot Moneypak Virus snapshot:
FBI Green Dot Moneypak Virus snapshot
snapshot

FBI Green Dot Moneypak Virus manual removal:

Kill processes:
tpl_0_c.exe
ch810.exe
0_0u_l.exe
[random].exe
jork_0_typ_col.exe
vsdsrv32.exe
Protector-[rnd].exe
Inspector-[rnd].exe
help HELP:
how to kill malicious processes

Delete registry values:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\[random].exe
HKEY_LOCAL_MACHINE\SOFTWARE\FBI Moneypak Virus
HKEY_CURRENT_USER \Software\Microsoft\Windows\CurrentVersion\Policies\System ‘DisableRegistryTools’ = 0
HKEY_LOCAL_MACHINE \SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system ‘EnableLUA’ = 0
HKEY_CURRENT_USER \Software\Microsoft\Windows\CurrentVersion\Internet Settings ‘WarnOnHTTPSToHTTPRedirect’ = 0
HKEY_CURRENT_USER \Software\Microsoft\Windows\CurrentVersion\Policies\System ‘DisableRegedit’= 0
HKEY_CURRENT_USER\Software\FBI Moneypak Virus
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run ‘Inspector’
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FBI Moneypak Virus
HKEY_CURRENT_USER \Software\Microsoft\Windows\CurrentVersion\Policies\System ‘DisableTaskMgr’ = 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protector.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\Inspector %AppData%\Protector-[rnd].exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\WarnOnHTTPSToHTTPRedirect 0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Settings\ID 4
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Settings\UID [rnd]
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Settings\net [date of installation]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ConsentPromptBehaviorAdmin 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ConsentPromptBehaviorUser 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\EnableLUA 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AAWTray.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AAWTray.exe\Debugger svchost.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AVCare.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AVCare.exe\Debugger svchost.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AVENGINE.EXE
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AVENGINE.EXE\Debugger svchost.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System “DisableRegistryTools” = 0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System “DisableTaskMgr” = 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system “ConsentPromptBehaviorAdmin” = 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system “ConsentPromptBehaviorUser” = 0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system “EnableLUA” = 0
help HELP:
how to remove registry entries

Unregister DLLs:
wpbt0.dll
help HELP:
how to unregister malicious DLLs

Delete files:
%Program Files%\FBI Moneypak Virus
%AppData%\Protector-[rnd].exe
%AppData%\Inspector-[rnd].exe
%AppData%\vsdsrv32.exe
%AppData%\result.db
%AppData%\jork_0_typ_col.exe
%appdata%\[random].exe
%Windows%\system32\[random].exe
%Documents and Settings%\[UserName]\Application Data\[random].exe
%Documents and Settings%\[UserName]\Desktop\[random].lnk
%Documents and Settings%\All Users\Application Data\FBI Moneypak Virus
%CommonStartMenu%\Programs\FBI Moneypak Virus.lnk
%Temp%\0_0u_l.exe
%Temp%\[random].exe
%StartupFolder%\wpbt0.dll
%StartupFolder%\ctfmon.lnk
%StartupFolder%\ch810.exe
%UserProfile%\Desktop\FBI Moneypak Virus.lnk
WARNING.txt
V.class
cconf.txt.enc
tpl_0_c.exe
help HELP:
how to remove harmful files

QR code for FBI Green Dot Moneypak Virus removal instructions:

FBI Green Dot Moneypak Virus qrcode
QR is short for Quick Response. They can be read quickly by the mobile phones. QR codes can store more data than standard barcodes, including url links, geo coordinates, and text.

The reason we add QR code to the website is that parasites like FBI Green Dot Moneypak Virus are really hard to remove on infected computer. you can quicly scan the QR code with your mobile device and have manual removal instructions to uninstall FBI Green Dot Moneypak Virus right in your pocket.

Simply use the QR scanner and read removal instructions from mobile device.

Removal guides in other languages

Information added: 2012-12-19 04:58:07
Information updated: 2012-12-19 04:58:07

Ask us discussions:

Modern viruses are really hard to remove. They have random file names, random registry entries, they can immitale legal products and files. Removal instructions sometimes can't Help to remove infection manually. Please take a look at our discussion where users like you share they experience in fighting the parasite:
submit your question
2

How to disable FBI virus warning?

-
FBI virus FBI Green Dot Moneypak Virus FBI moneypak
submit your question
2

How to fix my machine of FBI virus, FBI Green dot moneypak virus?

-
FBI Green Dot Moneypak Virus
submit your question
1

What should I know about FBI MoneyPak/FBI virus removal?

-
FBI virus FBI Green Dot Moneypak Virus FBI moneypak
submit your question
2

Help me to unblock PC from FBI Green Dot Moneypak virus!

-
FBI virus FBI Green Dot Moneypak Virus
submit your question
1

SpyHunter fails to remove FBI Moneypak/FBI virus, help!

-
FBI virus FBI Green Dot Moneypak Virus FBI moneypak
submit your question
1

FBI Virus elimination guide

-
FBI virus FBI Green Dot Moneypak Virus FBI moneypak
submit your question
6

How to unblock PC from FBI Moneypak/FBI virus

-
FBI virus FBI Green Dot Moneypak Virus FBI moneypak
submit your question
3

Need to banish FBI MoneyPak, help!

-
FBI virus FBI Green Dot Moneypak Virus FBI moneypak
submit your question
2

Need to fix my PC after FBI Green Dot Moneypak virus/FBI virus infiltration

-
FBI virus FBI Green Dot Moneypak Virus
submit your question
2

Need to kill FBI Green Dot MoneyPak virus

-
FBI virus FBI Green Dot Moneypak Virus
submit your question
2

Want to opt out FBI virus, help!

-
FBI virus FBI Green Dot Moneypak Virus FBI moneypak
submit your question
1

Stop ilqoxken.exe if you want to get rid of FBI virus

-
FBI virus FBI Green Dot Moneypak Virus
submit your question
1

Fbi Green Dot Moneypak virus fix question

-
FBI virus FBI Green Dot Moneypak Virus
submit your question
2

FBI Green Dot Moneypak virus elimination guide

-
FBI virus FBI Green Dot Moneypak Virus
submit your question
2

Help! Need to disable FBI virus!

-
FBI virus FBI Green Dot Moneypak Virus
submit your question
2

Fixing FBI Green Dot Moneypak virus

-
FBI virus FBI Green Dot Moneypak Virus

Additional resources:

Attention: If you know know a reputable website reated to security threats, please add a link here: add url
0
0
Dale
Malwarebytes fails to remove the virus. Any suggestions
2012 09 19
11
0
andy
tuen off your internet connection , go to system restore go back a day before the virus and it should be gone
2012 09 24
0
1
TJ
I rebooted into safe mode with Windows 7 and did a system restore. I opened up Microsoft Security Essentials to find that the virus had been quarantined. I have since deleted those files, updated Security Essentials and ran a scan which showed no deteced items.
2012 11 19
3
0
Shantina
system restore will remove virus.
2012 09 25
0
0
Kelly
I removed the virus using system restore 5 days ago and its back. Now my system restore says there are no restore points.
2012 11 01
0
3
Thomas
It will also delete absolutely anything you have done inbetween the restore point and now. Fine for some people, but if you happen to save files that are creative in nature (stories, digital art, electronic music), or otherwise irreplacable (family pictures recently taken that you havent had a chance to copy, same for videos), then there is always a risk that you will delete these items.

This is kind of like using a flamethrower to get a fly; yes, it will take care of the problem, but its also likely to destroy something that you want to keep.
2013 01 24
11
2
Dave
What should I do if I cant even get into safe mode? The only user account is the admin and thats whats infected so I cant run anything in a win os environment. Is there any options for a standalone bootable copy of something that will remove this or at least get me into windows?
2012 09 25
1
0
Brian
spam press F8 while your computer is booting up to access safemode with networking. This should allow you to run a security scan and look for further assitance on the web,
2012 12 23
8
0
Rick
Boot into Safe Mode with Command Prompt, then type explorer.exe. You can run System Restore from there.
2012 09 26
1
0
rob
what if it wont let me log on in safe mode with command prompt. If i get to the log in screen it rejects every password? If i try safe mode with networking it accepts the password but then gives me a blank white screen with message "waiting for page to load"
2012 09 27
0
0
g
How did you fix the problem where every password is incorrect, and safe mode does not work? how to get fix it
2012 12 24
0
0
Zam
Please, what is windows system32?
2012 12 14
0
1
Justin
I have the same problem as Dave.....
2012 09 26
0
2
rob
I have the same problem. It wont let me log in in safe mode or safe mode with command prompt
2012 09 27
3
0
doug
Desktop computer wont boot in safe mode, get a blue screen and have to power off. It boots if disconnected from internet cable, but task manager and regedit doesnt work, is the computer shot?
2012 09 28
12
6
Mike
You have to hit F8 while your computer is booting up. Then select reboot with command prompts. A bunch of Stuff will pop up but give it a few minutes and it will eventually change. Type in explorer.exe and it should boot up in safe mode. Then go to wherever your system restore is and go from there. System restore works and I did not download any malware or spyware stuff. Computer works fine.
2012 09 30
5
0
Jazz
Thank you so much Mike. I was abt to spend $180 to have someone come out to fix my computer. Truly thank you.
2012 10 05
1
0
Chip
Thanks for sharing your knowledge Mike. Worked like a charm.
2012 10 07
1
1
Bill
Thanks Mike worked for me also.
2012 11 13
0
0
Michael J
Thanks so much Mike!!! It really worked thanks for sharing
2013 01 22
0
0
Purpleyeti
Thanks, if I could have your babies I would.
2013 04 07
2
0
Will
Mikes instructions worked great. Virus gone, everything working fine - no loss of data. Thanks!
2012 10 01
0
0
William
Thank you Mike..Computer is back to the way it should be...WORKING...again THANK YOU!!!!!!!!!!!!!!
2012 10 02
1
2
Andrew
Had a different version on this virus a few months ago and once in safe mode malwarebytes removed it and had no issues. This time around it has been unsuccessful but Im going to give spyhunter a shot. Glad to see there is more info about this than the last time I looked, Thanks!
2012 10 02
1
0
gus
How do these bastards get away with this kind of stuff?
2012 10 04
0
0
Trudy
Thx Mike!!!
2012 10 04
0
0
sean
I just restored back 1 day before and the virus is still there.
2012 10 04
0
1
mdubb
I didnt have to turn off the wireless... I just cut off the computer turned it on. When asked I went to turn on the computer in "safe mode". Then when the computer loaded I hit "f8". typed in explorer.exe then. I went the start menu, typed in "restore"...went to system restore and the computer restored it to the last date I was on the computer and the virus is gone! thanks to Mike!
2012 10 05
0
0
Jamie
I dont have any system restore points, what should I do?
2012 10 08
0
0
Will
I have tried the system restore and its not working. Any other options
2012 10 08
0
0
justin
i revealed that YOOsecurity madr the virus so people would buy their anti virus if this gets heard spread the word!!!
2012 10 11
0
0
wilber
Hey thanks a lot for this useful information. I was able to get a full copy of Spy Hunter and bam no more F.B.I junk lol

thanks a bunch.

Wilber
2012 10 11
0
0
george
I Bburned cd spyhunter what neaxt :)
2012 10 11
0
0
tomi
Thanks mike! It works!
2012 10 14
0
0
matt
My comp. doesnt do ANYTHING if you press f8 while its booting... ?
2012 10 14
1
0
Bill
Press F8 repeatedly as it is booting
2012 11 13
0
0
Mia
Thanks Mike!!!! It worked!! So relieved and thankful to you for your help!!!!
2012 10 14
0
0
Matt
nvm i got it, now all i need to know is how to be sure you got rid of the virus for good
2012 10 14
0
0
zoe
After I put into safe mode and restart computer virus shows up and I cannot do any other instructions. What am I doing wrong?
2012 10 14
0
0
jimbo
I have discovered an easy way to remove the moneypak virus without scanning and without manually removing files. My computer has vista and a thing called system restore. After trying various scans, that didnt work, something clicked. My computer didnt have these virus files downloaded 2 days ago so I decided to use system restore to restore my computer to the state it was in 2 days ago. By doing this the computer itself will remove the virus, because the computer will remove all files that were downloaded from 2 days ago to present. Presto, that moneypak virus was gone like a rabbit in a hat. If I ever get any more viruses, malware, spyware, ransomwear, etc. I now have a way to get them off in seconds. I hope this saves alot of peoples hair from being pulled out.
2012 10 15
0
0
dell
Thank you so much for the excellent advise. With my Windows Vista I did exactly as you suggested and it seems to have worked. Scared the crap out of me initially, but glad I researched it on our family computer and found your advice. My Laptop and I thank you!
2012 12 26
0
0
Ric
Thanks for the great advices to all mentioned the system restore. I just did it last night on Window Vista and the nightmare is now over.
Additional advice: F8 only needed to press ONCE right from reboot, otherwise you can never get into safe mode. Dont install SpyHunter unless you plan to buy it. After installing, it will only scan your system but not removing anything unless you register and pay $40.
2012 10 17
0
0
Ric
Another piece of advice from my experience last night. In case you cant find system restore shortcut from window safe mode like myself after entering explorer.exe, you can type in rstrui.exe at the prompt directly for system restore. Just wait for a minute and your computer will start rebooting.
2012 10 17
1
0
S Schwartz
EASY REMOVAL FOR WINDOWS XP
Computer was restored to normal operation by restarting in safe-mode and removing the following files:

wsidten.dll found in C:Documents and Settings***Local SettingsTemp
ctfmon shortcut found in C:Documents and Settings***Start MenuProgramsStartup
lsass.exe found in C:Documents and SettingsAll UsersApplication Data

wsidten.dll and lsass.exe were replaced with 0 byte / read-only dummy files to prevent reinfection.
Make dummy files by creating a new text document, rename it, and make it read-only.
2012 10 17
0
0
Dean
I did the Vista recovery, and it worked!!!! Went 5 days back. SWEET! Thanks everyone!!!!
2012 10 17
0
0
LEE
I could not access to safety mode, only safety mode with prompt. on the prompt, put "rstrui.exe" then enter, enter.... then it was auotmatically restored and romoved.
2012 10 18
0
0
Parker
That helped thanks
2012 10 18
0
0
mike
any ideas if you have no restore points for a system restore?
2012 10 18
0
0
mike
SpyHunter, Malwarebytes and sytem restore not working for me.

SpyHunter requires an internet connection to install. FBI virus has disabled network so I cannot install it. Also, Malwarebytes does ot work (even with a manual update of virus definitions). No restore points.
2012 10 18
0
0
Ray
System restore worked for me after placing in safe mode. I restored to settings 2 days prior. What a relief. This is a nasty virus.
2012 10 18
0
0
Tom
I have been trying to get rid of this virus and several others for days. Get blu screen of death and pc only will stay up for a few minutes before going to blue screen I was able to get the command prompt in safe mode and I typed explorer.exe but after that it wouldnt take me to restore point or I dont know where to find it . I was able to open my computer and run malware bytes scan tool. But it didnt find anything ? Im about redy to toss this bleeping thing. Please help a nubie. How do you find restore points etc. thanks in advance. Tom
I have a program called combofix someone told me to run but Im afraid to since my pc only stays up for 2 or 3 min until blue screen pops up.
2012 10 18
1
0
ken C
System Restore worked like a charm!
2012 10 20
0
0
Kevin
Thanks Mike, worked for me too. Just a note about System Restore; it could take some time, mine took about 1 hour 25 minutes as the Java applet churned. There is no percentage countdown or other status bar visual indicator. Patience required. Once done it will reboot. Im on Win7 and went back 5 days to the Restore point. I had no system changes in the 5 day span other than McAfee Internet Security (laugh) and Windows updates.
2012 10 22
0
0
Ryan
I booted up in safe mode then went to administrator to do a system restore. I only restored it 1 week earlier, maybe took 5 minutes and when my laptop rebooted the virus was gone.
2012 10 23
0
0
Hector
I love you mike fixing this virus make me change my study field to computer since thank you so much mike I can sleep good tonigh
2012 10 29
1
0
Aim
Mike....you are a genius...thank you so much!
2012 10 30
0
0
Mario
I had the FBI Green Dot virus and could not find anything unusual in the regedit area or registry area. I went to WINDOWS EXPLORER and did a *.exe search (with a date modifier set to today) to find the problem. The file name was something like unph???.exe I hope this helps someone.
2012 10 31
0
0
Dan
I was fortunate enough to have had another account on my vista so I used that to create another administrative account. Once I did that I I started in safe mode and made copies of files pics ect. then just deleted the original administrative account. Virus was blown into the virtual cosmos! Have had no problem since =)
2012 11 02
0
0
Mickr
Hi, When I try Safe Mode I can only use safe Mode With Networking as Safe Mode does not allow a domain to be specified which my logon requires. When I use safe Mode With Networking as soon as the computer logons on it locks with a white screen. There is no possibility to type a CMD command or try access Ststem restore. Any suggestion splease on what I can do here?
2012 11 04
0
0
Sue
Ive been attempting Restores (yesterday, last week, last month)...each time Im being told "Your computer cannot be restored to: xxx (date), No changes have been made to your computer". Any other suggestions for a novice PC person?
2012 11 06
0
0
DB
When I enter Safe Mode, the GreenDot screen still shows up. How can I restore?
2012 11 17
0
0
Dave
When i try to get on Safe mode or Safe mode with command prompt i get the BSOD (blue screen of death). Any suggestions?
2012 11 18
0
0
Kris
I keep trying to do a restore and it keeps failing. Any suggestions?
2012 11 21
0
0
steve
my pc is infected and I cant seem to boot in safe mode. what should i do?

Win 7
i unplugged internet connection
rebooted kept hitting f8 but cantt get to safe mode option.
2012 11 24
0
0
needtoknow
thankfully i got my network back up enough to find this website. Almost gave in i made it as far as buying the card but i found out about the virus through this site and the info mike gave help me fix the issue. thank you
2012 12 06
0
0
needtoknow
rebot in safe mode with prompt, then type explorer.exe, should look old school, go to control panel and do a system restore. should do the trick by the way info is care of mike mentioned earlier in post
2012 12 06
0
0
Mahi
If you are able to get into your pc and try to go to (for Win 7)
C:ProgramData and see if you can find unusual file. These are random named files. Click on Date Modified and check anything added recently and delete them.
2013 02 23
0
0
Nikil
Additional Resources:
http://www.youtube.com/watch?v=_dKBXeoLIFo
http://www.youtube.com/watch?v=6bVbCABjf38
2012 11 27
0
0
Phil
No system restore points...which is odd. What now?
2012 12 12
0
0
Zam
Please, how can i do?
I cant run by safe mode and networking.
Please, some one..
2012 12 14
0
0
Geary
Followed everyones directions, was able to get to the restore point from this summer, and restored to there. THANKS to all of you!
2012 12 14
0
0
Daniel
i went to "safe mode with networking" enter, goes to next screen will not do anything. black screen. what do i do next. want to make sure virus off and computer clean before getting on job network..
2012 12 17
0
0
nick
Why such kind of nonsense is happening in my pc..your steps helped me to remove Guard Pro fake virus.thanks guys..

Provide me information to know how i will be able to know that my system get infected once again by same virus???
2012 12 21
0
0
J.
I kept getting the blue screen of death when I tried to enter safe mode. Worked for about 3 hours with no luck. Finally, I disconnected the internet cable and loaded windows normally. IT WORKED!!! I then did a system restore to a few days ago, and everything is working great. DISCONNECT THE INTERNET CABLE!
2012 12 22
1
0
albert davis
i albert davis is report money pak to the b.b.b. it is a scams day got me for 300.00 get the virus off my computer i albert ask to remove all virus scams off my computer so i can e mail and get e mail money pak is blocking my e mail facebook my unmaem and password unlock my computer report to the f.b.i. can i will call the b.b.b. remove all viaus and scams .
2012 12 23
2
0
Charlie
Thanks to all for comments. Did a system restore to two days prior and seems to have completely resolved the issue. Id like to find and castrate these dirty rat bastards.
2012 12 24
0
0
Gary
I too got hit with this nasty virus. No luck removing it yet. I have XP. Ive tried safe mode, safemode with networking, and command prompt. Every combination brings me to the the virus screen. Ive tried to log in as user and admin. Same thing. Is there something I can run externally to get around this? I have USB drives available. Thanks in advance.
2012 12 24
0
0
Gary
UPDATE I was able to get in using command prompt with networking. I quickly typed explorer.exe and my restore window showed up. Restored successfully to last week. Windows now starts normally and my desktop appears. Im running a malwarebytes scan. Im not connected to the internet yet. Im wondering if there are other tools I should use before I claim victory over this virus. Thanks again!
2012 12 24
0
0
Marissa
Mine said Im a pedophile. I thought it was real for a second, because my friend showed me this nasty picture once.. but now I know its not. They could see me on the webcam. Why would an 18 yr old girl be a pedophile?
2012 12 27
0
0
Mark
I have XP. I cannot get into safe mode. I tried all 3 safe modes numerous times - regular safe, safe with networking and safe with command. They all kick right back to the page after 20-30 seconds.
2012 12 28
0
0
JD
Windows XP. System Restore not working. All safe modes are disabled. Got the virus on Christmas Day. Need to manually remove through search. Please list specific files if possible. Thanks in advance.
2012 12 31
0
0
blah
Has anyone else recieved a random phone call from an unknown number? The person on the other line is saying I have a virus and he can help me remove it. As I had this virus the other week, I have since removed it and nothing has happened. Until I got that phone call this morning. Does anyone have any other information?
2013 01 05
0
0
hodo
yes i did. i was told by the guy i had a virus and he needed to remove it and he could do it by remote control. He said the fee would depend on the problem. the problem was i let him take remote control of my pc and he moved everything so fast i couldnt follow him. then he said the fee would be 175 dollars. i told him to go suck eggs and then he said he would accept 75 so i (thinking this was a good deal) paid the rotton rat. little did i know while he had remote access he installed some nasty virus and some malware (and i accualy paid him for it). they will not stop. once they get your phone number they might wait 3 months and call back saying you have won a lottery, you need to send .001% of the winnings for processing. .001% of the supposed winnings of 5 million was 5000 bucks. I knew there was no way any sweepstake or lottery (especially since i didnt enter any) would make you pay for any winning. & i was right!
2013 01 12
0
0
rob
CHECK: In safe mode with command prompt
CHECK: I typed explorer.exe
However, it still takes me to the virus before I get to Control Panel. Ideas?
2013 01 14
1
0
DAVE
TO MIKE,
Thanks for the info.did the c/prompt and restore to a couple a days ago and ran m-bytes.picked up 39 viruses and got rid of em.machine is working fine now.THANKS Again!
2013 01 14
1
0
Jim
Ok, most of you are not getting to the issue here.
I have windows vista home
I have no way to get to any safe mode options, none, I CAN NOT GET TO SAFE MODE.
The reason I wrote in caps was not to offend, but to get you to understand that there is no safe mode. I can boot from each option in the F8 menu, but when the system boots there is that annoying warning preventing me from doing anything. I do not have a second account, it is my computer. So, to sum this up, no safe mode, no command prompt, still have virus.
2013 01 15
1
0
Jim
Ok, kiddies I have removed the virus even though I was not able to get to safe mode or to a command prompt. This is what I did, I am not sure if your options are identical so please review this before you start.
Restart computer and press F8 to get to the start up options,
Select repair and enter,
select os to repair,
select user account to repair,
when system recover options menu comes up select System Restore and go to the first option before FBI green dot. Let the system continue until all is finished. Worked for me, I hope it works for you.
2013 01 16
2
0
Ilan
Dale, Malwarebytes did remove it for me I guess you need to update! thank you guys. I boot my laptop with command promt in safe mode and typed in "explorer.exe" as Rick has suggested and boy I was saw happy to see my start menue. (thank you rick!) then I ran Malwarebytes in fast scan detected 23 red ones and then performed full scan and found 4 more. about system restore it is not enough it will come back scan and remove this nasty program has lost of trojans !
2013 01 20
0
0
Paul
Do a system restore, the run a quality virus program. Then find the idiot who wastes his him writing these viruses and punch him in the face.
2013 01 21
0
0
Jill
My dad has this virus, safe mode is llocked, as soon as he tries to get into it, it boots him back into windows. Disconnecting the internet hasnt helped either. Any suggestions?
2013 01 27
0
0
Jill
oh, and i forgot, its the only account on the pc.
2013 01 27
0
0
Mahi
If are able to get into your pc and try to go to (for Win 7)
C:ProgramData and see if you can find unusual file. These are random named files. Click on Date Modified and check anything added recently and delete them.
2013 02 23
0
0
bill
Best to spend the money and have a computer store remove it. Restore loses a lot of data. Friend of mine has it and he is shut down with many grants written to be sent asap, restore will lose all that work. He watches porn, best advice, dont go to porn sites.
2013 02 18
0
0
mark.
you can also bypass this thing by logging in as guest. if you dont have it. start in safe mode and add guest user . you can do this by ( while in safe mode) opening control panel, open administrative tools, manage another account , turn on guest accounts. trying to do a restore point while logged in at safe mode (as administrator) would automaticaly shut down . or even search for any of the files or processes. would result in auto shut down also. so go in as guest and do what ya need to -restore to previous point , download maleware ....etc.
2013 02 26
0
0
chako
Thanks a lot it worked....................
2013 05 26
0
0
Elise
Prior to reading this forum, I had attempted to boot up my computer in plain safe mode, and now when I turn on my computer, my screen is completely black. I tried pressing F8 (repeatedly) as soon as I turn my computer on but nothing happens. My computer just sits powered on with a black screen. Any suggestions? Am I totally screwed now?
2013 06 11

Post Comment:

Attention: Use this form only if you have additional information about FBI Green Dot Moneypak Virus parasite, its removal instructions, additional resources or behavior. By clicking "post comment" button you agree not to post any copyrighted, unlawful, harmful, threatening, abusive, harassing, defamatory, vulgar, obscene, profane, hateful, racially, ethnically or otherwise objectionable material of any kind.
Home page Name



«


* All field required
Submit a Question
Like us on Facebook
Latest spyware news:
Subscribe to spyware news
Please enter your e-mail address:
If you do not want to receive our spyware
newsletter please unsubscribe here
48030 Subscribers
Ask us
Encyclopedia of parasites:
Library of files:
Archive of files
Tags:
Your main spyware remover is:
Windows Defender
Spy Sweeper
AVG Anti-Spyware
SUPERAntiSpyware
Spybot - S&D
SpyHunter
Other program
I have two or more programs
I don't need no anti-spyware



Compare spyware removers
Compare free products
I failed to remove FBI Green Dot Moneypak Virus using SpyHunter.

Email


Close

Spreading the knowledge:

It is very hard to fight Computer parasites alone in internet space. If you have a website we would be more than happy if you would help us to spread the knowledge about latest threats. You can help your visitors to manage their Computer system manually without aditional expences. Knowledge is the power, we just need to spread it.
add text box
rss feed
help other
Agreement of Use | Privacy policy | Webmasters | Contact us | RSS Feeds rss feeds | Follow us Follow us | Like us Like us
© 2001-2013  2-spyware.com  All Rights Reserved. Reproduction in part or whole without written permission is prohibited. Powered by: eSolutions.