Login

4WayDiablo · (This post was last modified: 25-03-2013, 03:09 PM by 4WayDiablo.)

So I turned the computer on to find this....

Filename: IMG_20130325_125319.jpg Size: 1.38 MB 25-03-2013, 03:03 PM

I'm fairly sure this is some kind of damn good virus of some sorts as it asks for you to pay £100 fine

Its completely blocked the Operating system meaning that can't do anything
Ctrl alt del does nothing but take me back to this
Tried to reboot in safe mode with command prompt but that doesn't do anything
Tried to get to system restore but couldnt
Anyone (Fooby Scott??) Got any ideas on this
Or do I get the match and lighter out. Trouble is there is many years of family photos on there

Some better quality pics...

Filename: IMG_20130325_125427.jpg Size: 1.15 MB 25-03-2013, 03:08 PM

Filename: IMG_20130325_125410.jpg Size: 1.36 MB 25-03-2013, 03:08 PM

**cully** · 25-03-2013, 03:09 PM

ha ha phils been on the Porn again!

Midnightclub · 25-03-2013, 03:12 PM

Used to remove that virus daily of some sort or another.. what O/S is it running?

**cully** · 25-03-2013, 03:15 PM

let me help you!

http://lmgtfy.com/?q=PCeU

**sweeney1987** · 25-03-2013, 03:19 PM

definately a virus, asks you to pay by some of the payzone Kash things i think
dunno how to remove though

**Eeyore** · 25-03-2013, 03:28 PM

yeh definitely a virus. Youd have to be watching more than porn to get that!

puglove · 25-03-2013, 03:32 PM

tut you know them sites are 18+ phill you shouldnt even be on them! how are you going to explain this to mum and dad eh??

**bigcheez2k3** · 25-03-2013, 03:51 PM

If you've got the Windows disc, assuming you're running windows, boot from that and do a system restore.

Matt · 25-03-2013, 03:52 PM

Flol what have you been looking at! Tut tut

gareth7 · 25-03-2013, 03:54 PM

(25-03-2013, 03:51 PM)bigcheez2k3 Wrote: If you've got the Windows disc, assuming you're running windows, boot from that and do a system restore.

and then back up all your photos etc to an external hard drive and CDR

We had a similar problem a few years ago and lost everything.......never again

**Arron** · 25-03-2013, 04:08 PM

Definately a virus. This may help, i use hitmanpro to get rid of this. Try this bud

http://malwaretips.com/blogs/pceu-virus/

Only you need a working computer to create a bootable USB

r3k1355 · 25-03-2013, 04:14 PM

Looks like a fairly complex piece of Scareware/Ransomware.

I hope you've got a backup, or means to backup your computer because the really well written stuff needs a format to remove.

4WayDiablo · 25-03-2013, 04:18 PM

(25-03-2013, 03:12 PM)Midnightclub Wrote: Used to remove that virus daily of some sort or another.. what O/S is it running?

Windows vista or windows 7. I think its 7

Its the family computer but I rarely use it as I have my own. My brother used to use it shit loads and regularly caught him on dodgy sites

Cheers for the help

Daniel306 · (This post was last modified: 25-03-2013, 04:24 PM by Daniel306.)

http://malwaretips.com/blogs/pceu-virus/

Seams like there is a few different virus that do this

**lolsteve** · 25-03-2013, 04:36 PM

Housemate got this but it was the "FBI" and he was blocked for looking at illegal material or something

~~306Puggy~~ · 25-03-2013, 06:01 PM

God knows I've looked at some stuff (autopsies mainly) that if I didn't know any better I would shit myself if that came up lol

Dum-Dum · 25-03-2013, 06:29 PM

Definitely a virus mate, my mum got it last week and shes never illegally downloaded anything in her life.

There is some good guides on you tube to getting rid of it.

Its a scam that's been doing the rounds for months. Make sure you report it to the police.

4WayDiablo · 25-03-2013, 11:57 PM

Managed to boot it in safe mode and get malware bytes which has isolated it but not removed it

Its a pretty good virus as I can see how people more vounerable would fall for it
It literally takes over the system

Cheers for the help and rep will be on the way to you all soon

Shea · 26-03-2013, 12:10 AM

i had that come up once, was telling me that i was looking at fake creadit cards and some things that would make you got WTF, worked for me when i hit the power button and then turned back on :/ deffo a scam

**bigcheez2k3** · 26-03-2013, 12:19 AM

Another good thing to use with stuff like this is rkill. It scans the processes that are running and shuts off any that are known as malicious, usually ones that stop you from using anti-malware software.

Midnightclub · 26-03-2013, 11:35 AM

If you've deleted it using mbam, you may still have issues, it stores data in the registry sometimes so as soon as you reboot and removal it just redownloads all over again, i can't remember off hand which keys it effects i'm afraid :/

**Scott** · 26-03-2013, 12:06 PM

Glad to hear you kind of have it sorted. Personally if a system has been compromised to that level, I would usually reformat and reinstall Windows, while not connected to the internet, and install some AV from a USB drive, before connecting. It might also be worth telling your brother to stop looking at so many dodgy sites, primarily warez sites as I'm assuming that's the sort of thing he was going on before.

Jenkosowls · 26-03-2013, 12:48 PM

It called ukash virus it encrypts all data on the system the rents had this the other month but couldn't remove it with anything at all so scrapped the hardware. After looking In to it malware bytes can isolate it

4WayDiablo · 26-03-2013, 04:06 PM

What's a warez site? Lol

Will tell my parents it needs to be binned lol. Its a shame as its a pretty good computer

**Scott** · 26-03-2013, 04:10 PM

Warez is a bit of a general term for file sharing, but I meant mainly if he's trying to download free versions of software, particularly software cracks or serial numbers.

No point binning it though, it can always be saved! What sort of spec is it?

4WayDiablo · 26-03-2013, 04:27 PM

Quad core something? 2.8 iirc
6gb ram
"Overlockers" graphics card dunno what spec
Buts not exactly old and still pretty swift
Thing is though parents use it for internet banking as well as all their internet shopping of which they do a lot of

Midnightclub · 26-03-2013, 04:33 PM

You don't need to scrap it at all, worst worst case.. get a USB caddy and take out the HDD, put all your wanted data etc. on another PC or ext HDD etc. then as scott said, just wipe and reinstall windows. It'll be fine, must have removed it over 100 times, it can be persistent and usually the longer it stays on the machine the worse the infection gets, sometimes just a system restore and a MBAM scan with rkill will get rid of it, other times a complete wipe is required.

**Scott** · 26-03-2013, 04:50 PM

(26-03-2013, 04:27 PM)4WayDiablo Wrote: Quad core something? 2.8 iirc
6gb ram
"Overlockers" graphics card dunno what spec
Buts not exactly old and still pretty swift
Thing is though parents use it for internet banking as well as all their internet shopping of which they do a lot of

Well they definitely need to stop using it until you've done a full reinstall and educated your brother on better browsing habits.

There's no need at all to scrap that, it's a decent PC. If I wasn't going away on Friday I'd do it for you over the weekend. If it's still not fixed by the time I get back then let me know and I'll help out.

4WayDiablo · 26-03-2013, 05:45 PM

Cheers fella.
Get the pics off there then full system cleanse and reboot in order imo

td_dan · 26-03-2013, 05:51 PM

just boot the machine in safe mode and run combofix this will remove it then just run malwarebytes when you log back into windows, job done, its a common occurence at my work lol

Login
Username:
Password:	Lost Password?
	Remember me

Possibly Related Threads…
Thread		Author	Replies	Views	Last Post
	police	thebluepearl	77	31,245	23-09-2014, 04:41 PM Last Post: toseland
	Motorway police...	rtha6551	52	21,105	04-01-2014, 11:46 AM Last Post: Matt
	PROOF THE POLICE ONLY USE THE BEST CARS	joelww	16	6,525	26-10-2013, 06:03 PM Last Post: Pompey306mark