'FBI' Malware Support

Danhanado

Member
Minecraft Username
Danhanado
(For computer specialists/experts only)

INFO:
'FBI' virus is a sneaky malware, which usually gets inside its target computer undetected. This scam presents about itself for the victim as 'The FBI Federal Bureau Investigation' alert and aggressively claims that computer is blocked because of the Copyright and Related Rights Law violation or other reason. However, if you find yourself blocked by a program, which tells that you have been illegally using or distributing copyrighted content, viewing or distributing pornographic content and spreading malware to other computers, .
How People Get infected
This infection gets inside the system through security vulnerabilities found when user visits infected websites or downloads infected files. These security holes appear as soon as you forget to take care of your computer's security and don't use security software or don't update it. Of course, you must always think about safe browsing and avoid suspicious downloads that are actively offered on the Internet right now. The biggest issue, which is caused by this ransomware, is that similarly to its earlier versions, it completely blocks its victim's computer, 'locks' it and disables all the programs found there. In order to 'unlock' the system, FBI virus shows its warning and requires to pay the fine through MoneyPak. However, you must have already understood that you must never pay this $100 fine if you don't want to help for the scammers who are collecting these fines.
Screenshot


I have attempted to remove this virus...
1. Take another machine and use it to download SpyHunter.
2. Update the program and put into the USB drive.
3.reboot your infected machine to Safe Mode with command prompt and stick USB drive in it.
4. Reboot computer infected with FBI ransomware once more and run a full system scan.
...but, still it continues to lock my computer.

If anyone has any intellegible advice it would be much appreciated.

cheers.
----------------------------------------------------------------------------------------------------
Recource: http://www.2-spyware.com/
 
Are you able to acces 'Factory restore' if so I recomend,
I know you will lose all your files but hey its better than having no computer right?
Good luck!

BennyFighterZ
 

James137137

Veteran
Veteran
Minecraft Username
James137137
ok first thing first if you want good advise I would recommend going to a forum that deals with this. I personally recommend http://www.techsupportforum.com/ (only because I had worked (volunteer) for them. It is a 100% free computer support forum.

go to http://www.techsupportforum.com/forums/f50/ and post there

make sure you read all the information before posting http://www.techsupportforum.com/forums/f50/new-instructions-read-this-before-posting-for-malware-removal-help-305963.html

I will give you my own advise on my next post but please have a look at the forum above. They will provide great support and most are trained on this.
 

James137137

Veteran
Veteran
Minecraft Username
James137137
ok


what is OS name and version (e.g. windows xp sp 3)

Update your antivirus and do a full scan
Backup all important data. and virus scan it.

just reading http://botcrawl.com/how-to-remove-the-f ... moval/.....

there is a manual way to remove it ---> http://botcrawl.com/how-to-remove-the-f ... al/#manual

What I would recomend is download and install Microsoft Security Essentials or AVG. and do a quick scan then a full scan

As BennyFighterZ you could try using System restore. you shouldn't lose any personal files/docments but you will still need to do a very good check.


once all done would you be able to install HiJackThis and post a full report on this.
http://sourceforge.net/projects/hjt/


Please do not post any files that contain .exe or .com if you don't know just put in in a zip folder (file-compression)
 

cptwin

Veteran
Veteran
Minecraft Username
cptwin
Having dealt with this problem about 1000 times your best and only option is to format.
Your computer is compromised, anything that could be infected should be treated as such.
Grab your Documents and start again... it sucks, but really its the only way.
 
Top