Saturday, December 8, 2012

Your PC is blocked due to at least one of the reasons specified below. Department of Justice virus

Do you think your PC has been blocked by Department of Justice? Be not deceived so easily, please. This locker has nothing to do with the Federal Bureau of Investigation. Instead, it is the direct product of hackers who have launched it into the cyber world to trick and scare users with its scary alert that says: “Your PC is blocked due to at least one of the reasons specified below”. Then the virus list these reasons, but this is just the way how online criminals want you to be tremendously scared with these many faulty accusations. The point is that once this virus enters your PC your entire system becomes locked, and you cannot do anything to restore it. Your keyboard is also disabled, and the problem is that no matter how many times you restart your computer the same locked status remains and persists. The locker states the following faulty information:

Your PC is blocked due to at least one of the reasons specified below Attention! You have been violation Copyright and Related Rights Law (Video, Music, Software) and illegally using or distributing copyrighted contents, thus infringing Article 1, Section 8, Clause 8, also known as the Copyright of the Criminal Code of United States of America. Article 1, Section 8, Clause 8 of the Criminal Code provides for a fine of two to five hundred minimal wages or a deprivation of liberty for two to eight years. You have been viewing or distributing prohibited Pornographic content (Child Porn/Zoophilia and etc.). Thus violating article 202 of the Criminal Code of United States of America. Article 202 of the Criminal Code provides for a deprivation of liberty for four to twelve years. Illegal access has been initiated from your PC without your knowledge or consent, your PC may be infected by malware, thus you are violating the law on Neglectful Use of Personal Computer. Article 210 of the Criminal Code provides for a fine of up to $100,000 and /or deprivation of liberty for four to nine years. Pursuant to the amendment to Criminal Code of United States of America of May 28, 2011, this law infringement (if it is not repeated I first time) may be considered as conditional in case you pay the fine to the States. Fines may only be paid within 72 hours after the infringement. As soon as 72 hours elapse, the possibility to pay the fine expires, and a criminal case is initiated against you automatically within the next 72 hours I To unlock the computer, you must pay the fine through Ukash or Paysafecard of 100$. How do I unlock computer using Ukash or Paysafecard? 1. Find a retail location near you. 2. Look for a Ukash or Paysafecard in the prepaid section. Take it to the cashier and load it with cash. A service fee of up to $4.95 will apply. 3. To pay fine, you should enter the digits Ukash or Paysafecard resulting code in the payment form and press Pay Ukash or Paysafecard. When you pay the fine, your PC will get unlocked in 1 to 48 hours after the money is put into the State account. In case an error occurs, you’ll have to send the code by email fine@fbi.gov (Do not forget to specify IP address)

Do not ever transfer any funds in favor of these crooks that have elaborated this scam! Doing so is a serious mistake on your part. So, do not disclose any Ukash or Paysafecard important payment details to these online hackers. Instead, please follow the removal guide that we have recently developed to assist you in unlocking your computer from ransomware infection.


Screenshot of this ransomware locker:

Ransomware removal steps

Notice! This guide is valid for all GreenDot MoneyPak, Ukash and Paysafecard lockers.

  1. Reboot your system and keep hitting F8 repeatedly while it is restarting.
  2. Select Safe mode with networking.
  3. Go to Start menu and choose Run, or press [Win]+R on keyboard.
  4. Type-in msconfig
  5. Disable all startup items rundll32 switching on any application from Application Data.
  6. Reboot your PC once again.
  7. Scan your PC with GridinSoft Trojan Killer to identify the infected file and delete it.

Important!!! Some versions of these ransomwares disable all safe modes, but give a short time gap that you can use to run anti-malware tool. Then try doing the following:

  1. Restart normally.
  2. Click Start and choose Run.
  3. Enter the text specified in the quotation below. If malware is loaded, just press Alt+Tab once and keep entering the string blindly, then hit Enter.
  4. http://trojan-killer.net/download.php
  5. Press Alt+tab and then R (letter) a couple of times. The process of ransomware infection should be killed after you succeed to download, install our recommended software and scan your PC with it.

Detailed removal guide:

http://trojan-killer.net/metropolitan-police-virus-warning-remove/

What to do if the above-mentioned solution doesn't work

Indeed, such things are quite possible, and the virus may not let you do anything at all with your system to restore it. If this is the case, then you will need to try Kaspersky Rescue Disk as the alternative and excellent solution for ransomware removal. Please find more about it here - http://support.kaspersky.com/faq/?qid=208282173

Recommended software for ransomware removal:

No comments:

Post a Comment