Remove the FBI Moneypak Virus - FBI blocking warning - with easy steps.

You may Read following links before proceeding Further.


http://iamdigiman.blogspot.com/2012/10/About-FBI-MoneyPak-Virus.html
http://digimanvirusremoval.blogspot.com/2012/10/fbi-moneypak-virus-win32-revaton-or.html


Please read Carefully and follow the steps below.

1, Don't Panic. Just relax and turn of the computer. You may do so by pressing and holding the power button for about 5 to 7 seconds or by unplugging the power cord ( in desktops ).


2, Start tapping the "F8" turn on the computer. Continue tapping the F8 button until you see a screen which says Advanced Boot Options.

3, Choose the option "SAFE MODE WITH NETWORKING" using your arrow keys and press "ENTER" to start loading the WINDOWS.


4, Login to the account by entering your password ( if you have any)


5, Connect to the Internet


6, Open your Run Window.

• Press and hold the "Windows key" and click on "R" to open the Run Window.

7, Type in the Run window as "iexplore www.myredirects.blogspot.com/2012/10/kaspersky-virus-removal-tool.html" or "iexplore www.mcaf.ee/L6C4W"


8, Follow the link on the web page, select the version 11, choose your favourite Language and click on Download.


9, Click on Run when prompted.

• The options may come up in bottom of your browser if you are using latest version of Internet Explorer

10, This tool will run a Scan and Detects the Virus Infections in your Computer.

• To start a Scan, Click on Automatic Scan Tab and Click on Start Scanning. 
• Once the scan is completed apply recommended actions for all threats detected.

11, Restart the computer to Normal Mode and now you are absolutely Infection Free.

Visit http://support.kaspersky.com/avptool2011/start?qid=208284205 for more help on using this tool. 

As Simple As That

mirror: http://blog.bigbangnerd.com/2014/06/remove-fbi-moneypak-virus-fbi-blocking.html

FBI Moneypak Virus - Win32 : Revaton or Reveton

FBI Moneypak Virus - It is a common name in recent days among the computer users of United States



In 2012, a major ransomware worm known as Reveton or Revaton or Win32/Revaton , also nicknamed the "Police Trojan", began to spread. Based off the Citadel trojan (which itself, is based on the Zeus trojan), its payload displays a warning purportedly from a law enforcement agency, claiming that the computer had been used for illegal activities; such as downloading pirated software. The warning informs the user that to unlock their system, they would have to pay a fine using a voucher from an anonymous prepaid cash service such as Ukash or Paysafecard. To increase the illusion that the computer is being tracked by law enforcement, the screen also displays the computer's IP address as well, while recent versions can also purportedly show footage from a computer's webcam to give the illusion that the user is also being recorded by law enforcement.

Revaton's payloads are localized, displaying the names and logos of local law enforcement agencies. Variants that targeted the United Kingdom included ones branded as being from the Metropolitan Police Service, the collection society PRS for Music (which specifically accused the user of illegally downloading music), and the Police National E-Crime Unit. In a statement warning the public about the malware, the Metropolitan Police clarified that they would never lock a computer in such a way as part of an investigation.

Reveton initially began spreading in various European countries in early 2012. In May 2012, Trend Micro threat researchers discovered templates for variations for the United States and Canada, suggesting that its authors may have been planning to target users in North America. A Norwegian version exists.  By August 2012, a new variant of Reveton began to spread in the United States, claiming to require the payment of a $200 fine to the FBI using a MoneyPak card.

FBI MoneyPak Virus - Win32/ Revaton or Reveton

FBI MoneyPak Virus -  Screenshot by DiGiMan

The FBI - MoneyPak virus has many user interfaces, most of them are having the Computer's IP address in them to make the users believe in it. Sometimes it comes with the name of United States Cyber Security. Almost all variants of this malware blocks the whole screen of the computer once the users log into their user account. In most cases it won't even allow us to Kill it's process from task manager. Actually we can't even open task manager by pressing "CTRL+ALT+DEL"

Removing this malware is pretty simple and for that please read the next blog.. It is my time to sleep. See Ya.

mirror at: http://www.bigbangnerd.com/2014/06/fbi-moneypak-virus-win32-revaton-or.html

FBI Moneypak Virus - It is a common name in recent days among the computer users of United States

FBI Moneypak Virus - It is a common name in recent days among the computer users of United States



In 2012, a major ransomware worm known as Reveton or Revaton or Win32/Revaton , also nicknamed the "Police Trojan", began to spread. Based off the Citadel trojan (which itself, is based on the Zeus trojan), its payload displays a warning purportedly from a law enforcement agency, claiming that the computer had been used for illegal activities; such as downloading pirated software. The warning informs the user that to unlock their system, they would have to pay a fine using a voucher from an anonymous prepaid cash service such as Ukash or Paysafecard. To increase the illusion that the computer is being tracked by law enforcement, the screen also displays the computer's IP address as well, while recent versions can also purportedly show footage from a computer's webcam to give the illusion that the user is also being recorded by law enforcement.

Revaton's payloads are localized, displaying the names and logos of local law enforcement agencies. Variants that targeted the United Kingdom included ones branded as being from the Metropolitan Police Service, the collection society PRS for Music (which specifically accused the user of illegally downloading music), and the Police National E-Crime Unit. In a statement warning the public about the malware, the Metropolitan Police clarified that they would never lock a computer in such a way as part of an investigation.

Reveton initially began spreading in various European countries in early 2012. In May 2012, Trend Micro threat researchers discovered templates for variations for the United States and Canada, suggesting that its authors may have been planning to target users in North America. A Norwegian version exists.  By August 2012, a new variant of Reveton began to spread in the United States, claiming to require the payment of a $200 fine to the FBI using a MoneyPak card.

FBI MoneyPak Virus - Win32/ Revaton or Reveton

  

FBI MoneyPak Virus -  Screenshot by DiGiMan

The FBI - MoneyPak virus has many user interfaces, most of them are having the Computer's IP address in them to make the users believe in it. Sometimes it comes with the name of United States Cyber Security. Almost all variants of this malware blocks the whole screen of the computer once the users log into their user account. In most cases it won't even allow us to Kill it's process from task manager. Actually we can't even open task manager by pressing "CTRL+ALT+DEL"

Removing this malware is pretty simple and for that please read the next blog.. It is my time to sleep. See Ya.