Loading ...|
|
Tweet |  More |
FBI Moneypak Ransomware Description
ESG security researchers have received reports of a ransomware infection, known as the FBI Moneypak ransomware, that targets computer users in the United States. The FBI Moneypak ransomware infection will claim that the victim’s computer was involved in viewing child pornography and then demands payment of a 100 dollar ‘fine’ to be sent via MoneyPack. Of course, that a criminal charge as serious as child pornography would be punished with a mere 100 dollar fine is laughable. There is a reason for this, the FBI Moneypak ransomware is not really from the FBI. Rather, this message is actually part of a common malware scam.
The FBI Moneypak ransomware scam will use a Winlocker, that is, a malware infection that locks down Windows, preventing the user from connecting to the infected computer. The FBI Moneypak ransomware message will claim that the FBI has blocked your computer because of the supposed criminal activities mentioned above and threatens to prosecute and block your access to your computer permanently unless you send them money through MoneyPack. It goes on to say that you only have 72 hours to pay before they initiate legal proceedings that could lead to huge fines and possible jail time.
This intrusive message blocks the whole screen and resembles an Internet Explorer window. The FBI Moneypak ransomware message is caused by a Trojan infection that also blocks access to the Windows Task Manager, Command Prompt, Desktop and other components that could potentially help you bypass this intrusive message. Fortunately, the FBI Moneypak ransomware scam is not particularly sophisticated or complicated to remove and, of course, FBI Moneypak ransomware has no relationship with the actual FBI (so you can relax about supposedly being in trouble with the law). The FBI Moneypak ransomware scam is a simple variant of a very common malware scam known as the Ukash Virus. The Ukash Virus mainly targets European computer systems. If you replace ‘FBI’ with European law enforcement agencies and ‘MoneyPack’ with Ukash or PaySafeCard, it is the same basic scam.
Dealing with the FBI Moneypak Ransomware Scam
The FBI Moneypak ransomware is not difficult to remove. In fact, manual removal is simply a matter of removing its associated Windows Registry Entry and associated files. The main problem is gaining access to your computer system in the first place. To do this, ESG security researchers recommend either starting Windows in Safe Mode or from an external memory device. From there, most reliable anti-malware programs should be able to remove the FBI Moneypak ransomware infection with ease.
Type: Malware
How Can You Detect FBI Moneypak Ransomware?
Download SpyHunter’s Detection Scanner
to Detect FBI Moneypak Ransomware.
Can’t install SpyHunter? Click here to view possible causes of installation issues.
FBI Moneypak Ransomware Removal Details
FBI Moneypak Ransomware has typically the following processes in memory:
- %TEMP%\0_0u_l.exe
- %StartupFolder%\ch810.exe
- %APPDATA%\jork_0_typ_col.exe
- tpl_0_c.exe
- %WINDIR%\system32\0_0u_l.exe
- %Temp%\[RANDOM].exe
- %StartupFolder%\wpbt0.dll
FBI Moneypak Ransomware creates the following files in the system:
- V.class
- WARNING.txt
- %StartupFolder%\ctfmon.lnk
FBI Moneypak Ransomware creates the following registry entries:
- cconf.txt.enc
- %AppData%\vsdsrv32.exe
Important Article Disclaimer
FBI Moneypak Ransomware
Leave a Comment
Note: Abusive comments are not allowed. Please do not post comments regarding technical support issues. ESG customers that have issues with SpyHunter should open a customer support ticket.