PRISM ‘Your Computer Has Been Locked!’ Ransomware

PRISM ‘Your Computer Has Been Locked!’ Ransomware Description

ScreenshotA new ransomware, the PRISM 'Your Computer has been locked!' Ransomware has been preventing computer users from using their machine, displaying a threatening message demanding the payment of a ransom. The PRISM 'Your Computer has been locked!' Ransomware Trojan displays a fake message from the NSA which accuses the victim of downloading and distributing illegal content, such as pirated software or illegal pornographic material. The PRISM 'Your Computer has been locked!' Ransomware Trojan locks the infected computer's screen, demanding that the computer user pay a fake police fine of $300 through MoneyPak in order to unlock it. It is important to remember that the PRISM 'Your Computer has been locked!' Ransomware is not actually associated with the American police authorities.

The PRISM 'Your Computer has been locked!' Ransomware is Another Variant of the Police Trojan


This is a common online scam that is similar to countless variations of the Police ransomware attack. It's meant to scare inexperienced computer users by accusing them of breaking the law. Rather than paying the PRISM 'Your Computer has been locked!' Ransomware's fine, it is important to remove this threat immediately with a reliable anti-malware application. The PRISM 'Your Computer has been locked!' Ransomware blocks all access to the victim's computer, preventing all access to the infected computer's operating system and files.

How the PRISM 'Your Computer has been locked!' Ransomware Attacks a PC


Most PRISM 'Your Computer has been locked!' Ransomware infections enter a computer using typical malware delivery methods. The PRISM 'Your Computer has been locked!' Ransomware can infect a computer after the victim visits an attack website that uses an exploit kit to install malware on the visitors' computers. Computer users may be directed to attack websites after clicking on a malicious embedded link in an unsolicited email message, after visiting a compromised website containing a malicious redirect script or through a variety of other scams. Exploit kits associated with the PRISM 'Your Computer has been locked!' Ransomware will take advantage of outdated software on the victim's computer in order to install malicious software, so an important part of protecting your computer from malware is ensuring that all of your software is fully up to date.

Infected with PRISM ‘Your Computer Has Been Locked!’ Ransomware? Scan Your PC for Free

Download SpyHunter’s Spyware Scanner
to Detect PRISM ‘Your Computer Has Been Locked!’ Ransomware

Security Doesn't Let You Download SpyHunter or Access the Internet?


Solutions: Your computer may have malware hiding in memory that prevents any program, including SpyHunter, from executing on your computer. Follow to download SpyHunter and gain access to the Internet:
  • Use an alternative browser. Malware may disable your browser. If you're using IE, for example, and having problems downloading SpyHunter, you should open Firefox, Chrome or Safari browser instead.
  • Use a removable media. Download SpyHunter on another clean computer, burn it to a USB flash drive, DVD/CD, or any preferred removable media, then install it on your infected computer and run SpyHunter's malware scanner.
  • Start Windows in Safe Mode. If you can not access your Window's desktop, reboot your computer in 'Safe Mode with Networking' and install SpyHunter in Safe Mode.
  • IE Users: Disable proxy server for Internet Explorer to browse the web with Internet Explorer or update your anti-spyware program. Malware modifies your Windows settings to use a proxy server to prevent you from browsing the web with IE.

If you still can't install SpyHunter? View other possible causes of installation issues.

Technical Information

Screenshots & Other Imagery

Screenshot

File System Details

PRISM ‘Your Computer Has Been Locked!’ Ransomware creates the following file(s):
# File Name
1 C:\ProgramData\[RANDOM CHARACTERS].plz
2 C:\ProgramData\[RANDOM CHARACTERS].ctrl
3 C:\ProgramData\[RANDOM CHARACTERS].pff

Registry Details

PRISM ‘Your Computer Has Been Locked!’ Ransomware creates the following registry entry or registry entries:
HKEY..\..\..\..{RegistryKeys}
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Winmgmt\Parameters\ServiceDll = "C:\PROGRA~2\6j108owj.plz"

More Details on PRISM ‘Your Computer Has Been Locked!’ Ransomware

The following messages associated with PRISM ‘Your Computer Has Been Locked!’ Ransomware were found:
NSA Internet Surveillance Program
PRISM
Computer Crime Prosecution Section
Your Computer has been locked!
Your computer has been locked due to suspicions of illegal content downloading and distribution.
Your case can be classified as occasional/unmotivated, according to 17 (U.S Code)
Thus it may be closed without prosecution.
Your computer will be unblocked automatically.
In order to resolve the situation in an above-mentioned way you should pay a fine of $300 (MoneyPak)

Site Disclaimer

Leave a Reply

IMPORTANT! To be able to proceed, you need to solve the following simple math.
Please leave these two fields as-is:
What is 4 + 8 ?