'Your computer has been locked! Ransomware' Details
The ‘Your computer has been locked!’ Ransomware is a bogus warning message that criminals will use to try to extort money from inexperienced computer users. This malicious message impersonates a communication from the FBI and the Department of Justice and is aimed at computer users in the United States. ESG security researchers have observed a dramatic increase in the number of ransomware infections similar to the ‘Your computer has been locked!’ Ransomware, particularly in Europe, where these fake alert messages will target computer users in different countries and use different languages and police department logos. ESG security researchers strongly advise against paying the $200 dollar fine mentioned in the ‘Your computer has been locked!’ Ransomware message. This fake warning has no actual relationship with the FBI or any other legitimate law enforcement agency. Rather, ‘Your computer has been locked!’ Ransomware is part of a well-known scam that targets inexperienced computer users. Instead of paying the ‘Your computer has been locked!’ Ransomware’s ransom, ESG security researchers recommend removing this malware threat with the help of a reliable anti-malware utility.
This fake warning message will take up your whole screen and prevent you from accessing your files or Windows components such as the Windows Desktop or the Windows Task Manager. The ‘Your computer has been locked!’ Ransomware message uses threatening language and claims that the victim’s computer was involved in unlawful activities such as viewing child pornography. The ‘Your computer has been locked!’ Ransomware message goes on to threaten the victim with jail time and hefty fines unless a one-time $200 payment is made via MoneyPak (a legitimate money transfer service not directly associated with these kinds of illegal enterprises). Unfortunately, inexperienced computer users may be coerced into paying this amount, even though payment does not guarantee that the victim will regain access to the infected computer.
ESG security researchers have observed that the main difficulty in removing the ‘Your computer has been locked!’ Ransomware infection is, in reality, obtaining access to the compromised machine. Fortunately, you can do this by starting up Windows in Safe Mode and accessing the Registry Editor. Then, all that needs to be done is to remove a bogus Google Chrome Registry entry which is easy to spot due to the fact that it isn’t actually associated with the Google Chrome web browser. ESG security researchers recommend executing a complete scan of your hard drives utilizing a capable anti-malware program to ensure that all components associated with the ‘Your computer has been locked!’ Ransomware are gone.
How Can You Detect Malware Files Related to ‘Your computer has been locked! Ransomware’?
Your computer has been locked! Ransomware Technical Report
As new Your computer has been locked! Ransomware details are reported by our customers and findings from our Threat Research Center, we will update this section.
Fake message for Your computer has been locked! Ransomware:
The following fake error message(s) appears for Your computer has been locked! Ransomware:
Your computer has been locked!
This operating system is locked due to the violation of the fedefal laws of the United States of America! (Article 1, Section 8, Clause 8; Article 202; Article 210 of the Criminal Code of U.S.A. provides for a deprivation of liberty for four to twelve years.)
Following violations were detected:
Your IP address was used to visit websites containing pornography, child pornography, zoophilia and child abuse. Your computer also contains video files with pornographic content, elements of violence and child pornography! Spam-messages with terrorist motives were also sent from your computer.
Tis computer lock is aimed to stop your illegal activity.
To unlock the computer you are obliged to pay a fine of $200.
You have 72 hours to pay the fine, otherwise you will be arrested.
You must pay the fine through MoneyPak:
To pay the fine, you should enter the digits resulting code, which is located on the back of your Moneypak, in the payment form and press OK (if you have several codes, enter them one after the other and press OK).
If an error occurs, send the codes to address email@example.com