Your computer is infected with malicious software? Do you have pop-ups on your PC?
If so, search this blog for removal instructions or browse computer threats by category.

Saturday, August 2, 2014

Remove FBI Cybercrime Moneypak Virus (Uninstall Guide)

Tell your friends:
There are two variants of the FBI Cybercrime Moneypak virus: one that locks your computer and another that simply hijacks or blocks your web browsers. The first one is obviously more dangerous because it can damage Windows files and if the removal process goes wrong you may even lose your files. To learn more about it, please read how to remove FBI MoneyPak ransomware. The second one is not exactly a virus. It's a browser hijacker that uses JavaScript functions to block your web browser. The scam web page title says: "FBI. ATTENTION! Your browser has been blocked up for safety reasons listed below. All the actions performed on this PC are fixed. All your files are encrypted. Conducted audio and video." Then goes the scam page with all the fancy logos and false allegations, mostly about illegal sexual stuff that you supposedly watched or downloaded. Please use this guide to remove FBI Cybercrime Moneypak virus and any associated malware.

FBI Cybercrime Moneypak virus is Internet fraud that tries to trick you into paying $300 or more to get your files back that weren't even encrypted in the first place. It can also fool you in to paying for fraudulent file encryption program. Such internet frauds are rogue because they appear in regular Internet search engines, as well advertising themselves on social networks. FBI Cybercrime Moneypak virus falls under the malware umbrella thanks to its deliberately misleading nature. And because of this you should definitely protect yourself with genuine antivirus software.

There are so many online threats that it can get confusing knowing what's real and what isn't. So when one program is pretending to be a genuine version of another, how on earth do you tell the difference?

And herein lies the problem; because fake FBI Cybercrime Division scam disguises itself as a REAL FBI warning. However, it's pretty obvious that The FBI doesn't block browsers. If you were really watching and sharing something illegal, the FBI would show up and arrest you and confiscate every internet enabled device on your property. And they certainly would not warn you in advance or ask you to go Walmart and buy Moneypak voucher.

So how do fake FBI Cybercrime Moneypak web pages trick you in the first place? Surely they're easy to spot? Well, no not always – these guys are very good at what they do. A fake warning page will display a message warning you that you have a virus on your machine or you're infected by spyware or like in this case, you watched or downloaded illegal stuff. However, the reality is that these do not exist.

Other FBI scam has an element of a Trojan horse infection to it. For example it may install a new browser page, a toolbar, a screensaver – and yes, a 'free' service that scans for viruses.

So how does this FBI Cybercrime Moneypak virus find its way on to your computer in the first place? It may be attached to an infected email or PDF viewers for one and once you've clicked that link or opened that document, the malware will install itself and then get to work sending you fake alerts. It may be also promoted on various social networks and adult websites. Users are usually redirected to fake FBI warnings through numerous proxy websites to avoid instant detection.

Another scenario is that you may encounter a banner advert or pop-up box that tells you that your files are enctrypted. Of course cyber crooks are playing on your insecurities and will then try and scare you into paying for your own freedom. Naturally they'll then attempt to convince you to pay the biggest sum of money. It could be even $1000 but usually they are fine with $300.

OK, so how do you remove the FBI Cybercrime Moneypak virus? If it's the first variant, use the removal guide here. If it's a variant that blocks your web browser then follow the steps in the removal guide below. It shouldn't be very difficult. All you have to do is simply force your web browser to close and then reset all settings. If you are using Chrome, you can even use Chrome's built-in task manager. It will instantly close all problematic tabs and you won't have to close other tabs. If you are using Firefox or Internet Explorer you will have to force close them using Windows Task Manager or restart your computer.

If you have any questions, please leave a comment down below. Good luck and be safe online!

Written by Michael Kaur,

FBI Cybercrime Moneypak Virus Removal Guide:

1. Download recommended anti-malware software and run a full system scan. It will detect and then remove malware from your computer. You may then follow the manual removal instructions below to remove the leftover traces of this infection. Hopefully you won't have to do that.

2. Open Task Manager by right-clicking the taskbar, and then clicking Task Manager. You can also open Task Manager by pressing Ctrl+Shift+Esc.

3. Click the Processes tab. To exit a program, click the program that you want to exit, and then click End Task. In this case, you need to close your web browser process or processes:
  • iexplore.exe - Internet Explorer
  • chrome.exe - Google Chrome
  • Safari.exe - Safari
  • opera.exe - Opera
  • firefox.exe - Mozilla Firefox
Please note that there might be multiple processes listed, especially if you are using Chrome web browser. Close all chrome.exe processes to fully close the program. Or you could simply close the problematic tab titled FBI ATTENTION in case you are using Chrome. Read more: Close tabs, windows, and Google Chrome.

4. Your browser window should now be closed. The next time you open your browser, do not allow the browser to open the last opened page.


james roberts said...

How would you remove the virus from a cellular device?

Admin said...

@james, force close your web browser, clear history and check your app list. Maybe there's an app installed on your phone that displays this warning. If that doesn't help then factory reset is the way to go.