Danger level 9
Type: Malware
Common infection symptoms:
  • Block exe files from running
  • Installs itself without permissions
  • Connects to the internet without permission
  • Slow internet connection
  • System crashes
  • Annoying Pop-up's
  • Slow Computer

United States Cyber Security Virus

Cyber criminals do not give up and attempt to obtain as much money as possible, and United States Cyber Security virus is a proof that they are not going to stop. This infection is another ransomware infection targeted on naïve computer users which are expected to pay a ransom fee so that their computers are “unlocked”. The infection disables Windows operating system and displays an alert message explaining the reasons of the lock-down of the computer in the hope that a gullible user will swallow the bait and pay a fine of $100. United States Cyber Security Virus does not differ from its predecessor FBI MoneyPak, because their texts, layouts and the method of paying the fine are the same.

Find some extracts of the virus’ text accusing computer owners of criminal activities:

You have been violating Copyright and Related Rights Law (Video, Music, Software) and illegally using or distributing copyrighted content […].

You have been viewing or distributing prohibited Pornographic content (Child Pornography/Zoofilia and etc.)

Illegal access has been initiated from your PC without your knowledge or consent, your PC may be infected by malware […].

The immobilization of the computer should not lead you to paying the ransom money, because the alert message does not have anything in common with any authoritative institution. Moreover, a respectable organization would not attempt to charge a suspect by asking him or her to transfer one hundred dollars through MoneyPak, which provides costumers with safe online money transfer service, or any other e-paying system. As you may tell, if you pay the money to unlock the computer, you will not be able to reclaim the money spent on the absurd service. As a result, the only way to deal with United States Cyber Security virus is to remove it from the system as soon as possible.

We advise you to use an automatic spyware removal application, which will remove United States Cyber Security virus in no time and protect the computer against future infections. To download an antispyware program, restart the computer, press F8 and then select Safe Mode with Networking. Here, go to the Start menu and find the Run option. Type in msconfig.exe and press OK. Find the Startup tab, uncheck start up programs and press OK. Go to http://www.pcthreat.com/download-sph and download SpyHunter, which will remove the virus and safeguard the system.

The following instructions on how to remove United States Security Virus are recommended only to advanced users:

1. Restart the computer and immediately press F8 to open Windows Advanced Options Menu.
2. Select Safe Mode with Command Prompt.
3. Go to the Start menu and open RUN.
4. Type in cmd.exe and press OK.
5. Enter the following lines:

reg delete hkcuSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem /v DisableRegistryTools /f

reg delete hklmSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem /v DisableRegistryTools /f

6. Again open RUN, type in regedit.exe and press OK.
7. Follow this path: HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesExplorer and remove a parameter named NoDesktop (right-hand section).
8. Follow the path HKCUSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem and remove DisableTaskMgr.
9. Go to HKCUSoftwareMicrosoftWindowsCurrentVersionExplorerAdvanced, find HideIcons and change its value into 0.
10. In HKLMSOFTWAREMicrosoftWindows NTCurrentVersionWinlogon, find Shell and set explorer.exe.
11. Remove Shell from HKCUSOFTWAREMicrosoftWindows NTCurrentVersionWinlogon.
12. In HKCUSoftwareMicrosoftWindowsCurrentVersionRun, find a randomly named file. Copy and paste it to the Find box and search in HKLMSOFTWAREMicrosoftActive SetupInstalled Components.
13. If the file is detected, remove the whole entry.
14. Delete the file given in the parameter containing the random name. Find the cmd.exe you opened before and type in this line to remove the file: del /f /q “parameter value”.
15. Remove randomly named parameters from the following entries: HKCUSoftwareMicrosoftWindowsCurrentVersionRun HKLMSoftwareMicrosoftWindowsCurrentVersionRun
16. Restart the computer by typing in the following line in the cmd.exe command line: shutdown -r -t 0.

Even after you have finished the removal, scan the system to find out whether United States Cyber Security Virus is removed completely.

Download Spyware Removal Tool to Remove* United States Cyber Security Virus
  • Quick & tested solution for United States Cyber Security Virus removal.
  • 100% Free Scan for Windows

Post comment — WE NEED YOUR OPINION!

Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.