Trojan.Reveton is a computer that infects users with Ukash virus ransomware applications. It infects users in various countries, and changes the appearance of the ransom message based on the user's location. Basically, Trojan.Reveton is a multi-lingual infection that locks the user's computer and then displays a security message that is localized according to where the user lives. The message displayed covers the entire screen and Trojan.Reveton claims that the user has to pay a fine for being in possession of illegal material.
Most of the users get infected with the Trojan.Reveton through a drive-by download. The Trojan is known to arrive as a randomly named .dll file. It manages to take over your computer, because it enters Windows startup folder and creates a shortcut file for itself. Thus, once Trojan.Reveton is in, it does not allow you to access your desktop and displays the fake security message once you turn on your PC and the system loads.
The message that is displayed by Trojan.Reveton renders your computer unusable, because it does not allow you to access the desktop no matter what you do. The message looks like it has come from a legal law enforcement institution. For example, there might be FBI Moneypak that pretends to be an FBI representative. Then there is Cuerpo Nacional de Policia (Spain), Guardia di Finanza (Italy), Metropolitan Police Virus (UK), Bundespolizei National Cyber Crimes Unit (Germany) and many more variants of the ransom message displayed by Trojan.Reveton.
The main message in all of these notifications is that your computer has been blocked due to the fact that you have engaged in illegal activity. Mostly you are accused of storing illegally downloaded copyrighted material that is against your local laws, and then the user is threatened by an imprisonment sentence up to a few years for whatever he has "done". Naturally, the accusations displayed by Trojan.Reveton are groundless, but a lot of users panic enough to actually pay the ransom fee that varies from 100 USD and 100 euro to 50 pounds (depending on your locale).
It should be noted that Trojan.Reveton does not unlock your computer even if you do pay the ransom, thus it has to be removed from your computer immediately. Do not pay this ransomware a single cent. Follow the instructions below to remove Trojan.Reveton and get your computer back to normal:
1. Restart the computer and press F8 before the system boots up.
For Windows XP:
1. Reboot your computer and press F8 before Windows logo shows up.
- Block exe files from running
- Installs itself without permissions
- Changes background
- Connects to the internet without permission
- Shows commercial adverts
- Slow internet connection
- System crashes
- Annoying Pop-up's