Click on screenshot to zoom
Danger level 8
Type: Malware
Common infection symptoms:
  • Installs itself without permissions
  • Changes background
  • Connects to the internet without permission
  • Slow Computer

FBI Federal Bureau of Investigation Virus

There is one important thing that users have to realize about FBI Federal Bureau of Investigation Virus – it is a scam created to swindle them out of their money. It is a ransomware application that displays a fraudulent message on your screen, claiming that you have violated the federal law of the United States. The malicious program locks down your computer and unless you remove FBI Federal Bureau of Investigation Virus from your computer, you will not be able to access your desktop. Luckily, it is possible restore your desktop access on your own, so scroll down to the end of the description for the instructions on how to unlock your PC.

If you are wondering where FBI Federal Bureau of Investigation Virus comes from, the answer is very simple – it is part of the notorious Ukash Virus group. Perhaps you have heard of the most “famous” program from the family – FBI MoneyPak. These infections have been torturing users worldwide for some time now, and there is an infection localized for almost every wired country out there, although technically all these programs are more or less the same. There are Royal Canadian Mounted Police Virus, ICSPA Virus, New Zealand E-Crime Lab Virus and many others. Just like FBI Federal Bureau of Investigation Virus, all these infections block your desktop access because they expect you to pay a fine for something you have not done.

Naturally, the screen-sized message may look threatening especially as it is adorned with the FBI insignia, but so far the FBI does not have the jurisdiction to lock down your personal computers, so you should not believe a single word you see on your screen:

All activities of this computer has been recorded. All your files are encrypted. Don’t try to unlock your computer!
This PC is blocked due to at least one of the reasons specified below.
You have been subjected to violation of Copyright and Related Rights Law (Video, Music, Software) and illegally using or distributing copyrighted contents, thus infringing Article 1, Section 8, Clause 8, also known as the Copyright of the Criminal Code of the United States of America. […]
To unlock your computer and to avoid other legal consequences, you are obliged to pay a release fee of $300.

As you can see FBI Federal Bureau of Investigation Virus expects you to pay a significant amount of money, saying that it is the only way to unlock your computer. It also claims that unless you pay the fine, your information will forward to the court and a criminal case will be initiated against you. You have to stand your ground, not succumbing to the program’s threats. Follow the instructions below and unlock your desktop. Then you will be able to remove FBI Federal Bureau of Investigation Virus using a legitimate computer security application.

How to restore desktop access

Windows 8

  1. Press the Windows key and the Metro UI will show up.
  2. Click Internet Explorer tile and enter http://www.pcthreat.com/download-sph into the address bar. Hit Enter.
  3. Click Run on the download dialog box and install SpyHunter.
  4. Run a full system scan with the program.

Windows Vista & Windows 7

  1. Restart the PC and tap F8 repeatedly until Advanced Boot Options menu appears.
  2. Select Safe Mode with Networking and press Enter.
  3. Access http://www.pcthreat.com/download-sph and download SpyHunter.
  4. Install the program and run a full system scan.

Windows XP

  1. Follow the steps 1 and 2 above.
  2. Click Yes on the Confirmation dialog box.
  3. Download SpyHunter.
  4. Open Start menu and click Run.
  5. Enter “msconfig” into the Open box and click OK.
  6. Open Startup tab on System Configuration Utility.
  7. Click Disable all and press OK.
  8. Reboot the PC in Normal mode.
  9. Install SpyHunter and perform a full PC scan.

If you have any questions on how to remove FBI Federal Bureau of Investigation Virus from your computer, you can always leave a comment below.

Download Spyware Removal Tool to Remove* FBI Federal Bureau of Investigation Virus
  • Quick & tested solution for FBI Federal Bureau of Investigation Virus removal.
  • 100% Free Scan for Windows
disclaimer

How to manually remove FBI Federal Bureau of Investigation Virus

Files associated with FBI Federal Bureau of Investigation Virus infection:

skype.dat
rvcbcyks.exe
hwj3ba6j.dss
Firewallservice.exe
administration.exe
00b5d693.exe
2084473.dll
魔法桌面第三方主题破解补丁V1.1.exe
questscan.dll
obvwo.exe
xlqbteeb.exe
Q3d38543.exe
secproc_isv.exe
SyncHostps.exe
dyjdl.exe
Other.res
sqlncli.exe
%LOCALAPPDATA%\Temp
p1.exe
%APPDATA%\updates
%CommonProgramFiles%
aPr0hY9.exe
C87C.exe
%WINDIR%\system32
xmlfilter.exe
msn.exe
%APPDATA%\system
audipbrd.exe
najeoxtt.exe
bzsbkotiu.exe
wjthvwjb.dss
m2PythonLoader.exe
Nbt.exe
96dddda4.dll
%TEMP%
svchost.exe
ssntvs.exe
pYunY8m4VL3qLc.exe
iner.exe
xaZYOVJW.exe
wgsdgsdgdsgsd.exe
dqnbdq7.dss
00qbipeq.exe
msavfit.exe
Piranha.exe
ctfmon.exe
%LOCALAPPDATA%\lollipop
pmstcdjwz.exe
wahneaqa.exe
ex3b.dll
NTServiceManager.exe
bvhylsviw.exe
jsdhlexdqkllnbcxgai.bfg
%WINDIR%\Temp
WINDED6.exe
puozlkmyj.dll
brenasa.exe
wpbt0.dll
%SystemDrive%\????????????
gcrwcoak.exe
ubvhynpxh.exe
3511172082012Build.exe
crack.exe
UpgradeHelper.exe
TimeDateMUICallback.exe
install_0_msi.exe
DLL321.dll
JfCqQ5JC.exe
%ALLUSERSPROFILE%\Application Data
oygqyunapnp.exe
videotwisterSA.exe
WinSyncMetastore.exe
csrsss.exe
msdtmsrd.exe
xctqakcqbeo.dll
ACEIEAddOn.dll
%ALLUSERSPROFILE%
dtkmujvo.exe
rool0_pk.exe
ieudator.dll
87b2cb3916261d5c807bf44262755cb0.exe
wlsidten.exe
ifgxpers.exe
%APPDATA%\Task Scheduler
acuvzomo.exe
scvhost.exe
securitywindrv.exe
wlsidten.dll
systemcpl.exe
setex.exe
uenovfiu.exe
UpdatePriv.exe
b34btbztdb0vavaw.exe
50E1.exe
%UserProfile%
Updating.exe
zqmkrehUkpoKfsafsaZg.exe
DA0B.exe
msshell.exe
%AppData%
idiokbbrv.exe
cf6640a77ed4926a4c6be661ab93def9d13408753dd07e8d02836996a2f247b6.exe
OmaSG21e.exe
MusicCollector.exe
msnmsgrr.exe
VaultSysUi.exe
bf8h8d02hf.exe
yaiiwockc.dll
{097444e7-2d87-ba3c-2efe-9f54812d824a}.exe
comeo.exe
Task Scheduler.exe
mplayer2.exe
taskhost.exe.exe
n.

FBI Federal Bureau of Investigation Virus DLL's to remove:

questscan.dll
ex3b.dll
xctqakcqbeo.dll
puozlkmyj.dll
96dddda4.dll
ieudator.dll
2084473.dll
DLL321.dll
ACEIEAddOn.dll
wlsidten.dll
yaiiwockc.dll
wpbt0.dll

FBI Federal Bureau of Investigation Virus processes to kill:

wlsidten.exe
WINDED6.exe
msn.exe
comeo.exe
xlqbteeb.exe
JfCqQ5JC.exe
ifgxpers.exe
secproc_isv.exe
{097444e7-2d87-ba3c-2efe-9f54812d824a}.exe
p1.exe
b34btbztdb0vavaw.exe
obvwo.exe
xaZYOVJW.exe
rvcbcyks.exe
brenasa.exe
svchost.exe
cf6640a77ed4926a4c6be661ab93def9d13408753dd07e8d02836996a2f247b6.exe
NTServiceManager.exe
bzsbkotiu.exe
VaultSysUi.exe
scvhost.exe
ubvhynpxh.exe
taskhost.exe.exe
3511172082012Build.exe
WinSyncMetastore.exe
videotwisterSA.exe
Firewallservice.exe
csrsss.exe
UpgradeHelper.exe
msnmsgrr.exe
pYunY8m4VL3qLc.exe
DA0B.exe
OmaSG21e.exe
魔法桌面第三方主题破解补丁V1.1.exe
acuvzomo.exe
00qbipeq.exe
wahneaqa.exe
idiokbbrv.exe
SyncHostps.exe
uenovfiu.exe
gcrwcoak.exe
securitywindrv.exe
Piranha.exe
Updating.exe
msdtmsrd.exe
ctfmon.exe
iner.exe
bf8h8d02hf.exe
ssntvs.exe
00b5d693.exe
najeoxtt.exe
mplayer2.exe
Q3d38543.exe
setex.exe
Nbt.exe
msavfit.exe
administration.exe
sqlncli.exe
UpdatePriv.exe
audipbrd.exe
50E1.exe
bvhylsviw.exe
C87C.exe
aPr0hY9.exe
msshell.exe
zqmkrehUkpoKfsafsaZg.exe
oygqyunapnp.exe
dtkmujvo.exe
wgsdgsdgdsgsd.exe
pmstcdjwz.exe
Task Scheduler.exe
xmlfilter.exe
m2PythonLoader.exe
install_0_msi.exe
TimeDateMUICallback.exe
87b2cb3916261d5c807bf44262755cb0.exe
MusicCollector.exe
rool0_pk.exe
dyjdl.exe
systemcpl.exe
crack.exe
Disclaimer

Comments

  1. hitesh Jul 24, 2014

    MY CELLPHONE IS HACKED
    WHAT DO I DO NOW
    MY CELLPHONE IS NOKIA X

  2. Eric Oct 17, 2014

    How do i stop anyone from hacking into my phone or my email the reason why is because it happened just recently with my phone

Post comment — WE NEED YOUR OPINION!

Comment:
Name:
Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.