Click on screenshot to zoom
Danger level 8
Type: Malware
Common infection symptoms:
  • Installs itself without permissions
  • Changes background
  • Connects to the internet without permission
  • Slow Computer

FBI Federal Bureau of Investigation Virus

There is one important thing that users have to realize about FBI Federal Bureau of Investigation Virus – it is a scam created to swindle them out of their money. It is a ransomware application that displays a fraudulent message on your screen, claiming that you have violated the federal law of the United States. The malicious program locks down your computer and unless you remove FBI Federal Bureau of Investigation Virus from your computer, you will not be able to access your desktop. Luckily, it is possible restore your desktop access on your own, so scroll down to the end of the description for the instructions on how to unlock your PC.

If you are wondering where FBI Federal Bureau of Investigation Virus comes from, the answer is very simple – it is part of the notorious Ukash Virus group. Perhaps you have heard of the most “famous” program from the family – FBI MoneyPak. These infections have been torturing users worldwide for some time now, and there is an infection localized for almost every wired country out there, although technically all these programs are more or less the same. There are Royal Canadian Mounted Police Virus, ICSPA Virus, New Zealand E-Crime Lab Virus and many others. Just like FBI Federal Bureau of Investigation Virus, all these infections block your desktop access because they expect you to pay a fine for something you have not done.

Naturally, the screen-sized message may look threatening especially as it is adorned with the FBI insignia, but so far the FBI does not have the jurisdiction to lock down your personal computers, so you should not believe a single word you see on your screen:

All activities of this computer has been recorded. All your files are encrypted. Don’t try to unlock your computer!
This PC is blocked due to at least one of the reasons specified below.
You have been subjected to violation of Copyright and Related Rights Law (Video, Music, Software) and illegally using or distributing copyrighted contents, thus infringing Article 1, Section 8, Clause 8, also known as the Copyright of the Criminal Code of the United States of America. […]
To unlock your computer and to avoid other legal consequences, you are obliged to pay a release fee of $300.

As you can see FBI Federal Bureau of Investigation Virus expects you to pay a significant amount of money, saying that it is the only way to unlock your computer. It also claims that unless you pay the fine, your information will forward to the court and a criminal case will be initiated against you. You have to stand your ground, not succumbing to the program’s threats. Follow the instructions below and unlock your desktop. Then you will be able to remove FBI Federal Bureau of Investigation Virus using a legitimate computer security application.

How to restore desktop access

Windows 8

  1. Press the Windows key and the Metro UI will show up.
  2. Click Internet Explorer tile and enter http://www.pcthreat.com/download-sph into the address bar. Hit Enter.
  3. Click Run on the download dialog box and install SpyHunter.
  4. Run a full system scan with the program.

Windows Vista & Windows 7

  1. Restart the PC and tap F8 repeatedly until Advanced Boot Options menu appears.
  2. Select Safe Mode with Networking and press Enter.
  3. Access http://www.pcthreat.com/download-sph and download SpyHunter.
  4. Install the program and run a full system scan.

Windows XP

  1. Follow the steps 1 and 2 above.
  2. Click Yes on the Confirmation dialog box.
  3. Download SpyHunter.
  4. Open Start menu and click Run.
  5. Enter “msconfig” into the Open box and click OK.
  6. Open Startup tab on System Configuration Utility.
  7. Click Disable all and press OK.
  8. Reboot the PC in Normal mode.
  9. Install SpyHunter and perform a full PC scan.

If you have any questions on how to remove FBI Federal Bureau of Investigation Virus from your computer, you can always leave a comment below.

Download Spyware Removal Tool to Remove* FBI Federal Bureau of Investigation Virus
  • Quick & tested solution for FBI Federal Bureau of Investigation Virus removal.
  • 100% Free Scan for Windows
disclaimer

How to manually remove FBI Federal Bureau of Investigation Virus

Files associated with FBI Federal Bureau of Investigation Virus infection:

UpdatePriv.exe
Piranha.exe
hwj3ba6j.dss
MusicCollector.exe
msavfit.exe
%APPDATA%\updates
svchost.exe
%LOCALAPPDATA%\lollipop
dqnbdq7.dss
scvhost.exe
%APPDATA%\Task Scheduler
%LOCALAPPDATA%\Temp
ssntvs.exe
iner.exe
aPr0hY9.exe
ex3b.dll
VaultSysUi.exe
dtkmujvo.exe
{097444e7-2d87-ba3c-2efe-9f54812d824a}.exe
systemcpl.exe
WinSyncMetastore.exe
wjthvwjb.dss
administration.exe
wlsidten.dll
DLL321.dll
wahneaqa.exe
videotwisterSA.exe
96dddda4.dll
%ALLUSERSPROFILE%
Other.res
oygqyunapnp.exe
audipbrd.exe
xctqakcqbeo.dll
%UserProfile%
b34btbztdb0vavaw.exe
Task Scheduler.exe
00qbipeq.exe
2084473.dll
C87C.exe
OmaSG21e.exe
mplayer2.exe
msshell.exe
ACEIEAddOn.dll
comeo.exe
DA0B.exe
Firewallservice.exe
cf6640a77ed4926a4c6be661ab93def9d13408753dd07e8d02836996a2f247b6.exe
%WINDIR%\system32
xmlfilter.exe
%WINDIR%\Temp
csrsss.exe
wgsdgsdgdsgsd.exe
obvwo.exe
puozlkmyj.dll
rvcbcyks.exe
%APPDATA%\system
ieudator.dll
msn.exe
%TEMP%
p1.exe
msdtmsrd.exe
ifgxpers.exe
rool0_pk.exe
UpgradeHelper.exe
najeoxtt.exe
87b2cb3916261d5c807bf44262755cb0.exe
wpbt0.dll
ctfmon.exe
crack.exe
%SystemDrive%\????????????
setex.exe
dyjdl.exe
NTServiceManager.exe
JfCqQ5JC.exe
securitywindrv.exe
Updating.exe
%ALLUSERSPROFILE%\Application Data
secproc_isv.exe
SyncHostps.exe
jsdhlexdqkllnbcxgai.bfg
WINDED6.exe
wlsidten.exe
skype.dat
n.
Q3d38543.exe
yaiiwockc.dll
魔法桌面第三方主题破解补丁V1.1.exe
zqmkrehUkpoKfsafsaZg.exe
questscan.dll
bzsbkotiu.exe
00b5d693.exe
TimeDateMUICallback.exe
msnmsgrr.exe
%CommonProgramFiles%
xaZYOVJW.exe
pmstcdjwz.exe
brenasa.exe
uenovfiu.exe
%AppData%
xlqbteeb.exe
bf8h8d02hf.exe
idiokbbrv.exe
gcrwcoak.exe
bvhylsviw.exe
Nbt.exe
ubvhynpxh.exe
m2PythonLoader.exe
install_0_msi.exe
acuvzomo.exe
taskhost.exe.exe
50E1.exe
sqlncli.exe
pYunY8m4VL3qLc.exe
3511172082012Build.exe

FBI Federal Bureau of Investigation Virus DLL's to remove:

DLL321.dll
ieudator.dll
wlsidten.dll
wpbt0.dll
2084473.dll
xctqakcqbeo.dll
96dddda4.dll
ACEIEAddOn.dll
yaiiwockc.dll
ex3b.dll
questscan.dll
puozlkmyj.dll

FBI Federal Bureau of Investigation Virus processes to kill:

acuvzomo.exe
xlqbteeb.exe
Q3d38543.exe
securitywindrv.exe
ubvhynpxh.exe
TimeDateMUICallback.exe
install_0_msi.exe
secproc_isv.exe
oygqyunapnp.exe
Updating.exe
DA0B.exe
MusicCollector.exe
taskhost.exe.exe
rvcbcyks.exe
dtkmujvo.exe
comeo.exe
00qbipeq.exe
iner.exe
bvhylsviw.exe
UpdatePriv.exe
brenasa.exe
Firewallservice.exe
WinSyncMetastore.exe
pmstcdjwz.exe
scvhost.exe
Task Scheduler.exe
ssntvs.exe
p1.exe
obvwo.exe
msdtmsrd.exe
bzsbkotiu.exe
xmlfilter.exe
OmaSG21e.exe
mplayer2.exe
cf6640a77ed4926a4c6be661ab93def9d13408753dd07e8d02836996a2f247b6.exe
SyncHostps.exe
gcrwcoak.exe
ctfmon.exe
crack.exe
sqlncli.exe
idiokbbrv.exe
50E1.exe
Nbt.exe
魔法桌面第三方主题破解补丁V1.1.exe
setex.exe
JfCqQ5JC.exe
m2PythonLoader.exe
xaZYOVJW.exe
wlsidten.exe
rool0_pk.exe
00b5d693.exe
msavfit.exe
msshell.exe
uenovfiu.exe
{097444e7-2d87-ba3c-2efe-9f54812d824a}.exe
administration.exe
pYunY8m4VL3qLc.exe
UpgradeHelper.exe
ifgxpers.exe
svchost.exe
3511172082012Build.exe
msnmsgrr.exe
VaultSysUi.exe
audipbrd.exe
WINDED6.exe
msn.exe
wahneaqa.exe
csrsss.exe
C87C.exe
najeoxtt.exe
NTServiceManager.exe
wgsdgsdgdsgsd.exe
bf8h8d02hf.exe
b34btbztdb0vavaw.exe
aPr0hY9.exe
Piranha.exe
videotwisterSA.exe
87b2cb3916261d5c807bf44262755cb0.exe
zqmkrehUkpoKfsafsaZg.exe
dyjdl.exe
systemcpl.exe
Disclaimer

Comments

  1. hitesh Jul 24, 2014

    MY CELLPHONE IS HACKED
    WHAT DO I DO NOW
    MY CELLPHONE IS NOKIA X

  2. Eric Oct 17, 2014

    How do i stop anyone from hacking into my phone or my email the reason why is because it happened just recently with my phone

Post comment — WE NEED YOUR OPINION!

Comment:
Name:
Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.