Windows 8 and 8.1 Forums


'Ransomware' tricks victims into paying hefty fines

  1. #1


    USA
    Posts : 689
    Windows 8.1 Pro with Media Center

    'Ransomware' tricks victims into paying hefty fines


    I didn't see a security news section here like one over at seven so I'll post this here.

    Beware of this new scam...

    Computer users around the globe are being hit by a new kind of virus that freezes their computer and accuses them of committing heinous crimes, like distributing child porn. The threats sound real enough that victims are coughing up $200 to pay a "fine," and virus writer gangs are netting millions, security firms say.

    The message that flashes across infected computer screens sounds downright scary:

    "You have been viewing or distributing child porn ... violating article 202 of the Criminal Code of the United States of America," says one version, allegedly sent by the FBI. A virus victim supplied the message to NBC news.

    Click image for larger version
    Victims shouldn't pay the fine, Harrison said, but they should know that various software tools — including free tools available at Symantec — can rid their machines of the virus.
    Source: 'Ransomware' tricks victims into paying hefty fines - Red Tape

      My System SpecsSystem Spec

  2. #2


    The part of 72 hours is very direct ... lol ...

      My System SpecsSystem Spec

  3. #3


    Toronto, Canada. Born in the U.K.
    Posts : 691
    Win 10 Pro + Win 7 Ult SP1 (x64)


    The best way to stop these in their tracks is NOT to click anything with your mouse or keyboard, not even the 'X' if there is one, but to do a hard power-off. I.E. use the power switch.

    OK you'll lose whatever you were working on and any unsaved projects, but better that than having your vital personal data locked down or even stolen.

    Then reboot into Safe Mode and initiate System Restore to before this all started.

    Then use something like Malwarebytes Free and/or Hijackthis or DDS. The latter to post logs on one the forums specialising in those sorts of logs.

    Many of these ransomware pests have excellent removal guides online, particularly at BleepingComputer forums, just do an online search for "uninstall xxxxxx (the name of it)" - minus the "" of course.

    Most people end up in a disaster because they panic and try to click their way out of trouble. That is a definite no-no.

    By the way, there is nothing new about these things. They've been around for quite some time now.
      My System SpecsSystem Spec

  4. #4


    Orbiting the Moon
    Posts : 2,975
    Windows 10 x64


    Quote Originally Posted by vrosa View Post
    The part of 72 hours is very direct ... lol ...

    The worst part is that it will not be gone after that period even if you paid.
    Click image for larger version

    Quote Originally Posted by Ex_Brit View Post
    The best way to stop these in their tracks is NOT to click anything with your mouse or keyboard, not even the 'X' if there is one, but to do a hard power-off. I.E. use the power switch.

    OK you'll lose whatever you were working on and any unsaved projects, but better that than having your vital personal data locked down or even stolen.

    Then reboot into Safe Mode and initiate System Restore to before this all started.
    Try to "end task" all of your browser(s) instances in Task Manager. If you get it done, you can still save your work before restoring, or maybe restore is not needed, wipe the cookies and temp files with CCleaner...

    If it's really severe, instead of Malware Bytes and other cleaners, I prefer to format the disk directly and restore by using a weekly-made clean image of the OS.

    Luckily I never got any ransom-ware because the PC is used thoroughly on decent sites. But when I get one, I see what has to be done.
      My System SpecsSystem Spec

  5. #5


    Toronto, Canada. Born in the U.K.
    Posts : 691
    Win 10 Pro + Win 7 Ult SP1 (x64)


    Quote Originally Posted by Hopachi View Post
    Quote Originally Posted by vrosa View Post
    The part of 72 hours is very direct ... lol ...

    The worst part is that it will not be gone after that period even if you paid.
    Click image for larger version

    Quote Originally Posted by Ex_Brit View Post
    The best way to stop these in their tracks is NOT to click anything with your mouse or keyboard, not even the 'X' if there is one, but to do a hard power-off. I.E. use the power switch.

    OK you'll lose whatever you were working on and any unsaved projects, but better that than having your vital personal data locked down or even stolen.

    Then reboot into Safe Mode and initiate System Restore to before this all started.
    Try to "end task" all of your browser(s) instances in Task Manager. If you get it done, you can still save your work before restoring, or maybe restore is not needed, wipe the cookies and temp files with CCleaner...

    If it's really severe, instead of Malware Bytes and other cleaners, I prefer to format the disk directly and restore by using a weekly-made clean image of the OS.

    Luckily I never got any ransom-ware because the PC is used thoroughly on decent sites. But when I get one, I see what has to be done.

    Good idea.
      My System SpecsSystem Spec

  6. #6


    USA
    Posts : 689
    Windows 8.1 Pro with Media Center


    I'm of the common sense mold - be aware of your surroundings, just like you should if you were in the streets, and definitely don't download from strange or unknown sites. If being re-directed, make sure you pay attention of where you are, and if it looks strange, get out of there.

    By the way, though being defrauded has been around since man, I'm sure I'm sure the level of sophistication has increased with the level of technology - thus the "this is nothing new" isn't necessarily true.

    In short, though being scammed or being defrauded is nothing new, the level of sophistication is constantly reaching new highs.
      My System SpecsSystem Spec

  7. #7


    Orbiting the Moon
    Posts : 2,975
    Windows 10 x64


    Quote Originally Posted by sygnus21 View Post
    I'm of the common sense mold - be aware of your surroundings, just like you should if you were in the streets, and definitely don't download from strange or unknown sites. If being re-directed, make sure you pay attention of where you are, and if it looks strange, get out of there.

    By the way, though being defrauded has been around since man, I'm sure I'm sure the level of sophistication has increased with the level of technology - thus the "this is nothing new" isn't necessarily true.

    In short, though being scammed or being defrauded is nothing new, the level of sophistication is constantly reaching new highs.
    Totally agree.
      My System SpecsSystem Spec

  8. #8


    Good info. Thanks for posting.

    I just worked an acquaintance's computer I recently met at a local veterans club. He admittedly says he uses porn. His right to, but he caught this nasty thing.

    Ctrl/Alt/Delete didn't work for Task Manager wouldn't open. WinKey/D no go. There was no way to get past this screen. I finally hard reset and got into safe mode to finally start taking it back to a good restore point. Then ran AV which showed nothing.

    A $(undisclosed) lesson. We play, we pay.
      My System SpecsSystem Spec

  9. #9


    Toronto, Canada. Born in the U.K.
    Posts : 691
    Win 10 Pro + Win 7 Ult SP1 (x64)


    If you temporarily disable System Restore, that bad restore point will be gone.
      My System SpecsSystem Spec

  10. #10


    Sydney, Nova Scotia, Canada
    Posts : 6,490
    Windows 10 Education 64 Bit


    I've had the misfortune of recovering from one of those infections on a friends PC. I did two or three scans with stand alone bootable media before I could actually get back in and recover her files. I did a factory restore after that and copied her files back. Nasty, nasty stuff to deal with. Her laptop wouldn't even boot in safe mode and task manager wouldn't run.
      My System SpecsSystem Spec

Page 1 of 6 123 ... LastLast
'Ransomware' tricks victims into paying hefty fines
Related Threads
Hey everyone, I have been having trouble with my network. I recently, (2 days ago), upgraded my cable high speed internet service from 2mbps down and .2 mbps up to 15 mbps down and 2 mbps up. However, even during non peak hours, pretty much all the time, the best download speed I can get is...
Hi there I'm not sure if WMC supplies any meaningful function these days - especially if you have to pay for it. It won't play normal commercial DVD's, and for things like TV you don't need tuners etc any more --broadband these days is fast enough. recently I was in LA and via a proxy was...
Paying for Metro Apps in Software and Apps
Does anyone know how you can set up an account for paying for Metro Apps when you live in Australia? I tried setting up via paypal but only seems applicable if you live in the US.
Pretty much all I use a computer for is gaming and desktop publishing in creative suite. I tend to have tens of thousands of files that I have to search and store as well. So when I want to buy a new game like Battlefield 4 or a new software package like CS 7 I will buy it through the metro...
Eight Forums Android App Eight Forums IOS App Follow us on Facebook