Popular Virus Removal Tool

Monday, March 4, 2013

Department of Justice Ukash Virus: How to Unlock Computer from MoneyPak Scam?

DOJ Virus Detection



Here’s one of the victim of the lock-down virus described:

‘Yesterday, as I was responding to an email, my computer frozen and it shows a message from : Depatment of Justice from United States".
 The  message shows my IP-adress and provider. According to the message I had performed illegal activities such " child pornography" and or "sharingsoftware". The message refer me to "Green Dot MoneyPack to pay a fee of $300.00" .’


Here’s the screenshot:















Department of Justice MoneyPak Virus is not a stranger any more, most PC Users are familiar with the old trick that it accuses you with specific terms provided, threatening the victim to hand in the money within stipulated time in the way it redirects you to, or it would immediately be formatted and all pictures, documents, etc. However, some people still get fooled by the fake warning, because they told Spyhunter that they did something not supposed to do or simply get scared. Just keep sober that no authentic authority department will collect ransom by suddenly blocking the screen during operation session.

From the above description, we are able to learn that responding to email will make users run across the lock down virus. As the matter of fact, the email the describer was responding might have been poisoned by certain virus such as Trojan. There are of course other ways for the money pack virus to get in, otherwise there would not have been so many people encounter with the horrible thing nowadays:
  1. Visiting poisoned advertising sites or porn sites;
  2. Watching numerous Youtube videos;
  3. Downloading and installing some free programs and shared files/ thingies;
  4. Clicking on questionable pop ups;
  5. Forgetting to update anti-virus program or other security utilities.

How Bad Is Department of Justice Ukash Virus?



Though most people know about DOJ virus, they don’t know that well. Department of Justice money pac virus is able to make PC Users suffered to varying degrees. Here are two examples:

a.    ‘I was doing some work on my computer, and the DOJ virus popped on my computer. It looks different from the virus I've seen with a black background. This one has a white background. Saying I need to pay $200.
I've tried safe mode, command prompt, system restore...
I think I've tried everything to get it off my computer, but NOTHING seems to be working.’


b.    ‘I try several times to run the Essential Virus Protection but the message mentioned above blocked my computer.
Today, I was able to run a full scan, however it shows the status as "protected".  I try again to run a quick scan and it shows "a trojan infection" wich was cleared.  However, my computer is not functioned as it used to; for instance, when it doesn't allow me to insert an equation in a PowerPoint presentation
As a clivk on Equation it displays the messagea: PowerPoint can't create the storage required for an inserted object or linked object.’


Why the same virus has different interface? And why person a seems to get in a severer situation than person b? From person b report, we learn that Department of Justice ukash virus is supported by Trojan. It is the Trojan that is a key to all differences.

A Trojan is able to chisel a backdoor. Commands will be sent from a remote server or directly from the maker behind DOJ FBI virus. That’s why some are able to enter into safe mode and some don’t. Some even don’t get Windows Advanced options but other unfamiliar ones. Among those vicious commands, there is one that enable DOJ FBI virus to update itself. It’s believed that victims of Department of Justice virus take actions once they get their screen frozen simply because they need their computers for search, work and entertainment. There are the ways people will usually do to deal with the FBI variant.

Troubleshooting Efforts:

  • Unhook cable immediately after warning screen appeared and the fraudulent page persists;
  • Search for specific virus files and registry entries mentioned in some online blog articles, none found;
  • Repair the computer but not able to complete;

If you find yourself unable to find the offered files and folders on some blog articles, you have to be alert. All online blog articles are written based on virus sample, while DOJ FBI virus is able to evolve fast thanks for the commands.

There’s one more thing that victims of Department of Justice ukash virus should be attentive to is that the lock down virus manages to post residual damages even after you’ve enabled the desktop. You may get improperly function programs like what is described in person b report, error message about privilege, redirect problems happening on browsers, etc.. If you awaiting for efficient way to get out of the trouble, you are all wet, as the longer you keep Department of Justice money pak virus, the more trouble you’ll get both when you are trying to nuke it and when you’ve removed the lock down virus. So hurry up when Department of Justice money pak virus is detected by following the steps below.


How to Remove Department of Justice Ukash Easily?



Plan A: Remove Department of Justice Ukash Manually

SITUATION1: able to enter into safe mode with networking

Step1:Reboot your computer and log into Safe Mode with Networking.
As the computer is booting but before Windows launches, tap the "F8 key" continuously which should bring up the "Windows Advanced Options Menu" as shown below. Use your arrow keys to highlight "Safe Mode with Networking" option and press Enter key.

 

Step2: Launch msconfig. and disable startup items rundll32 

 Click "start" —> put msconfig. in "search box" —> press Enter —> disable rundll32

 

   

Step3: Reboot your system one more time and enter into Safe Mode with Networking.




Step4: Run regedit. Search for Winlogon.

Click "start" —> put regedit in "search box" —> press Enter —> press and hold Ctrl+F to search for Winlogon



 
Step5:There will be a key labeled Shell in the right pane. It should reference Explorer.exe or be blank. If not, right click it and replace it with explorer.exe.

Note: if you cannot load explorer.exe, and cannot see Windows Task Manager or desktop, follow the steps below:

1. start explorer.exe

a) Press "Alt+Ctrl+Del".
b) Click "Task manager"
c) Click "New Task".

 

 d) Type "explorer.exe" and press "Ok"




Now explorer.exe will load and you can see your Desktop and all your files .

Step6: Save changes, reboot to safe mode with networking.
Step7: Run msconfig and disable all unnecessary startup entries.

a) Related files and folders

[random].exe in hard drive
%Temp%\[RANDOM]
%Documents and Settings%\All Users\Desktop\Cybercrime Investigation Department.lnk

b) Associated registry entries

HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command “(Default)” = ‘”%UserProfile%\Local Settings\Application Data\[random].exe” /START “%Program Files%\Mozilla Firefox\firefox.exe”‘
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\safemode\command “(Default)” = ‘”%UserProfile%\Local Settings\Application Data\[random].exe” /START “%Program Files%\Mozilla Firefox\firefox.exe” -safe-mode’
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command “(Default)” = ‘”%UserProfile%\Local Settings\Application Data\[random].exe” /START “%Program Files%\Internet Explorer\iexplore.exe”


Good for you: Wanna make the removal of Department of Justice Ukash easier? Dare to try something new? Spyhunter can not only remove Department of Justice Ukash completely for you but also protect your computer from additional malware like trojan, spyware and ransomware. Download and install Spyunter right away!



Plan B: Remove Department of Justice Ukash automatically (with SpyHunter)


Step A. Download removal tool SpyHunter

1) Click here or the icon below to download Free SpyHunter automatically.


2) Follow the instructions to install SpyHunter
  spyhunter run

spyhunter setup

spyhunter setup

Step B. Run SpyHunter to block Department of Justice Ukash

Run SpyHunter and click "Malware Scan" button to scan your computer, after detect this unwanted program, clean up relevant files and entries completely.

 spyhunter3 scan

Step C. Restart your computer to take effect.

Note

Are you thinking about making the Department of Justice Ukash removal 1 stone 2 birds happen? There is actually one antivirus program can help you. Download and install Spyhunter to remove Department of Justice Ukash and protect your computer in the futher!