Warning: Scareware Virus (Ukash Ransomware)

page: 1
3

log in

join

posted on Dec, 18 2012 @ 07:58 PM
link   
Im not normally someone who can be scared easily...

But i admit this scared the crap out of me...

While watching a minecraft video, i was suddenly "locked" out of my cpu with a warning which apparently came from the Canadian Gov. telling me i had to pay a fine of 100$ to unlock my cpu...







The Canadian Anti Fraud Centre has been receiving reports from Canadians who say their computers are being frozen or they have been “locked out” of their computers after receiving pop-up messages warning them their computer has been associated with child pornography. These warning messages, which claim to be from the RCMP or CSIS, tells the recipient to pay $100 dollars via Ukash so their computer can be “unlocked”.

These types of messages, commonly known as scareware, are designed to create such shock and anxiety that victims respond by sending money quickly.

If you receive one of these messages, please be aware that it is a scam – these messages are not being issued by the RCMP. Last November, Ukash posted an alert on their website about a similar scam targeting residents in the United Kingdom. If you’ve been “locked out” of your computer, it’s a indicator that your system may have been infected with malware and you will need to take steps to address the problem.


Fortunatly i know a virus when i see one...

A quick system restore to a previous day... and a virus scan solved the problem...

And to my american friends, and my friends in the UK.... This virus is all over the UK and america as well from what im reading about it...

Beware people...

There are so many scams out there... don't fall for this one...

malwaretips.com...




posted on Dec, 18 2012 @ 08:03 PM
link   
This is an increasingly common virus variant. A "one up" on the old "Your system is infected - download BLAHBLAH.exe now to remove infection!" - at which point many people then paid money to infect their own systems with even nastier malware.

No law enforcement agency is going to freeze your computer and ask for money. Period. If they want your system they'll do it the old fashioned way. SWAT teams, tear gas, and door rams.

On an unrelated note, trying to convince the SWAT team, while you choke on tear gas, that THEY are just a computer virus? Not a great plan - but the best one I could come up with on the fly.


~Heff



posted on Dec, 18 2012 @ 08:04 PM
link   

Originally posted by Hefficide

This is an increasingly common virus variant. A "one up" on the old "Your system is infected - download BLAHBLAH.exe now to remove infection!" - at which point many people then paid money to infect their own systems with even nastier malware.

No law enforcement agency is going to freeze your computer and ask for money. Period. If they want your system they'll do it the old fashioned way. SWAT teams, tear gas, and door rams.

On an unrelated note, trying to convince the SWAT team, while you choke on tear gas, that THEY are just a computer virus? Not a great plan - but the best one I could come up with on the fly.


~Heff



This is a different kind of virus though brother... Virus's don't scare me... but you gotta see what this virus accuses you of....

Government of Canada
Gouvernement du Canada
Canadian Security Intelligence Service
Service canadien du renseignement de sécurité
www.csis.gc.ca
Attention!!!
This operating system is locked due to the violation of the laws of the Canada!
Following violations were detected: Your IP address is [removed]. This IP address was used to visit websites containing pornography, child pornography, zoophilia and child abuse. Your computer also contains video files with pornographic content, elements of violence and child pornography! Spam-messages with terrorist motives were also sent from your computer.
This computer lock is aimed to stop your illegal activity.
To unlock the computer you are obliged to pay a fine of $ 100.
You must pay the forfeit through Ukash:
To do this, you should enter the 19 digits code in the payment form and press OK (if you have several codes, enter them one after the other and press OK).
If an error occurs, send the codes to address deposit@canada.gov

Made my heart skip a frickin beat...




posted on Dec, 18 2012 @ 08:07 PM
link   
reply to post by Akragon
 


Just a bad piece of software.

Nothing a scan in safe mode won't remove or Malwarebytes scan.

I've seen this in numerous differnet forms in the last 6 months.



posted on Dec, 18 2012 @ 08:09 PM
link   
Child pornography and zoophilia... Geez. I HATE scareware viruses very very much. Nothing but pains, big big pains. Whoever designs viruses has to be messed up in the head or some kind of maniacs. I know that the scareware people make tons of money off of those stupid enough to believe it, but the idea of viruses is just sick. Getting kicks out of destroying someone else's computer.



posted on Dec, 18 2012 @ 08:09 PM
link   
reply to post by Akragon
 


There are variants in the US that include Homeland Security, NSA, and FBI screens as well. Same concept. You've been busted doing blah blah blah, your IP has been tracked, and if you use Paypal to pay x dollars in fines, this will all go away. Or a variant of that.

If I am not mistaken there is also a common UK variant using the same ransomware technique.

You did the right thing by going to an older disc image and scanning. Safe mode would also have worked - for those who aren't savvy enough to get to an older disc image.

Just always remember, law enforcement will not ( at least not in any western nation ) ask you to pay a fine online. A real computer crime would result in physical arrest and due process ( court ) of some kind.

~Heff



posted on Dec, 18 2012 @ 08:16 PM
link   
Like i said i know i virus when i see one... but if this warning showed up on my mothers screen, she would LITTERALLY have a heart attack!!



At least for people like myself, i know i scam when i see it... but this is borderline dangerous for older people who don't know their way around a computer!

My heart jumped out of my chest when this popped up... i could only imagine if i was 30 years older

NOT FUNNY...



posted on Dec, 18 2012 @ 08:54 PM
link   
reply to post by Akragon
 


This is just the Canadian version of the FBI ransomware that has been going around for a while. It is very easy to fix, and there are several ways to fix this in fact I fixed my friends computer the other day.



posted on Dec, 18 2012 @ 08:57 PM
link   
reply to post by Akragon
 


how did you do a system restore if you were locked out??



posted on Dec, 18 2012 @ 08:58 PM
link   
It relies on the basis that someone, somewhere, at some time has inadvertently (or otherwise) looked at something that they know they shouldn't have, OR that was sold as something but was obviously something else.

Or they have a fetish for pom poms and pony tails, which can be skewed in a court...

So . HEY YOU PERVERT. Give me money or I spill the beans.

People who stop to think "Oh crap, what if..." would be a dime a dozen, and it only takes a handful of dimwitted mouth breathers with a penchant for lurid fetishes to pay up and this scheme pays for itself.

They could have a fake Anon. warning with a fee to get legion off your back.. lol that would be funnier.



posted on Dec, 18 2012 @ 08:59 PM
link   
reply to post by DontTreadOnMe
 


Turned off the internet





posted on Dec, 18 2012 @ 09:08 PM
link   
reply to post by Akragon
 


You weren't locked out of your computer then.

Sounds like a BHO to me. I've never had one of these FBI hoaxes so I can't say going from the various reports. But if it is a browser popup.. then your browser has been hijacked.

Used to be a virus that would alter your desktop image in windows 98 also. "Youre PC is still infected." blah blah, and try to get you to install some dodgy malware. Before PayPal so, now they've worked out it's easier to get the victim to pay up front than pay later with software.

As I say I dunno.

But if something were to lock you out of your system, you'd have no option but to power it off and attempt recovery that way.

I've just completely removed avast also, so I'm feeling a little nude. But that company is dropping the ball long after win8 said it was ok to pick them for your team.



posted on Dec, 18 2012 @ 09:11 PM
link   
i dont get things like this because I am computer smart.. my friend actually makes these types of ads and its on the basis that everyone on the internet does things that are illegal and they are stupid enough to be scared enough to pay money and install this software that "fixes" their problems but really you just install spyware that they make even more money off of you with


My friend makes it for google so that google can look at what he makes and keep you safe from it.. you should be using google chrome to help you avoid things like this. So technically he is a good guy since his stuff never gets used to rip people off.

If you ever actually get in trouble for doing anything illegal online you will hear 3 loud knocks on ur door before they give you the option to open it or break it down.. They will not inform you over the internet



posted on Dec, 18 2012 @ 09:23 PM
link   
reply to post by winofiend
 


For the past two to three months, I've been using Microsofts free "Security Essentials". Yes, yes, yes, I know. Microsoft bad, evil, bad, bad, bad.

But here's the thing. I haven't had a single infection since installing it. I still run other scanners periodically just to be safe - and was used to having to run several just to catch variants and uncommon strains. Since installing Security Essentials. Not a single 'wild" infection at all. Not one. Not even any hassle notices letting me know that something fishy is trying to run itself.

I was hesitant when another mod, ToTheTenthPower recommended the Microsoft product to me. I argued and resisted. Now? I'm eating my words and having to give him credit. It's the best I've seen so far. Also, it takes up MUCH less resident memory on my system than Avast Mcaffee, Norton, etc. did.

~Heff



posted on Dec, 18 2012 @ 09:30 PM
link   
reply to post by Hefficide
 


actually microsoft security essentials isnt half bad.. surprising i know.. I run that, comodo firewall, avira antivirus, as well as google chrome for web browser, and I also dont just download or go to any website on the internet just for the fun of it which is a good way to grab a virus.



posted on Dec, 18 2012 @ 09:39 PM
link   
reply to post by Akragon
 


Sometimes the obvious.....thanks....



posted on Dec, 19 2012 @ 08:16 AM
link   

Originally posted by DontTreadOnMe
reply to post by Akragon
 


how did you do a system restore if you were locked out??


Turn the computer on and hit F8 repeatedly, startup in safe mode with command prompt. When the comand prompt window opens quickly type in "explorer" to open up windows explorer and proceed to the restore wizard and select a restore point before the virus was downloaded.



posted on Dec, 19 2012 @ 01:59 PM
link   
reply to post by Hefficide
 


That's actually quite funny because I've somehow managed to get a virus using MSE before and then switched to Avast! I still get viruses every once in a while, but that's why I have Malwarebytes to clean up any of my messes. I'm telling you, that program is a god-send and anyone that doesn't have it needs to get it right now.



posted on Jan, 27 2013 @ 07:01 PM
link   
I'm currently trying to deal with this crap myself. (Malwarebytes running as I type.)

Are they still making HijackThis? Is there a 64bit version of it? I was trying to find it the other day and couldn't. It used to be my favorite way of dealing with hijacks . . . but of course being very powerful it has to be handled carefully.
edit on 27-1-2013 by ipsedixit because: (no reason given)



posted on Jan, 28 2013 @ 04:10 AM
link   
If you guys would go to Linux for watching your porn you would not have this problem..

I watch porn on my Linux computer all the time and have never had a problem with a virus.

you can duel boot your computer so there is no reason not to have Linux for going to shady sites .

you can also put linux on a flash drive that you can run on a windows computer.
www.pcworld.com...





new topics
top topics
 
3

log in

join