• Become a Fan!
  • Follow On Twitter
    • Subcribe to Our RSS Feed

    How to Remove The FBI Mac OS X?

    Posted In Virus removal guides - By Jerry Tim David On Sunday, October 27th, 2013 With 0 Comments

    The FBI Mac OS X is a malicious computer virus that is categorized as a dangerous ransomware program. After entering secretly in the system, the The FBI Mac OS X blocks your PC completely and you are only able to see a message that shows the authorities have blocked your PC because of the illegal activities like copyright violation, or child pornography took place on the PC. You will be asked to pay a fine amounting to $200 to unblock the system and avoid the legal action. Keep in mind that this is a scam and the hackers are just using the name of FBI to trap the innocent computer users and take their money away.    

    The Manual Removal of The FBI Mac OS X

    Once you are confirmed that your PC is under attack by this lethal ransomware program, you have to remove it quickly either by using the manual removal method or with the help of any automatic removal tool. The manual removal process of the The FBI Mac OS X is described as under:-

    Change the Mode of Operation from Normal to Safe Mode

    Before going through the actual manual removal process of the The FBI Mac OS X, you have to restart the system in the safe mode instead of the normal mode. You have to use the F8 key while the computer is restarting, and select the safe mode before pressing the Enter key.

    End the Malicious Processes

    Once your infected computer starts working in the safe mode, you have to open the windows task manager by holding the Ctrl+Alt+Delete keys together. In the windows task manager you can see a list of running processes under the Processes tab. You have to remove the following associated processes of the The FBI Mac OS X:-

    • %AppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe

    Remove the Associated Data

    After accessing the file explorer you have to open the system files folder and delete the following files:-

    • %Desktopdir%\FBI Cyber Department virus – Apple Mac OS X Ransomware.lnk
    • %Programs%\FBI Cyber Department virus – Apple Mac OS X Ransomware\FBI Cyber Department virus – Apple Mac OS X Ransomware.lnk

    Reverse the Modification in the Windows Registry

    The final step of this long process is removing the modifications in the windows registry. The registry editor can be accessed by executing the “RegEdit” command through Run option available in the Start menu. Once the registry editor is accessed, you have to remove the following malicious additions in the windows registry and close the registry editor:-

    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\FBI Cyber Department virus – Apple Mac OS X Ransomware\DisplayIcon %AppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe,0
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\FBI Cyber Department virus – Apple Mac OS X Ransomware
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\FBI Cyber Department virus – Apple Mac OS X Ransomware\UninstallString “%AppData%[RANDOM CHARACTERS][RANDOM CHARACTERS].exe” -u
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\[RANDOM CHARACTERS] %AppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\FBI Cyber Department virus – Apple Mac OS X Ransomware\ShortcutPath “%AppData%\[RANDOM CHARACTERS]\[RANDOM CHARACTERS].exe” -u
    • HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\FBI Cyber Department virus – Apple Mac OS X Ransomware\DisplayName FBI Cyber Department virus – Apple Mac OS X Ransomware

    In the end, run a complete system scan through an updated version of your antivirus program after restarting the system in the normal mode of operation.

    About Jerry Tim David - He is a technology evangelist and security analyst who writes articles on latest computer threats and step by step guide in removing them completely from your computer.

    Leave a comment

    XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

    Google+