TheÂ Troj/Reveton-RansomwareÂ family consists of computer infections that lock you out of computer unless you pay a ransom.Â It does this by displaying a lock screen when you login to Windows that pretends to be from a law enforcement agency in your country.Â For example, if you are in the United States of America the message may be from the FBI and if you are in the United Kingdom the message would pretend to be from the Metropolitan Police Service. In order to access your computer you must submit a MoneyPak voucher, or other payment coupon, to the malware developers and they will then unlock your computer so you can access your Windows desktop again.
The lock screens that will be displayed state that your computer was detected as having broken various laws regarding pornographic material, download copyrighted programs, or the distribution of copyrighted programs.Â They will then state that you need to pay a fine or the government will prosecute you and that you may have to pay a fine or will be jailed. In order to pay a fine you will typically need to purchase a MoneyPak voucher and submit the voucher identification number into the lock screen.Â It is important to remember that these messages are fake and you have not actually been locked out of your computer by the government.
When infected with a variant of theÂ Troj/Reveton-RansomwareÂ family, your computer wil perform the following behavior: