Whitesmoke virus has been annoying PC users all around the world. In reality, it is closely related to Whitesmoke translator, which is presented as a translation software that “enables you to take any text from any text-based application, and automatically translate it into a destination language". However, next to its capability to return translations, it has also been reported to install Trojan virus on victim's computer and cause annoying redirections to unwanted websites. That's not the only unwanted activity of this seemingly innocuous software - after installing Whitesmoke translator, you may also find Whitesmoke toolbar installed on your PC without any permission asked. As you can see, this program may initiate unwanted activity on your computer and we do not recommend leaving it on your computer.
HOW CAN I GET INFECTED WITH WHITESMOKE VIRUS?
There are many legitimate websites that promote Whitesmoke translator. However, most of them don't realize that they also promote Whitesmoke virus together with this freeware. Once inside and active, it starts showing various icons that are named as “Improve Your PC” or similarly. After being clicked, they redirect users to dubious websites having been found to promote other unwanted applications. Besides, Whitesmoke virus replaces user's default start page to whitesmokestart.com on the IE and start changing search results and causing various pop up advertisements. That's why many security experts have started to list this software as 'Potentially Unwanted' one.
HOW CAN I REMOVE WHITESMOKE VIRUS?
In order to uninstall Whitesmoke toolbar, you can use these manual steps:
For Intenet Explorer go Tools → Internet Options →
Programs → Extensions.
For Mozilla Firefox go to Firefox → Add-ons menu.
However, we also recommend running a full system scan with reputable anti-malware programs to remove Whitesmoke virus from your computer or call a reputable experienced repair service.
FBI virus is a sneaky malware, which usually gets inside its target computer undetected. This scam presents about itself for the victim as 'The FBI Federal Bureau Investigation' alert and aggressively claims that computer is blocked because of the Copyright and Related Rights Law violation or other reason. However, if you find yourself blocked by a program, which tells that you have been illegally using or distributing copyrighted content, viewing or distributing pornographic content and spreading malware to other computers, you must ignore such alert first of all and remove FBI virus immediately! This program is distributed by scammers to swindle the money. Be aware that security experts expect this group of ransomware to grow and improve.
HOW CAN I GET INFECTED WITH FBI VIRUS?
This infection gets inside the system through security vulnerabilities found when user visits infected websites or downloads infected files. These security holes appear as soon as you forget to take care of your computer's security and don't use security software or don't update it. Of course, you must always think about safe browsing and avoid suspicious downloads that are actively offered on the Internet right now. The biggest issue, which is caused by this ransomware, is that similarly to its earlier versions, it completely blocks its victim's computer, 'locks' it and disables all the programs found there. In order to 'unlock' the system, FBI virus shows its warning and requires to pay the fine through MoneyPak. However, you must have already understood that you must never pay this $100 fine if you don't want to help for the scammers who are collecting these fines.
FBI VIRUS VERSIONS:
FBI Moneypak: This ransomware uses a huge alert filled with FBI and Moneypak logos, a webcam and a list of crimes victim is accused for. User is informed that he has been viewing/distributing pornographic or copyrighted content, spreading malware or doing other illegal activities. For that, he has to pay a $100 fine and enter a Moneypak code on the right side of the fake alert. This threat locks the system down completely.
FBI Green Dot Moneypak Virus: This ransomware locks the whole system down and displays a fake alert with FBI, Moneypak and McAfee logos. A miselading message, which belongs to this threat, claims that Federal Bureau of Investigation has blocked you for downloading illegal/copyrighted material and similar crimes. It requires to pay $200 fine and includes the steps explaining how you should do that.
FBI Virus Black Screen: This ransomware from the FBI group of viruses uses the same technique as its predecessors and seeks to make users pay a $200 fine. However, it also applies an audio warning, black screen and system's lock down. It will similarly claim that you have been caught for law violations and will accuse you for visiting pornographic websites, viewing files containing zoophilia, child pornography and similar.
FBI Online Agent: This ransomware also uses the name of the Federal Bureau of Investigation, but it has a newly-designed alert, which tends to accuse victim for committing various crimes and asks to pay $200 using MoneyPak. The new thing about FBI Online Agent is that it doesn't show your IP address or location but gives the name of the responsible agent, case number and other details that are clearly invented. Besides, scammers have included the promotion of the terrorism into the list of the crimes that are reported into this misleading warning.
FBI Cybercrime Division virus: That's the latest ransomware, which pretends to belong to the FBI's Cybercrime Division. This virus uses identical scheme while trying to steal users' money. However, this time it asks to pay $300 using Moneypak prepayment system. Be sure that its alert is not legitimte and can be safely ignored. The new version applies a newly designed alert, which is filled with more than ten different logos.
HOW CAN I REMOVE FBI VIRUS?
On windows 7 you can try to start the computer in safe mode, open system restore and restore to a previous date, then reboot and perform a full system scan with Malwarebytes or call us for repair.
Avoid scams that use the Microsoft name fraudulently
Cybercriminals often use the names of well-known companies, like ours, in their scams. They think it will convince you to give them money or your personal information. While they usually use email to trick you, they sometimes use the telephone, instead.
Common scams that use the Microsoft name
Avoid these dangerous hoaxes
We do not send unsolicited email messages or make unsolicited phone calls to request personal or financial information or fix your computer.
If you receive an unsolicited email message or phone call that purports to be from Microsoft and requests that you send personal information or click links, delete the message or hang up the phone.
Microsoft does not make unsolicited phone calls to help you fix your computer
In this scam cybercriminals call you and claim to be from Microsoft Tech Support. They offer to help solve your computer problems. Once the crooks have gained your trust, they attempt to steal from you and damage your computer with malicious software including viruses and spyware.
Although law enforcement can trace phone numbers, perpetrators often use pay phones, disposable cellular phones, or stolen cellular phone numbers. It's better to avoid being conned rather than try to repair the damage afterwards.
Treat all unsolicited phone calls with skepticism. Do not provide any personal information.
If you receive an unsolicited call from someone claiming to be from Microsoft Tech Support, hang up. We do not make these kinds of calls.
If you think you might be a victim of fraud, you can report it. For more information, see: What to do if you think you have been a victim of a scam.
You have not won the "Microsoft Lottery"
Microsoft customers are often targets of a scam that uses email messages to falsely promise money. Victims receive messages claiming "You have won the Microsoft Lottery!" There is no Microsoft Lottery. Delete the message.
If you have lost money to this scam, report it. You can also send the police report to Microsoft and we will use it to help law enforcement catch the criminals who send out these e-mail messages.
To help protect yourself from these e-mail hoaxes, you can use the same general guidance that you use to protect yourself from phishing scams.
Microsoft does not request credit card information to validate your copy of Windows
We require that your copy of Windows is legitimate before you can obtain programs from the Microsoft Download Center or receive software updates from Microsoft Update. Our online process that performs this validation is called the Genuine Advantage Program. At no time during the validation process do we request your credit card information.
In fact, we do not collect information that can be used to identify you such as your name, email address, or other personal details.
To learn more, read the Genuine Microsoft software program privacy statement.
To learn more about the program in general, see Genuine Windows: frequently asked questions.
Microsoft does not send unsolicited communication about security updates
When we release information about a security software update or a security incident, we send email messages only to subscribers of our security communications program.
Unfortunately, cybercriminals have exploited this program by sending fake security communications that appear to be from Microsoft. Some messages lure recipients to websites to download spyware or other malicious software. Others include a file attachment that contains a virus. Delete the message. Do not open the attachment.
Legitimate security communications from Microsoft
· If your PC shows any of the screens below, it has been infected, stop using it immediately, do not click on anything and ask us for help. Below are examples of latest infections:
· ControlCnt is the same rogue as Control Center, the only difference is the folder name.
· Digital Protection is a new rogue antispyware program that is infecting PC's
Digital Protection uses false security warnings and system scans to frighten people into thinking they need to buy this software to clean their machines. This is a complete scam, people that fall for this nasty trick learn pretty quickly that they have been scammed, as Digital Protection will not remove spyware or malware from the PC or prevent future infections.
· Live Enterprise Suite is a rogue antispyware program, designed to rip people off.
· New Antivirus 2010 and Antivirus Suite are two new rogue antivirus programs infecting unsuspecting people across the web.
· Your Protection, Total XP Security and Antispyware XP are phony security programs, designed to rip people off.
Control Components or Control Center is a
phony security software that infects countless PC's. Control Components
is a PC parasite that tricks people into thinking it's a legitimate security
program and then proceeds to rip them off.
Control Center is also referred to as Control Components, because when it infects a computer it creates a folder called Control Components but the user interface seen below uses an old title, Control Center.
· This website is not associated in any way with any of the malicious software outlined on this site. The authors of this blog disapprove of all malicious and questionable business practices used by the publishers of rogue antispyware software. The objective of this site is to completely eliminate the promotion of rogue antispyware and other malware by educating consumers on how to identify and remove rogue antispyware form their computers. You should not confuse this website to be a promotion or advertisement of any malicious software.