Cyber Command of Georgia virus is a dangerous ransomware, which is used to steal the money from PC users. For that, it shows a huge warning message, which reports about invented law violations and then claims that victim must pay a fine of $300. A new thing about this threat is that it changes its name according to the US state it manages to attack. Just like its name suggests, Cyber Command of Georgia virus is used to affect those computers that can be found in Georgia. However, you can also discover that your PC was infected by Cyber Command of New York virus, Cyber Command of California, Cyber Command of Washington and similar viruses if you live in these states of USA. Please, ignore these ransomwares and remove them from your computer ASAP. Otherwise, they will keep your computer blocked and will disconnect it from the Internet connection.
HOW CAN MY COMPUTER GET INFECTED WITH Cyber Command of Georgia virus?
Cyber Command of Georgia virus is distributed by trojan horse, which is known for its ability to infiltrate computers without any sign. The most popular way, which is used by this virus to attack the system, is misleading emails that look like they were sent by FedEx, Amazon, ebay and similar company. Please, be very careful with such emails and always double check the sender! Besides, stay away from illegal websites and also avoid unlicensed software if you want to avoid Cyber Command of Georgia virus. Once trojan downloads malicious files that belong to this ransomware, virus blocks the system with such warning:
U.S.A. Cyber Crime Investigations
Cyber Command of Georgia
Your computer has been blocked up for safety reasons listed below.
You are accused of viewing/storage and/or dissemination of banned pornography (child pornography/zoophilia/rape etc). You have violated World Declaration on non-proliferation of child pornography. You are accused of committing the crime envisaged by Article 161 of United States of America criminal law.
Article 161 of United States Of America criminal law provides for the punishment of deprivation of liberty for terms from 5 to 11 years.
Also, you are suspected of violation of “Copyright and Related rights Law” (downloading of pirated music, video, warez) and of use use and/or dissemination of copyrighted content. Thus, you are suspected of violation of Article 148 of United States of America Criminal Law.
Article 148 of United States of America criminal law provides for the punishment of deprivation of liberty for terms from 3 to 7 years or 150 to 550 basic amounts fine.
It was from your computer, that unauthorized access had been stolen to information of State importance and to data closed for public Internet access.
The penalty set must be pain in course of 48 hours as of the breach.
On expiration of the term, 48 hours that follow will be used for automatic collection of data on yourself and your misconduct, and criminal case will be opened against you.
Amount of fine is 300$. You can settle the fine with MoneyPak or MoneyGram xpress Packet vouchers.
Just like we have already mentioned, you must ignore this warning and don't even think about paying a fine. For unlocking your computer, we recommend using these steps:
HOW TO REMOVE CYBER COMMAND OF GEORGIA VIRUS?
If you are infected with Cyber Command of Georgia virus, you shouldn't waste your time because this virus may try to steal your personal information, such as loggins, passwords and similar data. We recommend using these instructionsand eliminating virus from the system:
- Reboot your infected computer.
- Click Start -> Run and enter https://www.2-spyware.com/download/hunter.exe (if your are blocked by ransomware, press alt+tab and continue entering this address)
- A warning that belongs to ransomware may show up again. In this case, press Alt+Tab and “R” as much as needed.
- Install anti-malware and run a full system scan to remove malicious files from the system.
Manual Cyber Command of Georgia virus removal:
- Reboot you infected PC to 'Safe mode with command prompt' to disable thisI virus (this should be working with all versions of this threat)
- Run Regedit
- Search for WinLogon Entries and write down all the files that are not explorer.exe or blank. Replace them with explorer.exe.
- Search the registry for these files you have written down and delete the registry keys referencing the files.
- Reboot and run a full system scan with updated Reimage, Malwarebytes MalwarebytesCombo Cleaner, Plumbytes Anti-MalwareMalwarebytes Malwarebytes or other reputable anti-spyware to remove remaining files.
Flash drive method:
1. Take another machine and use it to download Reimage or other reputable anti-malware program.
2. Update the program and put into the USB drive or simple CD.
3. In the meanwhile, reboot your infected machine to Safe Mode with command prompt and stick USB drive in it.
4. Reboot computer infected with Cyber Command of Georgia virus once more and run a full system scan.
* Users infected with these ransomware threats are allowed to access other accounts on their Windows systems. If one of such accounts has administrator rights, you should be capable to launch anti-malware program.
* Try to deny the Flash to make your ransomware stop function as intended. In order to disable the Flash, go to Macromedia support and select 'Deny': http://www.macromedia.com/support/documentation/en/flashplayer/help/help09.html. After doing that, run a full system scan with anti-malware program.