Live Chat & Phone:(780) 492-9400 7:30am – 7:30pm Mon – Fri
A new trojan, "W32/Reveton" has been found on the campus network over the past few days. If infected, this trojan completely locks the user out of their account and the desktop replaces itself with a screen that appears to be from the Royal Canadian Mounted Police (RCMP). The text on the screen may include:
Royal Canadian Mounted Police: International Cyber Security Protection Alliance. Attention! Your PC is blocked due to one of the reasons specified below.
You have been violating "Copyright and Related Rights Law" (Video, Music Software) and illegally using or distributing copyrighted content, thus infringing Article 128 of the Criminal Code of Canada.
You have been viewing or distributing prohibited Pornographic content (Child Porn/Zoophilia and etc). Thus violating article 202 of the Criminal Code of Canada.
Illegal access to computer data has been initiated from your PC, ...
Illegal access has been initiated from your PC without your knowledge or consent, your PC maybe infected by malware thus you are violating the law On Neglectful Use of Personal Computer.
Spam distribution or other unlawful advertising has been effected from your PC as a profit-seeking activity or without your knowledge, your PC may be infected by malware. The virus will also display your computer's IP address and the name of your machine. If a computer is in this state, applications cannot be opened nor will Task Manager be usable. The only way to get out of it is either by rebooting or pressing "Ctrl+Alt+Delete" and logging in with a different account.
To help protect against this trojan, please consider the following:
Please be aware of this particular behaviour; if you see anyone having this difficulty, or a campus computer with resemblance of the above content, please contact the AICT Help Desk. A representative will be able to assist you, or take responsive action to clean the affected machine.
This particular Trojan affects Windows-based computers. Computers running OS X, or Linux based operating systems are unaffected.