Home Malware Programs Ransomware POLIISI Osasto Tietoverkkorikollisuuden Ransomware Virus

POLIISI Osasto Tietoverkkorikollisuuden Ransomware Virus

Posted: October 23, 2012

Threat Metric

Ranking: 890
Threat Level: 2/10
Infected PCs: 228,975
First Seen: October 23, 2012
Last Seen: October 17, 2023
OS(es) Affected: Windows

POLIISI Osasto Tietoverkkorikollisuuden Ransomware Virus Screenshot 1While old variants of ransomware Trojans are still credible threats, POLIISI Osasto Tietoverkkorikollisuuden Virus is part of a new revamp to Reveton-based ransomware Trojans and uses sophisticated-looking warning messages that include legal references, webcam captures, IP address displays and other information that's designed to make it look as though your PC is in serious legal trouble. The POLIISI Osasto Tietoverkkorikollisuuden Virus, which is targeted at Finnish PC users, displays a warning that claims that you must pay a cash fee in penance for Internet-based crimes and that your computer will be locked until this occurs. Contrary to its claims, the POLIISI Osasto Tietoverkkorikollisuuden Virus doesn't enjoy the endorsement of Finland's government and should be deleted with anti-malware software, and SpywareRemove.com malware researchers especially warn of the futility of spending money on POLIISI Osasto Tietoverkkorikollisuuden Virus's illegal ransom demand.

POLIISI Osasto Tietoverkkorikollisuuden Virus and the Computer Freeze that's Frostier than a Finnish Winter

The POLIISI Osasto Tietoverkkorikollisuuden Virus is somewhat unique in that the POLIISI Osasto Tietoverkkorikollisuuden Virus targets the country of Finland (rather than a more popular target, such as Germany, France or the UK) in its attacks, but in most other respects, its hoax is in line with that of other Reveton-based ransomware Trojans. When your computer restarts, the POLIISI Osasto Tietoverkkorikollisuuden Virus displays an HTML warning that's designed to make Finnish-based PC users think that Finland's cybercrime police department has targeted their computers due to illegal actions such as copyrighted media downloads or erotica-related mishaps.

The POLIISI Osasto Tietoverkkorikollisuuden Virus also uses a radically revamped form of pop-up alert for this purpose, which includes numerous details like your IP address, webcam footage, Finland's flag colors and demonstrative icons, all used to make the pop-up look legitimate. A variant of this pop-up has also been seen attacking France via the France Ministère de l'Intérieur Virus. Accordingly, SpywareRemove.com malware analysts consider other countries in Europe to be at great risk of infection by variants of POLIISI Osasto Tietoverkkorikollisuuden Virus that are localized for nationalities besides Finland.

Why the Real Crime is What the POLIISI Osasto Tietoverkkorikollisuuden Virus Does to Your PC

The POLIISI Osasto Tietoverkkorikollisuuden Virus, like all types of ransomware Trojans, only wants you to spend money (in its case, by Ukash or Paysafecard) without asking too many questions about the legality of its ransom request. Even though the POLIISI Osasto Tietoverkkorikollisuuden Virus threatens you with legal action if you don't comply with its directives, SpywareRemove.com malware experts recommend sparing your wallet and ignoring POLIISI Osasto Tietoverkkorikollisuuden Virus's empty bluffs.

System changes by POLIISI Osasto Tietoverkkorikollisuuden Virus can result in lessened browser security or disabled programs, such as Windows Task Manager. SpywareRemove.com malware research team encourages the usage of both Safe Mode and USB drives as necessary to launch Windows without POLIISI Osasto Tietoverkkorikollisuuden Virus and its pop-up appearing. A disabled POLIISI Osasto Tietoverkkorikollisuuden Virus can be removed safely, along with its system changes, by competent anti-malware products.

Infection routes for POLIISI Osasto Tietoverkkorikollisuuden Virus have been known to use several methods, although SpywareRemove.com malware experts have found that drive-by-download kits like Blacole and social engineering-disguised spam links are two of the most common sources of Reveton-associated ransomware Trojan attacks.

Some of the many examples of other ransomware Trojans similar to the POLIISI Osasto Tietoverkkorikollisuuden Virus include Den Svenska Polisen IT-Sakerhet Ransomware, Polisen Enhetnen för Databrott Ransomware, Guardia di Finanza Ransomware, Police Nationale FR Ransomware and members of the Lockscreen family (a group that's similar to – but distinct from - Reveton).

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



Tietokoneen on lukittu! Tietokoneesi toiminta on keskeytetty luvattoman aktiivisuuden vuoksi. Edellä on mainittu tekemäsi mandolliset rikkomukset: Artikla 274- Tekijänoikeus Sakko tai vankeusrangaistus enintään 4 vuotta (Tekijänoikeuden suojaaman tiedos File name: Tietokoneen on lukittu! Tietokoneesi toiminta on keskeytetty luvattoman aktiivisuuden vuoksi. Edellä on mainittu tekemäsi mandolliset rikkomukset: Artikla 274- Tekijänoikeus Sakko tai vankeusrangaistus enintään 4 vuotta (Tekijänoikeuden suojaaman tiedos
Mime Type: unknown/ Edellä on mainittu tekemäsi mandolliset rikkomukset: Artikla 274- Tekijänoikeus Sakko tai vankeusrangaistus enintään 4 vuotta (Tekijänoikeuden suojaaman tiedos
Group: Malware file

Additional Information

The following URL's were detected:
ugroocuw.net
Loading...