Are you dealing with Comandancia General de Policia Virus issue? Is it locking the computer entirely and stating that you have already involved with laws issue? I did nothing but watch some videos on Youtube and it suddenly came up and lock my computer. Will a real government lock your computer for cyber crime issue? How do you know if it is real or fake since I don’t watch porn site? Should PC users do the payment that shows on its page to unlock computer and avoid being arrested? Where can you get online help to remove this stubborn virus completely?
Comandancia General de Policia Virus is a stubborn ransomware that lock your computer completely once it found a backdoor to get into the infected computer. It usually gets into the victim computer by several ways such as viewing malicious link or unsafe websites. Now this virus has been updated and it can even block your computer while visiting normal website like watch videos in Youtube. It belongs to Ransomware family and will demonstrate a bogus notification that you have been violated laws by viewing child-porn site or violating intellectual property rights such as illegal downloading of free music. It is made to fraud money by making computer users scared.
When the page shows up, people will be afraid of breaking laws and deceived by its statement since it has governmental icon and policeman on the page. It will kidnap your webcam to take a picture so that to make this alert more authentic and convince you to pay its creator. It asks you to pay a certain amount via Ukash so that you cannot call your card service to get your money back. This virus will lock up your computer totally so you cannot reach to main screen, use applications on the infected computer or surf the internet. It locks up as soon as you log in use account so that you cannot use software to remove it completely. It will also change your computer settings so that it can easily bring in other virus into the infected computer such as Trojan or spyware. Your hardware may also be put in a risk because it will eat up all the memories and damage hardware component. Don’t be scared by this virus and pay them because they are not real government. The best way to handle with this virus is to remove it by manual way.
Victim said: My husband was on the Internet earlier and he stumbled into the lock down screen. He wasn’t even watching porn or doing anything illegal!!! It said he had to pay certain amount of money and then the computer would be unlocked in few hours. Well he paid it and now we found out this was a scam. His computer is still locked. What do we do and how can we get our money back ?? Help..
This is a tricky virus that can escape from all kinds of antivirus programs. It may get into your computer via the following ways:
Open spam email and click the strange links attached or download the attachment which contains the virus.
Visit malicious websites or click on unknown links.
Download or install some free applications and movies from hacked sources.
1. Access Safe Mode with Networking
Restart your computer, immediately, quickly and repeatedly hit F8 key before the Windows start-up screen shows. Select “Safe Mode with Networking”, and then press Enter key.
2. End the Virus Processes
Press Ctrl+Alt+Del keys together and end the virus processes in the Processes tab of Windows Task Manager.
Random.exe (The names of the virus processes may be different all the time)
3. Show Hidden Files
(1). Click on the Start button and then on Control Panel
(2). Click on the Appearance and Personalization link
(3). Click on the Folder Options link
(4). Click on the View tab in the Folder Options window
(5). Choose the Show hidden files, folders, and drives under the Hidden files and folders category
(6). Click OK at the bottom of the Folder Options window.
4. Delete Virus Files
(1). Delete the related registry entries to this virus through Registry Edit
Guides to open registry editor: Click “Start” menu, hit “Run”, then type “regedit”, click “OK”
While the Registry Editor is open, search and delete the following registry entries listed below:
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\[RANDOM CHARACTERS].exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Random
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run\Random.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings “CertificateRevocation” =Random
(2). Find out and remove the associated files of this virus.
%AllUsersProfile%\random.exe
%Temp%\random.exe
%AppData%\Roaming\Microsoft\Windows\Templates\random.exe
%AllUsersProfile%\Application Data\.dll HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Random “.exe”
5. Restart the Computer to Normal Mode after the Above Steps Are Done.
Being a newly spread ransomware most in Ecuador, Comandancia General de Policia Virus is quite pesky one as it looks exactly like the real police and claims that you are fined to pay a certain amount of money to unlock your computer within limited time or you will get into political troubles. However semblable it looks like the police, it is not the real one. Instead, it is designed by cyber criminals to make illegal profits by taking the name and appearance of the police department and greatly threatening computer users claiming that they have committed activities online betray the law. Victims may pay the fine it asks willing not to get into bigger troubles or out of fear. . In fact even you pay the fine you are likely to be caught into its another scam. Because it may unlock your computer for some days, and pops up again and asks for more. It will never be satisfied. It ranks at the top on your schedule to remove this malicious malware from your computer ASAP.
Note: If you have no idea of how to do that, please contact YooCare Online Tech Support for further help.
Published by & last updated on July 31, 2013 3:04 am
Leave a Reply
You must be logged in to post a comment.