CIBS Pol Virus (Ransomware)
The CIBS Pol Virus is a police ransomware Trojan that belongs to the Urusay family of malware. This police ransomware Trojan is classified as a Winlocker because it blocks access to the victim's computer by displaying a full-screen message that claims to be an alert from the police. CIBS Pol Virus is a well known scam that is in no way connected to the police force. Instead, the CIBS Pol Virus is used by criminals to scam inexperienced computer users so that they will hand over their money out of fear of prosecution, jail time and severe fines. If your access to your computer is blocked by the CIBS Pol Virus, ESG security researchers strongly advise against following the steps contained in the CIBS Pol Virus message. Instead, ESG security researchers advise computer users to use alternate boot methods to evade the CIBS Pol Virus Winlocker component and then use a reliable anti-malware program to remove the CIBS Pol Virus and all malicious files and system settings associated with this threat.
Why the CIBS Pol Virus' Uses a Winlocker Component
While a threatening message would not be enough to convince most computer users that they should pay the CIBS Pol Virus' hefty ransom, this malware's Winlocker component is what makes the CIBS Pol Virus particularly vicious. Once the victim's computer has become infected, the CIBS Pol Virus makes changes to the infected computer's settings that prevent the victim from accessing files or the infected computer's Desktop. The CIBS Pol Virus also uses its Winlocker component to prevent the victim from opening the Windows Task Manager, the Windows Start Menu and a large number of other system utilities that would normally be useful to remove these kinds of malware infections. Versions of the CIBS Pol Virus have also been observed to block Safe Mode, System Restore and other critical Windows components.
Like most police ransomware Trojans, the CIBS Pol Virus will demand the payment of an expensive fine by threatening police action against the victim. ESG security analysts advise computer users to disregard these threats. Instead, start up your computer from an external source or using the command prompt in order to bypass the CIBS Pol Virus Winlocker component. As soon as you are able to access to your security software, a reliable anti-malware program should be used to remove this threat from your machine.