Multi-Device Licenses (Volume Discounts)

Change Region

English
Threat Database Ransomware CIBS Pol Virus (Ransomware)
1 Comment

CIBS Pol Virus (Ransomware)

By ESGI Advisor in Ransomware

CIBS Pol Virus (Ransomware) Image

The CIBS Pol Virus is a police ransomware Trojan that belongs to the Urusay family of malware. This police ransomware Trojan is classified as a Winlocker because it blocks access to the victim's computer by displaying a full-screen message that claims to be an alert from the police. CIBS Pol Virus is a well known scam that is in no way connected to the police force. Instead, the CIBS Pol Virus is used by criminals to scam inexperienced computer users so that they will hand over their money out of fear of prosecution, jail time and severe fines. If your access to your computer is blocked by the CIBS Pol Virus, ESG security researchers strongly advise against following the steps contained in the CIBS Pol Virus message. Instead, ESG security researchers advise computer users to use alternate boot methods to evade the CIBS Pol Virus Winlocker component and then use a reliable anti-malware program to remove the CIBS Pol Virus and all malicious files and system settings associated with this threat.

Why the CIBS Pol Virus' Uses a Winlocker Component

While a threatening message would not be enough to convince most computer users that they should pay the CIBS Pol Virus' hefty ransom, this malware's Winlocker component is what makes the CIBS Pol Virus particularly vicious. Once the victim's computer has become infected, the CIBS Pol Virus makes changes to the infected computer's settings that prevent the victim from accessing files or the infected computer's Desktop. The CIBS Pol Virus also uses its Winlocker component to prevent the victim from opening the Windows Task Manager, the Windows Start Menu and a large number of other system utilities that would normally be useful to remove these kinds of malware infections. Versions of the CIBS Pol Virus have also been observed to block Safe Mode, System Restore and other critical Windows components.

Like most police ransomware Trojans, the CIBS Pol Virus will demand the payment of an expensive fine by threatening police action against the victim. ESG security analysts advise computer users to disregard these threats. Instead, start up your computer from an external source or using the command prompt in order to bypass the CIBS Pol Virus Winlocker component. As soon as you are able to access to your security software, a reliable anti-malware program should be used to remove this threat from your machine.Screenshot

Messages

The following messages associated with CIBS Pol Virus (Ransomware) were found:

ACHTUNG! Ihr Computer ist aus einem oder mehreren der unten aufgeführten Gründe gesperrt.

Sie haben gegen das Gesetz über «Urheberrecht und verwandte Schutzrechte» (Video, Musik, Software) verstoßen und unrechtmäßig urheberrechtliche Inhalte genutzt, bzw. Verbreitet und somit gegen Art. 128 des Schweizerischen Strafgesetzbuches verstoßen.

1 Comment

Daniel Reply

Hi. This CIBS POL thing is now so cunningly blocking my computer, that I cannot even start it in safe mode: it starts first in safe mode, (and possibly the virus copied itself into the "necesary" drivers) then, after the blue 'Windows' screen appears in safe mode, it shuts down automatically and restarts only in normal mode, from where I have no access to anything what so ever. I can e.g. start the task manager, but in half a sec it vanishes again and I have no access to it or any other programm or to Windows system management. At one moment I managed to get to system restore, which contained only one recent date, but then due to some error it couldn’t run and I was back to scratch.
What can I do in order to get to start a software from a USB stick, or get to the command prompt to download SpyHunter and have it run?
Thanx in advance for any help there.
greets, daniel

Trending

Most Viewed

Loading...