Latvijas Policijas Virus Ransomware
Latvijas Policijas Virus Ransomware Image
ESG malware analysts have observed that ransomware Trojan attacks in Eastern Europe have increased in the last couple of months. The Latvijas Policijas Virus is one of the many newer variants of the PaySafeCard or Ukash ransomware Trojans that have started targeting these countries. As of November of 2012, ESG security researchers have received reports of ransomware infections impersonating police agencies from Hungary, Romania, Slovenia and other Eastern European countries. The Latvijas Policijas Virus is the variant of this ransomware family that targets computers located in Latvia. This malicious ransomware infection detects the victim's location by its IP address and installs a variant of this scam that corresponds to the victim's computer. These are typically referred to as 'Ukash' ransomware Trojans because they often demand the payment of a ransom using this money transfer service.
Fake threatening messages from the police are tactics criminals use to alarm inexperienced computer users. These messages will typically claim that the victim's computer was involved in criminal activity and will threaten with deleting the contents of the victim's hard drive and forwarding the contents of it to the police. More importantly, the Latvijas Policijas Virus and other ransomware Trojans prevent the victim from gaining access to the infected computer, effectively shutting down access to all files and applications on the victim's PC. ESG malware researchers advise computer users never to pay the Latvijas Policijas Virus' ransom, even if you understand that the Latvijas Policijas Virus is not a real police operation and you only do it with the intention of unblocking your computer. ESG malware researchers have analyzed the Latvijas Policijas Virus and have determined that there is not engineering to access payment codes and that following its instructions will not remove this ransomware Trojan from your computer.
The most problematic aspect of dealing with the Latvijas Policijas Virus is bypassing this Trojan's ransom message and accessing your files and security programs. Fortunately, Windows allows computer users to access the Command Prompt by starting up in Safe Mode. This allows computer users to gain access to the Windows Registry and to the Windows Explorer, both of which can allow computer users to disable the Latvijas Policijas Virus message and acquire access to your security applications. An alternative method is to start up Windows from an alternate source, i.e. an external drive or CD.
Messages
The following messages associated with Latvijas Policijas Virus Ransomware were found:
|
English translation:
Your computer is blocked! ........ Amount of the fine is 50 LVL. Must be paid within 48 hours after the violation detection. |
|
Jusu dators ir blokets!
…….. Naudas soda summa ir 50 LVL. Apmaksa javeic 48 stundu laika, pec psrkspsanas atklasanas. |
|
Latvijas Policijas
Kibernoziegumi Departaments J?su dators ir blok?ts J?s esat parkap?js, J?su darblba nav likumlga un paredz kriminalatbildibu. Taiak min?ti iespejami parkapumi: 174. pants – AutortiesTbas BrtvTbas atnemšana no 2 ITdz 5 gadiem (Autordarbu izmantošana vai izplatTšana). Naudas sods no 9 OOO LVL ITdz 10 000 LVL 183. pants – Pornografija BrtvTbas atnemšana no 2 ITdz 3 gadiem (Pornografisku failu izmantošana vai izplatTšana). Naudas sods no 9 000 LVL ITdz 11 000 LVL 184. pants – Pornografija ar berniem (jaunakiem par 18 gadiem) BrtvTbas atnemšana no 10 ITdz 15 gadiem (Pornografisku failu izmantošana vai izplatTšana). Naudas sods no 10 000 LVL ITdz 20 000 LVL (...) |
|
Latvijas Policijas
Kibernoziegumi Departaments Jusu dators ir blokets Jus esat parkapejs, Jusu darblba nav likumlga un paredz kriminalatbildibu. Taiak mineti iespejami parkapumi: 174. pants – AutortiesTbas BrtvTbas atnemšana no 2 ITdz 5 gadiem (Autordarbu izmantošana vai izplatTšana). Naudas sods no 9 OOO LVL ITdz 10 000 LVL 183. pants – Pornografija BrtvTbas atnemšana no 2 ITdz 3 gadiem (Pornografisku failu izmantošana vai izplatTšana). Naudas sods no 9 000 LVL ITdz 11 000 LVL 184. pants – Pornografija ar berniem (jaunakiem par 18 gadiem) BrtvTbas atnemšana no 10 ITdz 15 gadiem (Pornografisku failu izmantošana vai izplatTšana). Naudas sods no 10 000 LVL ITdz 20 000 LVL 104. pants – Terorisma atbalstTšan BrtvTbas atnemšana ITdz 25 gadiem bez apeiacijas tiesTbam (Teroristu grupejumu lapu apmekiešarta). Naudas sods no 15 000 LVL ITdz 23 000 LVL Tpašuma konfiskacija. 68. pants – VTrusu programmu izplatTšana. BrtvTbas atnemšana ITdz 2 gadiem O/Trusu programmu, kas kaite eitiem datoriem, radTšana vai izplatTšana). Naudas sods no 7 000 LVL ITdz 14 000 LVL 113. pants – Nelicencetas programmaturas izmantošana BrtvTbas atnemšana ITdz 2 gadiem (Nelicencetas programmaturas izmantošana). Naudas sods no 5 000 LVL ITdz 11 000 LVL 99. pants – Krapšana ar maksajumu kartem, nelikumTgas operacijas ar maksajumu kartem BrtvTbas atnemšana ITdz 5 gadiem (Operacija ar maksajumu karti vai tas rekvizTtiem, ko nav uzsacis vai nav apstiprinajis tas turetajs). Naudas sods no 15 000 LVL ITdz 38 000 LVL, Tpašuma konfiskacija 156. pants – Pornografiska satura surogatpasta izplatTšana izmantojot elektroniškas vestules un sociaios tTklus). Naudas sods no 8 000 LVL ITdz 16 000 LVL |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.