The Malta Police Force Virus - How to remove?

 

The Malta Police Force or MPF virus is a ransomware that is programmed to lock a computer’s screen that its user would not be able to access any applications. After such an infection system does not respond to almost any commands given. Cyber criminals demand for a ransom in order to unlock a computer attacked. This is where the name of this type of virus came from. In order to increase the number of victims that actually pay, cyber gangs pretend to be working in the name of official institutions or local police. For example, in case of the latter virus a blocking message is supposed to be from Malta Police Force. For the bogus notification to look even more legitimate extracts from true laws related to distribution of pornographic material, sending of spam e-mails and illegal usage of copyrighted content are listed.

The Malta Police Force virus demands for a fine of 100 EUR to be paid. Scammers use prepaid payment systems like Ukash or PaySaveCard for the ransoms to be collected. An infected computer user is supposed to purchase a special card and enter PIN number in the field given. This is a well thought of scheme which lets virus distributors avoid being caught. Do not give in and do not pay this money. Remember, the message is not from police, it is a scam. Even if you see your computer webcam turned on and your surroundings being filmed, none of the information will actually be sent to any of governmental authorities and used against you.

The example of the text that tries to convince into paying the fine is given below:

All activity of this computer has been recorded.
If you use a webcam, videos and pictures were saved for identification.
Your Computer has been locked!
The work of your computer has been suspended on the grounds of unauthorized cyber activity.

The most common way of distributing the Malta Police Force virus is by inserting a corrupted code into other websites. This can be done by paying for advertisements or by attacking a site. It means that one can get infected after visiting web pages that she used to browse every day. Job search sites are of a particular interest to cyber gangs distributing ransomware.

Depending on the individual situation of your infection there are several ways of how to eliminate the Malta Police Force virus from the system:

WHEN ONLY ONE ACCOUNT OF COMPUTER IS INFECTED

If your computer has more than one account and only one of them is blocked by the Malta Police Force virus, login to unaffected account and scan whole PC with anti-malware programs, e.g. spyhunter.

WHEN IT IS POSSIBLE TO LAUNCH SAFE MODE OR SAFE MODE WITH NETWORKING

  1. Restart your computer; press F8 during the restarting process;
  2. Select any of these: safe mode or safe mode with networking
  3. Launch MSConfig;
  4. Disable startup items rundll32 turning on any application from Application Data.
  5. Restart your PC but this time in a normal mode.
  6. Scan with http://www.2-viruses.com/downloads/spyhunter-i.exe. It will detect the Malta Police Force virus and remove its files. Watch a video below and do exactly what it shows:

WHEN IT IS POSSIBLE TO LAUNCH SAFE MODE WITH COMMAND PROMPT

  1. Restart your computer in safe mode with command prompt (by pressing F8 while restarting and selecting appropriate mode).
  2. Run Regedit
  3. Search for WinLogon Entries. Write down all files it references that are not explorer.exe or blank. Replace them with explorer.exe
  4. Search registry for the Malta Police Force virus files and delete the registry keys referencing the files
  5. Try to reboot and scan with Spyhunter.
  6. If you cannot complete the step above, perform system restore from safe mode with command prompt (rstrui.exe). Watch a video showing every step:

WHEN NONE OF SAFE MODES WORK

  1. Use a short gap before a blocking screen shows up for anti-malware program to be run.
  2. Restart your computer normally.
  3. Start->Run.
  4. Enter : http://2-viruses.com/downloads/spyhunter-i.exe . If malware is loaded, just press alt+tab once and keep entering the string blindly. Press Enter.
  5. Press Alt+tab and then R couple times. The Malta Police Force virus should not be blocking your computer anymore. You may wish to watch a video guide before starting virus removal:

If none of the above methods removed the Malta Police Force virus, you might wish to use a bootable USB or DVD disk with spyhunter recorded to it. Once you insert it into an infected computer it should start removal process automatically. It would not work only if your hard drive is encrypted.

 

Automatic The Malta Police Force Virus removal tools

 
  Download Spyhunter for Malta Police Force Virus detectionNote: Spyhunter trial provides detection of parasite like Malta Police Force Virus and assists in its removal for free. You can remove detected files, processes and registry entries yourself or purchase a full version.
 

Manual The Malta Police Force Virus removal

 

Important Note: Although it is possible to manually remove Malta Police Force Virus, such activity can permanently damage your system if any mistakes are made in the process, as advanced spyware parasites are able to automatically repair themselves if not completely removed. Thus, manual spyware removal is recommended for experienced users only, such as IT specialists or highly qualified system administrators. For other users, we recommend using Spyhunter or other tools found on 2-viruses.com.

Processes:
Files:

It is impossible to list all file names and locations of modern parasites. You can identify remaining parasites, other Malta Police Force Virus infected files and get help in Malta Police Force Virus removal by using Spyhunter scanner. 

 

The Malta Police Force Virus screenshots

 
malta-police-force-virus
 
 
 
 
 
 
 
 
 
 
 

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title="" rel=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>