Interpol Department of Cybercrime virus is an annoying Ransomware locking people from their PCs. It belongs to Police Virus ransomwares aka impersonates law institutions (in this case, Interpol). This is done to force people into paying a fine for up to 200 USD for supposedly broken law using pre-paid cards like Ukash, PaysafeCard and (in USA) Moneypak. Duo to the way pre-paid cards operate, it is impossible to get money paid for Interpol department of Cybercrime ransomware back. Thus it is better to avoid this parasite completely or get rid of it using other ways. Some versions of these ransomwares are really badly written and call themselves “Interpol department of Cibercrime” instead of Cybercrime. This shows lack of attention to details.
Interpol department of Cybercrime virus is distributed using exploit pages, spam messages or trojans hidden in files on various shady sites. Typically, these files are recognized by antiviruses quite soon and PCs running AVs are protected from such scams. However, sometimes your protection fails and the ransomware blocks you completely. department of Cybercrime malware is not too original and will display about the same text to scare you:
Your PC is blocked due to at least one of the reasons specified below.
You have been violating Copyright and Related rights law (Video, Music, Software) and illegally using or distributing copyrighted content, thus infringing Article 128 of the Criminal Code of World Department of Cybercrime.
Article 128 of the Criminal Code provides a fine of 2 to 5 hundred minimal wages or a deprivation of liberty for 2 to 8 years.
This is obvious, that there is no global Criminal Code that is applicable Worldwide. And generally speaking, police would contact you personally if you would have broken any law. Thus never pay for law institutions using pre-paid cards or you will fund development of future versions of Interpol Department of Cybercrime virus and similar ones.
To remove Interpol Department of Cybercrime ransomware, follow these instructions
1. Reboot and press F8. Choose Safe mode
2a. If malware does not load, run MSConfig and disable all startup entries. Reboot normally. Continue to step 5.
3b . If Malware does load, reboot into safe mode with command prompt
4. Run Regedit and search for Winlogon
5. There will be shell variable under correct Winlogon, which references either explorer.exe (leave untouched), explorer.exe and something else (leave explorer.exe), Something from application data (change to explorer.exe) or something else (leave untouched).
6. Once you find the Interpol Department of Cybercrime virus file name (something from Application Data), search for it in registry and remove.
7. Close Regedit, enter Shutdown -r -t 0.
8. Important: Scan with anti-malware programs like Spyhunter or Malwarebytes Anti-Malware to confirm that your PC is fully cleaned up and no additional infection is present.
If something fails ask your questions bellow, or consult support on +1-888-334-2444.
Video guide for Interpol Departament of Cybercrime virus
Automatic Malware removal tools