1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Virus? My computer was locked apprently by West Yorkshire Police! Pic inlcuded

Discussion in 'General Discussion' started by davetrace1, 24 Jul 2012.

  1. Duke

    Man of Honour

    Joined: 29 Jun 2003

    Posts: 33,837

    Location: Wiltshire

    Its just one file that runs on start up. Go in Safe Mode then use msconfig to find where it is located to delete it. Then run full AV scan but I've not had one yet which has had anything else on there.


    Joined: 27 Jan 2007

    Posts: 584

    every week at work we get 2-3 customers with it... but yeah there smart enough to know its not genuine lol
  3. Strife212


    Joined: 15 Dec 2007

    Posts: 16,574

    Loads of infections these days are an absolute pain to get rid of. I had a google hijack recently on my laptop and it took ages to remove, it instantly deleted any anti malware software.
  4. KIA

    Man of Honour

    Joined: 14 Nov 2004

    Posts: 13,604

    These threats are often combined with root kits. The ransonware is often only one part of the equation.
  5. Twentymac

    Wise Guy

    Joined: 2 Oct 2007

    Posts: 1,530

    Location: Birmingham

    Anyone else having problems solving this issue ?

    Im trying to sort a family members laptop with the virus on and I can choose to boot in all the various safe modes, but its not booting up in safe mode. I can manage to do it just about in "Safe mode with Networking" and i see the safe mode boarder with the messages on but then its almost as if the virus overlaps it and I cant access anythink else
  6. Chris1712


    Joined: 29 Jul 2004

    Posts: 9,419

    Location: Somerset

    Safe mode with command prompt worked for me, pain in the ass to get rid of it. I just formatted lol it's easier.
  7. sniffy


    Joined: 12 Dec 2003

    Posts: 8,141

    Location: East Sussex

    Urgh, that made me die a little inside. Name and shame these pieces of **** already.
  8. PiKe


    Joined: 18 Oct 2002

    Posts: 25,165

    Location: Lake District

    So is there actually a method for removing the West Yorkshire Police variant? Or is a system restore the only way?
  9. asim18


    Joined: 5 Dec 2006

    Posts: 15,403

    I wonder how many old pedos have coughed up.
  10. PiKe


    Joined: 18 Oct 2002

    Posts: 25,165

    Location: Lake District

    Also I just read that newer variants are disabling the VSS service so you can't use system restore on those.

    How is a machine infected with this? Is it an exploit in Java or Flash?
  11. LOAM


    Joined: 20 Oct 2004

    Posts: 12,633

    Location: Nottingham

    Someone in the office has this at home, whats the best way to advise on getting rid of it ?
  12. Pestilence


    Joined: 22 Feb 2008

    Posts: 11,070

    A friend of one of our office managers had this the other day and I took a look for them. Very easy to remove -- boot into Safe Mode, check msconfig startup items and you'll find the executable involved. The one I saw just had random letters and numbers for a name.

    Strip it out of there, delete the executable (and folder it's in), restart and run a full scan with your antivirus/antimalware to be sure.
  13. Gogl

    Wise Guy

    Joined: 15 Apr 2008

    Posts: 1,241

    I know this is an older post but Avast does have a silent mode. It's been a while since I've been gaming, but I don't recall it ever having terminated a game, now that I've said this if I start playing a few more games it'll probably zap every one of them.
  14. ~Divine~Wind~


    Joined: 14 Jun 2004

    Posts: 16,239

    Location: Newcastle U/T

    If you cant get into safe mode then safe mode with command prompt is handy, run system restore (rstrui.exe) from there :)
  15. bhavv


    Joined: 14 Nov 2009

    Posts: 13,645

    Really? Just reading the title once and that it requires Ukash tells me immediately that its a fake scam.
  16. cyber69

    Wise Guy

    Joined: 16 Sep 2009

    Posts: 1,961

    Location: Loogabarooga

    Seen this malware twice this past week, once at work and another on a friend's laptop.

    Both time's sorted it out by booting into safe mode (without networking) and then installing malwarebytes program and then copying the definitions file and config folder from another PC into the correct location on the infected PC.
  17. davetrace1


    Joined: 29 Jun 2009

    Posts: 367

    Location: Cardiff

    Lol I remember creating this post! BIG LOL at my typos, massage hehe :p. And how can people say 'how could you fall for a scam like this'? There are a lot of people who would believe this scam e.g. elderly people maybe. Not everyone understands computers like you do.
  18. Woogie


    Joined: 18 Nov 2011

    Posts: 2,561

    Location: Caddington

    Had this happen to me the other week..... ***** annoying as I was only telling someone the day before I haven't had anything like that happen to me in a long time.
  19. nath247

    Wise Guy

    Joined: 11 Aug 2006

    Posts: 1,122

    Looks like some noddy program written in VB that just full screens and disables CTRL-ALT-DEL etc.
  20. squarebutt


    Joined: 24 Aug 2012

    Posts: 237

    Malwarebytes removed mine last week. I am convinced it was from a link somewhere here :eek: