Severity scale:  

Remove Politie Virus (Free Guide) - updated Jul 2019

removal by Gabriel E. Hall - -   Also known as Ukash virus | Type: Ransomware

Politie virus is a computer virus that displays bogus notification pretending to be the alert form Police or any other government agency

Politie virus 

Politie virus is the ransomware that states about cybercrime and illegal activities on fake alerts that ask to pay up. This is a virus that infects various devices on countries in Europe mainly and demands euros for the alleged help or dismissed charges for illegal activities like pornographic content distribution or cybercrime. These alerts stating about Police or FBI interference are fake and created to scare people into paying the demand. You haven't violated any laws, so don't pay the fine because this can lead to permanent money loss or even installation of other malware if you contact these people behind the fake alerts.[1] There is nothing legal, and authorities are not involved in this Politie ransomware attacks. However, when the screen gets locked and the message alerts about various law violations and involvement in illegal activities, people get scared and don't think twice before paying the demanded amounts. 

Name Politie virus
Type Ransomware
Ransom amount 50-100€, can go up to hundreds or thousands
Tactics Poses as government agencies or authorities and demands to pay for alleged illegal activities
Payment transfer Using Ukash or PaySafeCard services
Distribution Other malware, emails with infected files
Elimination Install anti-malware and remove Politie virus from the machine
Other names used for a similar threat  FBI virus, Police Virus, Ukash virus, Police ransomware, FBI ransomware

Politie virus belongs to a category of ransomware that is one of the most dangerous cyber threats because it involves money and direct extortion from victims. You should never pay the ransom demanded from you because there is no need to trust those promises that criminals state on their messages and fake alerts, in this case.

The message delivered by Politie virus can differ from country to country, but it sounds similar and every time claims that you have been involved in illegal activities. This is a scammer method used to trick people, so criminals can make a profit from all those fines.

Politie virus also can disable function on your machine and lead to the damaged device due to such alterations. Besides the lock screen and messages, this threat can install trojans, worms, and viruses with the particular purpose of running other processes in the background.

To end all of them, you need to get professional tools, and clean the system fully, remove Politie virus alongside other trojans or malicious programs. This is crucial because scammers may lure you into revealing information or use different tactics in the future if you leave the payload or any other related file on the system. 

Rely on tools like Reimage Reimage Cleaner Intego and perform the full Politie virus removal during a full system scan. When there is more damage ake on your computer, you can also try to use the System Restore or Safe Mode features listed below that help to achieve needed results. You should also check tips and tricks below the article, where experts[2] make a guide for malware removal.

Politie ransomwarePolitie virus is the ransomware that demands to pay a 200 euro fine.

Politie virus is a dangerous cyber threat, a screen locker, that seeks to make users pay the invented fine for their 'illegal' crimes. This threat is designed for the Netherlands, so it uses this country's language. Note that there are many other Politie Virus versions that all belong to a widely-known group of ransomware, which called Ukash.

As soon as they get inside the system, they take over the whole computer's system and lock it down with their misleading alert, which includes the names of governmental organizations, shows victim's IP address and gives the misleading information.

It claims something like that: “Uw computer is vergrendeld.” Instead of falling for Politie Virus or other Ukash virus, keep in mind that they have nothing to do with Netherlands police and must be ignored. You must remove Politie Virus as soon as you start seeing its misleading alert.

Since the Politie virus is spreading all over the world it can present the message in various languages like “Uw computer is vergrendeld. Illegaal gedownloade muziek stukken.” Typically, to other Ukash threats, it uses the language of the victim in order to make the user think that he truly has a deal with a local governmental authority.

Politie cryptovirusPolitie virus is the ransomware that can access your web camera and disable various functions on the machine.

Ransomware spreading methods include spam email campaigns 

Ransomware in most cases gets distributed by trojan horses[3] or other malware that takes advantage of every security vulnerability it finds. Typically, it comes inside the PC via spam emails and other files that have been infected with the trojan or worm. Once inside and active, it starts its activity or ransomware payload dropping immediately. Sometimes such malware is designed only to infect the machine further.

However, those spam email campaigns that deliver malware and viruses also spread cryptovirus directly on the computer once the malicious file gets downloaded and opened on the machine. It happens when the email received looks legitimate enough to get opened without paying attention.

Emails have either hyperlinks or file attachments with a malicious script or direct ransomware payload.[4] Make sure to delete any emails that raise questions or seem not genuine immediately and don't download or open any files from such notifications.

Removing Politie virus includes cleaning the machine fully from other malware

When trying to remove Politie virus, you may find that you are blocked from getting on the Internet and that's the most important thing because you won't be capable to download the anti-malware program and remove infected files from the system. However, if you have the connection download SpyHunter 5Combo Cleaner or Reimage Reimage Cleaner Intego, Malwarebytes that will remove infected files from your computer or try to get this tool on another PC and scan the machine via an external drive.

Another tip for Politie virus removal is system cleaning and various functions of the device itself. For example, the ransomware changes a lot on the machine and even disables some programs like antivirus tools. Entering the Safe Mode before scanning the machine can give the advantage of fully eliminating ransomware from the PC.

do it now!
Reimage Happiness
Intego Happiness
Compatible with Microsoft Windows Supported versions Compatible with OS X Supported versions
What to do if failed?
If you failed to remove virus damage using Reimage Intego, submit a question to our support team and provide as much details as possible.
Reimage Intego has a free limited scanner. Reimage Intego offers more through scan when you purchase its full version. When free scanner detects issues, you can fix them using free manual repairs or you can decide to purchase the full version in order to fix them automatically.
Alternative Software
Different software has a different purpose. If you didn’t succeed in fixing corrupted files with Reimage, try running SpyHunter 5.
Alternative Software
Different software has a different purpose. If you didn’t succeed in fixing corrupted files with Intego, try running Combo Cleaner.

To remove Politie virus, follow these steps:

Remove Politie using Safe Mode with Networking

If Politie virus stops your security software, you should access Safe Mode with Networking:

  • Step 1: Reboot your computer to Safe Mode with Networking

    Windows 7 / Vista / XP
    1. Click Start Shutdown Restart OK.
    2. When your computer becomes active, start pressing F8 multiple times until you see the Advanced Boot Options window.
    3. Select Safe Mode with Networking from the list Select 'Safe Mode with Networking'

    Windows 10 / Windows 8
    1. Press the Power button at the Windows login screen. Now press and hold Shift, which is on your keyboard, and click Restart..
    2. Now select Troubleshoot Advanced options Startup Settings and finally press Restart.
    3. Once your computer becomes active, select Enable Safe Mode with Networking in Startup Settings window. Select 'Enable Safe Mode with Networking'
  • Step 2: Remove Politie

    Log in to your infected account and start the browser. Download Reimage Reimage Cleaner Intego or other legitimate anti-spyware program. Update it before a full system scan and remove malicious files that belong to your ransomware and complete Politie removal.

If your ransomware is blocking Safe Mode with Networking, try further method.

Remove Politie using System Restore

Employ System Restore feature to clean the system:

  • Step 1: Reboot your computer to Safe Mode with Command Prompt

    Windows 7 / Vista / XP
    1. Click Start Shutdown Restart OK.
    2. When your computer becomes active, start pressing F8 multiple times until you see the Advanced Boot Options window.
    3. Select Command Prompt from the list Select 'Safe Mode with Command Prompt'

    Windows 10 / Windows 8
    1. Press the Power button at the Windows login screen. Now press and hold Shift, which is on your keyboard, and click Restart..
    2. Now select Troubleshoot Advanced options Startup Settings and finally press Restart.
    3. Once your computer becomes active, select Enable Safe Mode with Command Prompt in Startup Settings window. Select 'Enable Safe Mode with Command Prompt'
  • Step 2: Restore your system files and settings
    1. Once the Command Prompt window shows up, enter cd restore and click Enter. Enter 'cd restore' without quotes and press 'Enter'
    2. Now type rstrui.exe and press Enter again.. Enter 'rstrui.exe' without quotes and press 'Enter'
    3. When a new window shows up, click Next and select your restore point that is prior the infiltration of Politie. After doing that, click Next. When 'System Restore' window shows up, select 'Next' Select your restore point and click 'Next'
    4. Now click Yes to start system restore. Click 'Yes' and start system restore
    Once you restore your system to a previous date, download and scan your computer with Reimage Reimage Cleaner Intego and make sure that Politie removal is performed successfully.

Bonus: Recover your data

Guide which is presented above is supposed to help you remove Politie from your computer. To recover your encrypted files, we recommend using a detailed guide prepared by security experts.

If your files are encrypted by Politie, you can use several methods to restore them:

Data Recovery Pro might be able to help you recover files after Politie virus attack

You should try Data Recovery Pro because this is a tool that recovers files after encryption or damage

  • Download Data Recovery Pro;
  • Follow the steps of Data Recovery Setup and install the program on your computer;
  • Launch it and scan your computer for files encrypted by Politie ransomware;
  • Restore them.

Make use of Windows Previous Versions feature

This option is only available for those who had System Restore feature enabled

  • Find an encrypted file you need to restore and right-click on it;
  • Select “Properties” and go to “Previous versions” tab;
  • Here, check each of available copies of the file in “Folder versions”. You should select the version you want to recover and click “Restore”.

ShadowExplorer can restore all your files

ShadowExplorer is useful if Shadow Volume Copies were not deleted by Politie virus

  • Download Shadow Explorer (;
  • Follow a Shadow Explorer Setup Wizard and install this application on your computer;
  • Launch the program and go through the drop down menu on the top left corner to select the disk of your encrypted data. Check what folders are there;
  • Right-click on the folder you want to restore and select “Export”. You can also select where you want it to be stored.

Decryption is not possible

Finally, you should always think about the protection of crypto-ransomwares. In order to protect your computer from Politie and other ransomwares, use a reputable anti-spyware, such as Reimage Reimage Cleaner Intego, SpyHunter 5Combo Cleaner or Malwarebytes

Access your website securely from any location

When you work on the domain, site, blog, or different project that requires constant management, content creation, or coding, you may need to connect to the server and content management service more often. It is a hassle when your website is protected from suspicious connections and unauthorized IP addresses.

The best solution for creating a tighter network could be a dedicated/fixed IP address. If you make your IP address static and set to your device, you can connect to the CMS from any location and do not create any additional issues for server or network manager that need to monitor connections and activities. This is how you bypass some of the authentications factors and can remotely use your banking accounts without triggering suspicious with each login. 

VPN software providers like Private Internet Access can help you with such settings and offer the option to control the online reputation and manage projects easily from any part of the world. It is better to clock the access to your website from different IP addresses. So you can keep the project safe and secure when you have the dedicated IP address VPN and protected access to the content management system.

Backup files for the later use, in case of the malware attack

Computer users can suffer from data losses due to cyber infections or their own faulty doings. Ransomware can encrypt and hold files hostage, while unforeseen power cuts might cause a loss of important documents. If you have proper up-to-date backups, you can easily recover after such an incident and get back to work. It is also equally important to update backups on a regular basis so that the newest information remains intact – you can set this process to be performed automatically.

When you have the previous version of every important document or project you can avoid frustration and breakdowns. It comes in handy when malware strikes out of nowhere. Use Data Recovery Pro for the data restoration process.

About the author
Gabriel E. Hall
Gabriel E. Hall - Passionate web researcher

If this free removal guide helped you and you are satisfied with our service, please consider making a donation to keep this service alive. Even a smallest amount will be appreciated.

Contact Gabriel E. Hall
About the company Esolutions

Removal guides in other languages

Your opinion regarding Politie Virus