Department of Justice Information:

Department of Justice Virus is another ransomware sample released from Ukash virus clan which has compromised a large number of computers all over the world. Hackers created Department of Justice Virus to lock the infected machines and attempt to swindle users’ cash. Similar to FBI MoneyPak virus and Federal Bureau Investigation Virus, Department of Justice Virus immediately locks the computer after its intrusion. It completely takes control of the whole computer system and blocks victims from visiting websites, editing documents and running security software and so on. They can only see a fabricated Department of Justice Virus warning that claims that they are detected to have prohibited activities and violate the law. And it’s asking you to pay 200 dollars via Ukash card to unlock your computer. Many computer users are cheated by its well-designed appearance. However, you should know that this Department of Justice Virus warning is not from any legal department. Cyber criminals often spread ransomwares like Department of Justice Virus via spam emails, free resources shared online and so on. If you got Department of Justice Virus on your PC, please follow our removal tutorial below.

Before you proceed the removal of Department of Justice virus, please

1. Restart your system and keep pressing F8 key into Safe Mode with Networking
2. Click Start Menu and find run
3. Type in msconfig and hit OK
4. Try to disable some suspicious processes at Startup tab.
5. Repeat step 2, type in regedit and open registry editor
6. Locate HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\

7. Find shell in the right hand panel and change its value into Explorer.exe by right clicking it if the value is different.

8. Save the changes and restart your PC.

Fake Warning presented by Department of Justice virus:

Your computer has been blocked
The work of your computer has been suspended on the grounds of the violation of the law of the United States of America.

Department of Justice Virus Screenshot:

Department of Justice Manual Removal

Note: If you are not proficient with computer, it’s advised that you backup your system before manually removing Department of Justice virus. And double check the files that you are going to delete, or your computer can’t work for missing some files.

Step 1: Delete the following registery files:

HKEY_LOCAL_MACHINESOFTWAREClasses[trojan name]IEHelper.DNSGuardCurVer


HKEY_LOCAL_MACHINESOFTWAREMicrosoftInternet ExplorerToolbar “[trojan name]”

Step 2: Delete the following files:

%AppData%[trojan name]toolbardtx.ini

%AppData%[trojan name]toolbarlog.txt

%AppData%[trojan name]toolbarstat.log

%AppData%[trojan name]toolbaruninstallIE.dat

Please, note that manual removal of Department of Justice virus is a procedure with high complexity and can not always guarantee a full removal of the virus, due to the fact that some objects can stay hidden or may become reanimated automatically after incomplete removal. What’s more, lack of the required skills and even the slightest deviation from the removal guides may result in irreparable system corruption. That’s the reason it’s strongly adviced automatic removal of Department of Justice virus, which will save your time and avoid any system corruptions and ensure the desired result.

Automatic Department of Justice virus Removal:

Step 2: Click & download the trusted Department of Justice virus Automatic Removal Utility.

Tips: In case you can’t install the removal utility, please download this correction script, unzip it and then double click to execute it. It can correct the system settings that the spyware has distorted.

Step 6: Perform a Full Scan of your system to detect Department of Justice virus or other malware.


Published by Cruze Albert