Skip to content

What is the BBBW malware? How to remove it?

  • by
  • 4 min read

If you find that your images, documents, or files can’t be opened and they now have a “.bbbw” extension, it means the STOP/DJVU ransomware has attacked your computer. This malicious software encrypts personal documents on the victim’s computer and adds the “.bbbw” extension. To unlock the encrypted data, the ransomware presents a message requesting payment in Bitcoin. Instructions on how to pay the ransom and decrypt the files are provided in a file called “_readme.txt” on the victim’s desktop.

In this article, we have discussed what is BBBW malware and how to remove BBBW malware in a few simple steps.

Also read: What is Onelaunch? Is it a malware?


What is the BBBW malware?

BBBW is a type of malicious software known as ransomware. Its main goal is to block your access to important files, such as documents, images, and videos, by encrypting them and adding the “.bbbw” extension. After locking your files, the ransomware demands payment in Bitcoin to restore access to your data.

Once your computer is infected with BBBW ransomware, it scans for specific files like images, videos, and important documents (e.g., .doc, .docx, .xls, .pdf). When it identifies these files, the ransomware encrypts them, making them inaccessible. The file extensions are then changed to “.bbbw,” preventing you from opening them.

After encrypting your files, BBBW ransomware displays a file named “_readme.txt” containing a ransom note. This note provides instructions on how to contact the ransomware’s creators. Victims are urged to reach out to the malware developers through the email addresses support@sysmail.ch and helprestoremanager@airmail.cc for further instructions on how to pay the ransom and regain access to their files.


How to remove it?

To remove the BBBW malware follow the steps below:

Step 1: Firstly, you need to restart your PC in safe mode. Press the Windows + I keys on your keyboard to access the Settings and click on the Update & Security option.

Step 2: In the sidebar, click on the Recovery and then on the right side click on the Restart Now button under the Advanced Startup section.

Step 3: In the Windows Recovery Environment, click on Troubleshoot.

Step 4: On the Troubleshoot screen, click on the Advanced options.

Step 5: On the Advanced options screen, click on the Startup Settings option.

Step 6: On the Startup Settings screen, click on the Restart button.

Step 7: After your device restarts, you’ll see a list of options. Select option 5 from the list or press F5 to enter Safe Mode with Networking.

Step 8: Use reputable security software like Malwarebytes or HitmanPro to detect and remove the BBBW malware.

Step 9: After the scan is complete, reboot your PC in normal mode.

Step 10: If you have a backup of your files then you can use system restore and if you don’t have a backup then you can use software like Emsisoft decryptor to decrypt and remove the infected files.

Also read: Which files does ransomware encrypt?

Akash Singh

Akash Singh

Akash is a law graduate who likes to go for bike rides on the weekends soul-searching for answers to his many existential questions. You can contact him here: singhakash95@pm.me

>