If you find that your images, documents, or files can’t be opened and they now have a “.bbbw” extension, it means the STOP/DJVU ransomware has attacked your computer. This malicious software encrypts personal documents on the victim’s computer and adds the “.bbbw” extension. To unlock the encrypted data, the ransomware presents a message requesting payment in Bitcoin. Instructions on how to pay the ransom and decrypt the files are provided in a file called “_readme.txt” on the victim’s desktop.

In this article, we have discussed what is BBBW malware and how to remove BBBW malware in a few simple steps.

Also read: What is Onelaunch? Is it a malware?

What is the BBBW malware?

BBBW is a type of malicious software known as ransomware. Its main goal is to block your access to important files, such as documents, images, and videos, by encrypting them and adding the “.bbbw” extension. After locking your files, the ransomware demands payment in Bitcoin to restore access to your data.

Once your computer is infected with BBBW ransomware, it scans for specific files like images, videos, and important documents (e.g., .doc, .docx, .xls, .pdf). When it identifies these files, the ransomware encrypts them, making them inaccessible. The file extensions are then changed to “.bbbw,” preventing you from opening them.

After encrypting your files, BBBW ransomware displays a file named “_readme.txt” containing a ransom note. This note provides instructions on how to contact the ransomware’s creators. Victims are urged to reach out to the malware developers through the email addresses support@sysmail.ch and helprestoremanager@airmail.cc for further instructions on how to pay the ransom and regain access to their files.

This is an image of what is malware 9 types explained 100

How to remove it?

To remove the BBBW malware follow the steps below:

Step 1: Firstly, you need to restart your PC in safe mode. Press the Windows + I keys on your keyboard to access the Settings and click on the Update & Security option.

This is an image of boot windows 10 in safe mode ss1

Step 2: In the sidebar, click on the Recovery and then on the right side click on the Restart Now button under the Advanced Startup section.

This is an image of boot windows 10 in safe mode ss2

Step 3: In the Windows Recovery Environment, click on Troubleshoot.

This is an image of boot windows 10 in safe mode ss3

Step 4: On the Troubleshoot screen, click on the Advanced options.

This is an image of boot windows 10 in safe mode ss4

Step 5: On the Advanced options screen, click on the Startup Settings option.

This is an image of boot windows 10 in safe mode ss5

Step 6: On the Startup Settings screen, click on the Restart button.

This is an image of boot windows 10 in safe mode ss6

Step 7: After your device restarts, you’ll see a list of options. Select option 5 from the list or press F5 to enter Safe Mode with Networking.

This is an image of boot windows 10 in safe mode ss7

Step 8: Use reputable security software like Malwarebytes or HitmanPro to detect and remove the BBBW malware.

Step 9: After the scan is complete, reboot your PC in normal mode.

Step 10: If you have a backup of your files then you can use system restore and if you don’t have a backup then you can use software like Emsisoft decryptor to decrypt and remove the infected files.

Also read: Which files does ransomware encrypt?