Alphabet Ransomware Removal Guide

Do you know what Alphabet Ransomware is?

Alphabet Ransomware has been created and enters computers in order to steal money from people. Unlike other ransomware infections, it does not encrypt any files, but places a borderless window on Desktop claiming that files have already been encrypted and a ransom needs to be paid to get those files back. There is a possibility that this computer infection will be updated one day and thus will start encrypting users’ valuable data. In this case, making a payment to cyber criminals is still not the best solution to the problem. What you should do instead of going to transfer the required money is to delete Alphabet Ransomware from the system as soon as possible. Keeping this threat installed might result in the entrance of other malicious applications. Go to get rid of it if your files have not been encrypted too because you might find them all locked after a certain update Alphabet Ransomware might get. Last but not least, it is a must to do that because it is very likely that this infection will keep connecting to the Internet without your permission every day.Alphabet Ransomware Removal GuideAlphabet Ransomware screenshot
Scroll down for full removal instructions

Alphabet Ransomware always enters computers without permission. Once its malicious file is launched, it opens a window with a Windows OS logo. There are only two words there: “Preparing update.” While this ransomware infection does not encrypt users’ files, other similar threats usually open windows like this in order to be able to perform the encryption process without interruption. After they finish encrypting files, a window is opened on Desktop. Alphabet Ransomware opens a green borderless window too even though it does not encrypt users’ files. It contains the following message:

Your computer has been struck by the Alphabet Ransomware. All your documents are encrypted with the strongest encryption algorithms.

There is no way to decrypt your files without purchasing a special decryption key and typing it here. To get the decryption key you should pay


IF you will kill this application, the decryption key will be destroyed aswell and NO ONE will be able to decrypt your files

Even though it demands a ransom of 1 Bitcoin, there is no point in paying this money because Alphabet Ransomware does not encrypt files. On top of that, cyber criminals have not left the Bitcoin address for users, so it is impossible to transfer the required money. If a new version of Alphabet Ransomware is released and you encounter it, you might, unfortunately, find your pictures, documents, music, and video files encrypted. In this case, you should not go to pay money to cyber criminals. Instead, you should try to recover files in an alternative way, for example, you should try out all available file recovery tools. Also, it is possible to recover files easily from a backup. This backup has to be located on an external storage device because the one kept on the system is, most probably, encrypted by ransomware too.

You will not find a ransomware infection available for download on some kind of website because they are usually distributed in a different way. Research carried out by our team of specialists has revealed that this threat usually travels in spam email attachments. Of course, this attachment is not called ransomware.exe. Instead, it usually looks like a simple .pdf or .doc document. This explains why there are so many people who open these attachments and allow a ransomware infection to enter their computers. Most probably, Alphabet Ransomware has appeared on your PC because you have opened an attachment from a spam email too. Do not make the same mistake again – stay away from spam emails you receive if you do not wish a new ransomware infection to find a way to your computer. If you have doubts that you can protect your PC from harm alone, you should install a security application on your system too.

It is, unfortunately, not a piece of cake to delete Alphabet Ransomware from the system even though this computer infection does not drop any files on the system, does not make modifications in the system registry, and does not block system utilities like other similar threats do. It is because the window it opens cannot be closed by clicking X. On top of that, users need to find and erase a malicious file that might have any name. Do not worry if you cannot find this file because an automatic malware remover, e.g. SpyHunter is ready to help you. Keep in mind that your files will not be unlocked after the removal of Alphabet Ransomware if you have encountered its new version that has encrypted your files.

Delete Alphabet Ransomware

  1. Open the Task Manager by pressing Ctrl+Shift+Esc.
  2. Open the Processes tab.
  3. Check the list of processes and locate the one belonging to Alphabet Ransomware.
  4. Right-click on it and click End Process to kill it.
  5. Press Win+E.
  6. Type %USERPROFILE%\Downloads (check other directories if you cannot find a malicious file there) in the URL bar and delete the malicious file.

In non-techie terms:

If you have already removed Alphabet Ransomware manually, you should still perform a system scan with a reputable antimalware scanner because other threats might be hiding deep on your system and performing various activities. They might even help a new malicious application to sneak onto the computer. Theoretically, it should be possible to find those threats manually too, but it will be a really difficult task since all the places on the computer have to be checked and malware recognized.