Click on screenshot to zoom
Danger level 7
Type: Trojans
Common infection symptoms:
  • Slow Computer
  • System crashes
  • Connects to the internet without permission
  • Installs itself without permissions
  • Can't be uninstalled via Control Panel

StrutterGear Ransomware

StrutterGear Ransomware has been found the web but it seems that this new ransomware threat needs a few patches to be called a severe threat or finished malware. We believe that this is just the trial run for this new Jigsaw Ransomware variant. It is quite likely that a new version will hit the net soon that will be fully functioning and it might have a different name as well. In any case, when this ransomware slithers onto your system without your knowledge, it tries to shock you with its vulgar ransom note window that seemingly locks your screen. Although it claims that your files have been encrypted and files will be deleted every hour until you finally transfer the ransom fee, this is all hot air and none of your files will be harmed in this attack. Let us emphasize again, if you are infected with this version. We recommend that you remove StrutterGear Ransomware if you do not want any further complications.

It is possible to infect your machine in two or three ways with this annoying ransomware. One of the most frequently used methods is definitely spam e-mails. Cyber criminals can reach a great number of potential victims this way. This spam contains the malicious executable file as an attachment. This file could be called “StrutterGear.exe” but in order to deceive you, it may look like “StrutterGear.JPG.exe” to show up as an image file. Sometimes such an attachment can also look like a Word document or even a video file. This spam can easily trick you because it may regard a matter that you would most likely consider important to you. Since these crooks can make this spam appear to have come from any authentic sender, such as a bank, a phone company, a well-known service provider, and even the local police, you would not really doubt that you need to see it right away. This mail can pretend to be about anything that could draw your attention to it. It could be a notification from your Internet provider about a change, an issue with your bank account that requires your immediate attention, and the like. The only lucky you have this time is that you can delete StrutterGear Ransomware without losing your files.

Another common method for cyber crooks to infect unsuspecting users is that they set up webpages with Exploit Kits (e.g., Angler) and once your browser loads such a page, the malicious Java or Adobe Flash code drops this infection onto your system. The good news is that you can avoid such an attack if you keep your browsers and drivers always up-to-date. You can also drop ransomware threats when you download free files from questionable torrent or shareware pages. These file-sharing websites tend to promote questionable installers and bundles that can contain all kinds of malware infections, including this ransomware. If you want to restore the security of your system, we recommend that you do not waste more time and remove StrutterGear Ransomware right now.

After this infection is started up, it makes a copy of the malicious .exe file in the %APPDATA% folder. It also creates a folder on your desktop called "FileSystemSimulation." This folder contains two files names “NotTxtTest.nottxt” and “TxtTest.txt.” Apart from these, another text file is dropped on your desktop called “Address.txt,” which has a string in it that is indeed a Bitcoin address code that has to be used to pay the ransom fee. Although the ransom note that appears on your screen soon after you launch this attack claims that it has encrypted your files and will delete a growing number of files until you transfer the 500 US dollars worth of Bitcoins, all it really does is encrypt the “TxtTest.txt” file on its test folder, adds a “.tax” extension to its name, and then deletes it after one minute.

The ransom note claims that you have one hour for the first file to be deleted; however, the counter seems to count down from 60 seconds only. Yet, there is no apparent damage to any of your files really. Of course, if a finished version hits the web, you should assume that it will definitely encrypt all your photos, documents, videos, databases, and more. Since there is no encryption, there is no need to panic either and rush to buy Bitcoins to decrypt your files. So maybe it is time for you to act and remove StrutterGear Ransomware from your PC.

Before you can delete all related files, you need to end the malicious process through your Task Manager. Please follow our step-by-step instructions if you would like to eliminate this threat on your own. It is essential that you keep all your programs and drivers regularly updated and not only your browsers if you want to lower the chance that cyber crooks can gain access to your machine. If you would like to have proper protection on your system, we advise you to use a reliable anti-malware application like SpyHunter. What could be more effective than automated malware removal?

Remove StrutterGear Ransomware from Windows

  1. Tap Ctrl+Shift+Esc to open the Task Manager.
  2. Select the malicious process and click End task.
  3. Close the Task Manager.
  4. Tap Win+E to open File Explorer.
  5. Locate the %APPDATA% folder and delete "StrutterGear.exe"
  6. Bin the downloaded malicious file from the folder where you saved it.
  7. Delete the "FileSystemSimulation" folder and the "Address.txt" file from your desktop.
  8. Empty the Recycle bin.
  9. Reboot your computer.
Download Spyware Removal Tool to Remove* StrutterGear Ransomware
  • Quick & tested solution for StrutterGear Ransomware removal.
  • 100% Free Scan for Windows

Post comment — WE NEED YOUR OPINION!

Please enter security code:
This is a captcha-picture. It is used to prevent mass-access by robots.