Alcatraz Ransomware Removal Guide

Threat Level:
Rate this Article:
Comments (0)
Article Views: 548
Category: Trojans

Alcatraz Ransomware is a dangerous computer infection that, just like other similar threats from this category, enters systems secretly to encrypt personal files stored on the computer. It does that using the AES-256 encryption algorithm, meaning that it will be very hard or even impossible to decrypt files it locks without the special key. Even though Alcatraz Ransomware is a new threat, it does not differ from older ransomware infections in any way, i.e. it encrypts files it finds on the system, it leaves a ransom note asking users to pay a certain amount of money to get the decryption tool, and, finally, it enters computers illegally. Even though it enters systems without permission, it will soon become clear that this threat is inside the system if it really ever manages to sneak onto the computer. If you are sure that Alcatraz Ransomware is responsible for a bunch of encrypted personal files on your computer as well, you should rush to delete it. Researchers working at suggest deleting this ransomware infection without paying the ransom to cyber criminals despite the fact that it is said that users who decide not to make a payment will lose their personal data permanently.

Alcatraz Ransomware enters the system and then immediately scans the %USERPROFILE% directory and its subfolders. If it finds personal files there (e.g. documents, images, pictures, music files, etc.), it encrypts them all by placing the .Alcatraz extension. Unfortunately, it encrypts .exe files as well, so you might notice that some of your programs can no longer be opened too. Once Alcatraz Ransomware finishes encrypting data stored on the computer, it creates a file ransomed.html on Desktop. If you open it, you will find out immediately what has happened to your files. Also, it will become clear for you what you have to do to unlock those files encrypted by Alcatraz Ransomware. Actually, this ransomware infection does not differ from similar threats prevalent these days in a sense that it also asks users to pay a ransom. At the time of writing, the size of the ransom it asks is 0.5 BTC (approximately 350 dollars). Even though it is said that all the encrypted data will be lost, you should not transfer the money cyber criminals require because they might not send you anything even though they promise to give you the private key for unlocking files after receiving the payment. In addition, if cyber criminals always get what they want, they will definitely not stop creating malicious software.

Unfortunately, there is not much you can do to unlock your files if you are not going to transfer money to cyber criminals. Researchers at have also confirmed that it is impossible to unlock personal files having the .Alcatraz extension at the time of writing. Of course, it does not mean that the free decryption tool will not be released by specialists in the future. Therefore, we suggest that you do not hurry to delete those personal files encrypted by the ransomware infection after the removal of Alcatraz Ransomware.

Before we start talking about the deletion of this ransomware infection, you should know how ransomware infections are usually distributed in order to lower the chances of allowing a similar threat to enter the system in the future. According to security specialists working at, ransomware infections are usually spread in spam emails, and they come inside them as attachments. Even though these attachments look harmless, the malicious software immediately sneaks onto the computer if a user opens it. Ignore ALL spam emails you get and promise us to install a reputable antimalware tool on your PC in the near future if you do not wish to encounter malware ever again.

Even though personal data encrypted by Alcatraz Ransomware will not be unlocked for you, you need to remove this infection from your PC right now so that it could not encrypt your new files again. Fortunately, Alcatraz Ransomware does not have a point of execution (PoE) and does not create files on the system, so it should not be very hard to remove it. What you will mainly have to do is to find and erase the malicious file you have opened. It might be located in the Downloads and Temp folders or Desktop. If you cannot find it, scan your system with SpyHunter to solve this problem – it will find and fully delete ALL the infections from your computer.

Delete Alcatraz Ransomware

  1. Locate and delete the malicious file you have launched (check %TEMP%, %USERPROFILE%\Downloads, and Desktop).
  2. Remove the ransom note ransomed.html from Desktop.
  3. Empty the Recycle bin.
Download Remover for Alcatraz Ransomware *
*SpyHunter scanner, published on this site, is intended to be used only as a detection tool. To use the removal functionality, you will need to purchase the full version of SpyHunter.

Alcatraz Ransomware Screenshots:

Alcatraz Ransomware
Alcatraz Ransomware


Your email address will not be published.


Enter the numbers in the box to the right *