SuddenTax Ransomware : Quick Steps To Remove SuddenTax Ransomware From PC

SuddenTax Ransomware : New Ransomware Culprit On The Rise


SuddenTax Ransomware is a file encoder ransomware that is spotted in the third week of February 2018. Malware experts alerted that the ransom culprit enters on your system through suspicious phishing emails and corrupted Microsoft Word files that might contain infected macro scripts. Infectious macros is broadly used into spreading ransomware infection since 2015 when several infamous ransomware emerged like Barrax Ransomware and similar others were inserted into your computers through exploiting using Microsoft Word doc files using malicious macros. The ransomware is not a new threat it is a based on the infamous Globe Imposter 2.0 Ransomware that is also uses same mechanism of attack. Some more infecting tricks are like spam email attachments, file sharing on Internet, corrupted codes, infectious ads or links, fake updates and so on. You should avoid to open suspicious doc files and emails that might send by unknown.

remove SuddenTax Ransomware

SuddenTax Ransomware : Threat Inspection


SuddenTax Ransomware






File extension


Ransom demand

$19,900 USD/15880 EURO (2 Bitcoins)


Spam emails attachments, corrupt or malicious macro scripts or codes etc.

Infected systems

Windows OS

Detection Tool

Free Scanner to detect SuddenTax Ransomware

What Are The Consequences Produced By The SuddenTax Ransomware?

Once this dangerous SuddenTax Ransomware successfully got inside of your system then it begin to configure your system to collect all your files such as images, family photos, databases, spreadsheets, audio, videos, and official doc files, presentations, html, texts, or similar others. Then after it run encryption on your system using powerful encipher algorithm to lock all your files. After following successful encryption on targeted files it appends ".suddentax" new file extension to the compromised files. It also deleted the Shadow Volume Copies from Windows Explorer to get recovery of files but it is also deleted by the infection. So in this case you only access your files when you have a proper decryption key or software that you have to buy from the hacker by paying the ransom money as a fess. It sends a ransom note on affected system screen that delivers ransom payment instructions and decryption details. The ransom note content can be seen as

remove SuddenTax Ransomware

Hence you need to remove SuddenTax Ransomware from infected system as soon as possible by using a trusted anti-malware on affected machine. You can use kept backup to restore damages files. You can also follow the below given manual removal to eliminate ransomware but you should be very careful. 

Free Scan your Windows PC to detect SuddenTax Ransomware


Remove SuddenTax Ransomware From Your PC

Step 1: Remove SuddenTax Ransomware in Safe Mode with Command Prompt

  • First of all disconnect your PC with network connection.
  • Click restart button and keep pressing F8 key regularly while system restart.


  • You will see “Windows Advanced Options Menu” on your computer screen.

Windows Advanced Options Menu

  • Select “Safe Mode with Command Prompt” and press Enter key.

safe mode with command promt

  • You must login your computer with Administrator account for full privilege.


  • Once the Command Prompt appears then type rstrui.exe and press Enter


  • Now follow the prompts on your screen to complete system restore.

Step 2: Remove SuddenTax Ransomware using MSConfig in Safe Mode:

  • Power off your computer and restart again.
  • While booting press the “F8 key” continuously to open “Windows Advanced Options Menu”.


  • Use the arrow keys to select “Safe Mode” option and press Enter key.

Safe mode

  • Once system get started go to Start menu. Type “msconfig” in the search box and launch the application.


  • Go to the Startup tab and look for files from %AppData% or %Temp% folders using rundll32.exe. See an example below:

C:\Windows\System32\rundll32.exe C:\Users\username\appdata\local\temp\regepqzf.dll,H1N1

  • Disable all the malicious entries and save the changes.
  • Now restart your computer normally.

Step 3 : Kill Malicious Process Related To SuddenTax Ransomware

  • Press Alt+Ctrl+Del buttons together.


  • It will open the Task manager on your screen.
  • Go to Process Tab and find SuddenTax Ransomware related process.
  • Click the End Process Now button to stop the running process.

Step 4 : Remove SuddenTax Ransomware Virus From Registry Entry

  • Press “Windows + R” key together to open Run Box.


  • Type “regedit” and click OK button.


  • Find and remove SuddenTax Ransomware related entries.












Now hopefully you have completely removed the SuddenTax Ransomware virus from your computer. If you are still get ransom message from the threat or unable to access your files, then it means that virus still remain into your computer. In such situation you don’t have any other option except removing this virus using any powerful malware removal tool.

Whereas if you have any backup of your infected or encrypted files, then you can also reinstall your Windows OS. This will erase all your files and data as along with the SuddenTax Ransomware infection. You will get a completely empty computer system with no files. Now you can use your backup to get your files. If you don’t have any backup then using malware removal tool is a better option for you.


If you have any query or question regarding your computer, then you can easily ask your problem to our experts. Go to the Ask Any Question page and get the answer for your query directly from out experts.


Skip to toolbar