.Mole66 Virus Ransomware Removal (+File Recovery)

The encrypted files may not be the only damage done to you. parasite may still be hiding on your PC. To determine whether you've been infected with ransomware, we recommend downloading SpyHunter.

Download SpyHunter Anti-Malware

More information on SpyHunter, steps to uninstallEULAThreat Assessment Criteria, and Privacy Policy.

How irritating is this problem? (2 votes, average: 5.00)

This page aims to help you remove .Mole66 Virus Ransomware for free. Our instructions also cover how any .Mole66 file can be recovered.

.Mole66 is a malicious Ransomware program that has been noticed recently. The hackers who, stand behind this infection, are trying to aggressively distribute this file-encrypting malware in order to attack people all around the world. While the encryption process of .Mole66 is running, you may notice a decrease in the performance speed of the infected machine. However, the computer may work slowly due to many different reasons, and a possible Ransomware attack is not the only thing that may come to your mind. Once the virus makes all target files inaccessible by securing them with a complex encryption algorithm, it creates a ransom-demanding file and keeps it on the desktop. The ransom message file opens through a web browser or via notepad and explains that the files have been encrypted and that the victim has to pay if they want to get them back. The virus is likely to demand the money in the bitcoin cryptocurrency, because in this way, the creators of the Ransomware can receive the money and remain anonymous at the same time.

You should not get misled by the threatening message of .Mole66 ransomware, though. Get rid of this virus as soon as possible and you may even be able to save some of your files without issuing the requested payment. To remove this crypto malware in the fastest way possible, you need to get a professional anti-virus tool such as the .Mole66 removal tool posted within the current page. If you want to delete the Ransomware manually, check out the .Mole66 removal guide at the end of the article to find out how to successfully handle this task.

.Mole66 Ransomware

.Mole66 Virus File

.Mole66 – a new version of the infamous Ransomware Virus

Recently, cyber security specialists have detected this new cryptovirus that seeks to lock the victims’ files with a new and sophisticated algorithm. It may also place a new file extension at the end of each encrypted file. After the data has been secured, the virus leaves a ransom file, which briefly informs the user about the attack. It also contains instructions that explain exactly how the money needs to be paid by the victim.

This malware has been reported to be spreading through various online transmitters but the most numerous attacks have been registered via spam email messages that come with a malicious attachment. To reduce the likelihood of encountering this virus, you can take advantage of these tips:

  • Update your OS and security apps and important programs such as Java and Adobe Flash Player with the latest security update available.
  • Do not open emails and attachments that seem like spam or are sent from unfamiliar senders
  • Avoid clicking on ads, links, and pop-ups that may come on your screen
  • Do not visit sketchy sites, non-reputed web pages or platforms that spread pirated content.
  • Do not download and install software updates or software packages from non-trusted web developers and carefully select what programs you allow to become part of your system.

.Mole66 Virus Ransomware Removal



Some of the steps will likely require you to exit the page. Bookmark it for later reference.

Reboot in Safe Mode (use this guide if you don’t know how to do it).



We get asked this a lot, so we are putting it here: Removing parasite manually may take hours and damage your system in the process. We recommend downloading SpyHunter to see if it can detect parasite files for you.

Press CTRL + SHIFT + ESC at the same time and go to the Processes Tab. Try to determine which processes are dangerous. 


Right click on each of them and select Open File Location. Then scan the files with our free online virus scanner:

Drag and Drop Files Here to Scan
Maximum file size: 128MB.

This scanner is free and will always remain free for our website's users. You can find its full-page version at: https://howtoremove.guide/online-virus-scanner/

Scan Results

Virus Scanner Result

After you open their folder, end the processes that are infected, then delete their folders. 

After you open their folder, end the processes that are infected, then delete their folders. 

Note: If you are sure something is part of the infection – delete it, even if the scanner doesn’t flag it. No anti-virus program can detect all infections.


Hold the Start Key and R –  copy + paste the following and click OK:

notepad %windir%/system32/Drivers/etc/hosts

A new file will open. If you are hacked, there will be a bunch of other IPs connected to you at the bottom. Look at the image below:

hosts_opt (1)

If there are suspicious IPs below “Localhost” – write to us in the comments.

Type msconfig in the search field and hit enter. A window will pop-up:


Go in Startup —> Uncheck entries that have “Unknown” as Manufacturer.

  • Please note that ransomware may even include a fake Manufacturer name to its process. Make sure you check out every process here is legitimate.


To remove parasite on your own, you may have to meddle with system files and registries. If you were to do this, you need to be extremely careful, because you may damage your system.

If you want to avoid the risk, we recommend downloading SpyHunter
a professional malware removal tool.

More information on SpyHunter, steps to uninstallEULAThreat Assessment Criteria, and Privacy Policy.

Type Regedit in the windows search field and press EnterOnce inside, press CTRL and F together and type the virus’s Name. 

Search for the ransomware  in your registries and delete the entries. Be extremely careful –  you can damage your system if you delete entries not related to the ransomware.

Type each of the following in the Windows Search Field:

  1. %AppData%
  2. %LocalAppData%
  3. %ProgramData%
  4. %WinDir%
  5. %Temp%

Delete everything in Temp. The rest just check out for anything recently added. Remember to leave us a comment if you run into any trouble!


How to Decrypt .Mole66 files

We have a comprehensive (and daily updated) guide on how to decrypt your files. Check it out here.

A commonly used distribution method is phishing emails that download the executable malware file. Spam emails might look extremely authentic. Thus, victims are being led to open the attachments that are intended to put the Ransomware into the system. Additionally, the encryption virus can also be distributed through malware-infected ads and exploitation tools.

That’s why we advise you to stay away from ads that offer things that are too good to be real. It’s also a good idea to ignore ads from suspicious webpages, especially if you are pressured to install “necessary updates”. Such updates are usually grouped with malicious components. Finally, be careful with the web addresses you go to – there are a lot of shady and illegal sites out there that are used for malware distribution so always keep an eye out for any red flags.

Removal Procedure for .Mole66

We advise you to remove .Mole66 using trusted security software as it will save you time and remove other malicious programs that may hinder your computer’s performance. However, we also want to alert you that some types of malicious software may try to prevent you from downloading an antivirus program or inhibit the functionality of the one that you might already have. You can generally overcome this by first starting your computer in Safe Mode. Additionally, you should know that the manual removal of .Mole66 is a potential solution but we advise you to make use of it only if you think that you can complete all of its steps exactly in the way they are described. If you do not have enough experience, you may delete important files or registry keys that can cause many problems with the stability of your computer. Therefore, it is safer for you to clean the system using the professional .Mole66 removal tool (or any other antivirus program you have). If the Ransomware tries to prevent you from installing or using security software, the instructions in the Removal Guide that follows may be helpful.


Name .Mole66
Type Ransomware
Danger Level High (Ransomware is by far the worst threat you can encounter)
Symptoms Very few and unnoticeable ones before the ransom notification comes up.
Distribution Method From fake ads and fake system requests to spam emails and contagious web pages.
Data Recovery Tool Currently Unavailable
Detection Tool

If the guide doesn’t help, download the anti-virus program we recommended or try our free online virus scanner. Also, you can always ask us in the comments for help!

Leave a Comment