Decrypt .crypted Files Encrypted by Nemucod Ransomware - How to, Technology and PC Security Forum |

Decrypt .crypted Files Encrypted by Nemucod Ransomware


with SpyHunter

Scan Your System for Malicious Files
Note! Your computer might be affected by Nemucod and other threats.
Threats such as Nemucod may be persistent on your system. They tend to re-appear if not fully deleted. A malware removal tool like SpyHunter will help you to remove malicious programs, saving you the time and the struggle of tracking down numerous malicious files.
SpyHunter’s scanner is free but the paid version is needed to remove the malware threats. Read SpyHunter’s EULA and Privacy Policy

NEMUCOD-RANSOMWARE-MAIN-DECRYPT-SENSORSTECHFORUMRansomware virus known as Nemucod was reported during April to infect multiple machines and stop defensive processes of Windows and security software on them to remain active on the infected computer. The virus also encrypts files with a very strong encryption algorithm demanding 200$ from users affected by it.

Fortunately, a free decrypter has been released and in this article, we aim to show you how to work with it to decode your files.

Nemucod Ransomware – More Information

When it was released, Nemucod was reported to take advantage of several methods to infect users. One of the methods reported was spammed e-mails containing attachments or malicious URLs. Another method of distributing this malware may be via social media spammed messages which include files or malicious links as well.

Nemucod was often confused with the legitimate program, dubbed Nemucod. This virus also uses remote locations to which it connects, allowing it to be controlled from there.

The program also may create multiple files in the %AppData% folder along with its main executable that conducts the encryption process.

It has been reported to possibly attack the following types of files and encipher them, making them no longer openable by any type of software:

→ docm, .docx, .dotm, .dotx, .gzip, .html, .index, .java, .jfif, .jpeg, .json, .litcofee, .pages, .php3, .php4, .php5, .7zip, .aspx, .bash, .bookmarks, .class, .config, .csproj, .phps, .phpt, .phtml, .potm, .potx, .ppam, .ppsm, .ppsx, .pptm, .pptx, .prproj, .psm1, .resx, .scpt, .shtml, .sitx, .sldm, .sldx, .splus, .sqlite, .sqlite3, .swift, .tar.gz, .thmx, .tiff, .vcxproj, .xcodeproj, .xhtm, .xhtml, .xlsx, .zipx Source: Infected users

Nemucod Removal Instructions

Fortunately for us, Nemucod is easily decryptable. The only prerequisite for this is to have Nemucod removed from your computer. To do this, follow our removal instructions below:

1 Comment

  1. Antonio Ramos Arroyo

    Problemas con ramsonware .crypted
    Por mas que he intentado descifrar no hay manera, siempre me dice que los archivos son diferentes, he probado con mas de 20 archivos y estoy desesperado, necesito abrir una base de datos unicamente, el resto del disco duro me da igual


Leave a Comment

Your email address will not be published. Required fields are marked *

Time limit is exhausted. Please reload CAPTCHA.

Share on Facebook Share
Share on Twitter Tweet
Share on Google Plus Share
Share on Linkedin Share
Share on Digg Share
Share on Reddit Share
Share on Stumbleupon Share