Simple_Encoder Ransomware Removal Report – Get Rid Of Simple_Encoder Ransomware

How Simple_Encoder Ransomware Break Into your PC ?

Simple_Encoder Ransomware is also known as Tilde ransomware or [email protected] It is a new file encryption virus which is also detected by some security vendors as a Trojan virus that uses ciphers to make victim’s personal files inaccessible. It is named as Tilde ransomware because it encrypts files with a “~” (swung punctuation mark or Tilde). As for example a file named as My_Video.avi will be renamed as My_Video.avi.~ after encryption. Thereafter the cryptomalware allow its authors to raise a demand of ransom against encrypted files. Simple_Encoder Ransomware infection generally enter into any targeted online computer via Spam email as an attachment. To distribute this ransomware infection the developers craftily spread such emails that pretends like am official mail from your favorite online shopping website and the malicious attachment seems identical to an invoice. So the innocent online users attempt to open XSLX file which ask user to enable macro. In the background, the malicious codes within the Spam email attachment get executed and utilized Internet connection to activate Simple_Encoder Ransomware on that targeted machine.

How To Get Rid Of Simple_Encoder Ransomware ?

To crack file encryption by Simple_Encoder Ransomware is not so simple. The cryptomalware has utilized AES – 256 file encryption algorithm to victims personal files completely inaccessible and useless. It also creates ransomware notes in different formats like an image file, text file and HTML file. The victims can notice that the desktop background image has been replaced with img.bmp which always remind victims about file encryption on their computer and also provoke then to contact authors of this ransomware on an email address : [email protected] It assigns a sixteen characters unique identifier string for each individual victims and force them to pay 0.8 Bitcoins (around $520) in order to supply decryption keys for their files. However it is not guaranteed that victims will get proper decryption keys or tool because cyber criminals does not care about victims welfare after receiving ransom amount. Moreover it may possible that they increase the amount of ransomware or directly refuse to provide decryption keys. So the victims of ransomware attack, suffers with loss of money and data too. So paying ransom is not a good idea in order to recovery of encrypted files by Simple_Encoder/Tilde Ransomware. The victims should immediately take removal steps after experiencing file encryption by this ransomware. To completely get rid of Simple_Encoder Ransomware infection you can follow steps that is mentioned below on this page.

Free Scan your Windows PC to detect Simple_Encoder Ransomware


Remove Simple_Encoder Ransomware From Your PC

Step 1: Remove Simple_Encoder Ransomware in Safe Mode with Command Prompt

  • First of all disconnect your PC with network connection.
  • Click restart button and keep pressing F8 key regularly while system restart.


  • You will see “Windows Advanced Options Menu” on your computer screen.

Windows Advanced Options Menu

  • Select “Safe Mode with Command Prompt” and press Enter key.

safe mode with command promt

  • You must login your computer with Administrator account for full privilege.


  • Once the Command Prompt appears then type rstrui.exe and press Enter


  • Now follow the prompts on your screen to complete system restore.

Step 2: Remove Simple_Encoder Ransomware using MSConfig in Safe Mode:

  • Power off your computer and restart again.
  • While booting press the “F8 key” continuously to open “Windows Advanced Options Menu”.


  • Use the arrow keys to select “Safe Mode” option and press Enter key.

Safe mode

  • Once system get started go to Start menu. Type “msconfig” in the search box and launch the application.


  • Go to the Startup tab and look for files from %AppData% or %Temp% folders using rundll32.exe. See an example below:

C:\Windows\System32\rundll32.exe C:\Users\username\appdata\local\temp\regepqzf.dll,H1N1

  • Disable all the malicious entries and save the changes.
  • Now restart your computer normally.

Step 3 : Kill Malicious Process Related To Simple_Encoder Ransomware

  • Press Alt+Ctrl+Del buttons together.


  • It will open the Task manager on your screen.
  • Go to Process Tab and find Simple_Encoder Ransomware related process.
  • Click the End Process Now button to stop the running process.

Step 4 : Remove Simple_Encoder Ransomware Virus From Registry Entry

  • Press “Windows + R” key together to open Run Box.


  • Type “regedit” and click OK button.


  • Find and remove Simple_Encoder Ransomware related entries.












Now hopefully you have completely removed the Simple_Encoder Ransomware virus from your computer. If you are still get ransom message from the threat or unable to access your files, then it means that virus still remain into your computer. In such situation you don’t have any other option except removing this virus using any powerful malware removal tool.

Whereas if you have any backup of your infected or encrypted files, then you can also reinstall your Windows OS. This will erase all your files and data as along with the Simple_Encoder Ransomware infection. You will get a completely empty computer system with no files. Now you can use your backup to get your files. If you don’t have any backup then using malware removal tool is a better option for you.

Tutorial Guide To Remove Simple_Encoder Ransomware virus


If you have any query or question regarding your computer, then you can easily ask your problem to our experts. Go to the Ask Any Question page and get the answer for your query directly from out experts.