360fans_u41069536 发表于 2019-11-22 16:32

文档类型是READINSTRUCTIONS的病毒

本帖最后由 Potato 于 2019-11-25 18:52 编辑

文档类型是READINSTRUCTIONS的病毒

简简单单chao 发表于 2019-11-22 19:25

您好,麻烦您上传下勒索信息,便于我们这边确认

360fans_u41069536 发表于 2019-11-25 10:35

All your data are encrypted! What happened?Your files are encrypted, and currently unavailable.You can check it: all files on you computer has new expansion. By the way, everything is possible to recover (restore), but you need to buy a unique decryptor.Otherwise, you never cant return your data.For purchasing a decryptor contact us by email:broccoli007@protonmail.com If you will get no answer within 24 hours contact us by our alternate emails:broccoli007@cock.li   What guarantees?Its just a business. If we do not do our work and liabilities - nobody will not cooperate with us. To verify the possibility of the recovery of your files we can decrypted 1 file for free.Attach 1 file to the letter (no more than 10Mb). Indicate your personal ID on the letter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ttention! - Attempts of change files by yourself will result in a loose of data.- Our e-mail can be blocked over time. Write now, loss of contact with us will result in a loose of data. - Use any third party software for restoring your data or antivirus solutions will result in a loose of data.- Decryptors of other users are unique and will not fit your files and use of those will result in a loose of data. - If you will not cooperate with our service - for us, its does not matter. But you will lose your time and data, cause just we have the private key.

360fans_u41069536 发表于 2019-11-25 10:41


360fans_u41069536 发表于 2019-11-25 10:43


<!DOCTYPE html>

<html>

<head>
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=Edge">
    <meta name="viewport" content="width=device-width, initial-scale=1, minimum-scale=1, user-scalable=yes">
    <title>Title</title>

<style>
    html, body, div, span, applet, object, iframe,
h1, h2, h3, h4, h5, h6, p, blockquote, pre,
a, abbr, acronym, address, big, cite, code,
del, dfn, em, img, ins, kbd, q, s, samp,
small, strike, strong, sub, sup, tt, var,
b, u, i, center,
dl, dt, dd, ol, ul, li,
fieldset, form, label, legend,
table, caption, tbody, tfoot, thead, tr, th, td,
article, aside, canvas, details, embed,
figure, figcaption, footer, header, hgroup,
menu, nav, output, ruby, section, summary,
time, mark, audio, video {
margin: 0;
padding: 0;
border: 0;
font-size: 100%;
font: inherit;
vertical-align: baseline; }

/* HTML5 display-role reset for older browsers */
article, aside, details, figcaption, figure,
footer, header, hgroup, menu, nav, section {
display: block; }

body {
font-family: Tahoma, Arial;
background: #717798; }

.all {
max-width: 1170px;
margin: auto;
background: #000;
min-height: 100px;
border-radius: 10px; }

.tl {
text-align: center;
color: #e03930;
font-family: Tahoma;
font-size: 28px;
font-weight: 700;
position: relative;
height: 60px;
line-height: 60px;
}

.close {

padding: 15px;
width: 36px;
height: 36px;
position: absolute;
right: 15px;
top:0;
}

.bg {
background: #252a42;
text-align: center;
color: #ffffff;
padding: 25px 15px;
font-size: 18px;
font-weight: 400;
line-height: 20px; }
.bg span {
    color: #f25252; }
.bg a {
    color: #9676fd;
    font-size: 20px;
    font-style: italic;
    text-decoration: none;
    line-height: 35px; }
.bg c {
    color: #f25252;
    font-weight: 500;
    font-size: 20px;
    line-height: 35px;}
.footer {
padding: 15px 0;}


.tl2 {
text-align: center;
color: #e03930;
font-size: 25px;
font-weight: 500;
line-height: 32px;
text-decoration: underline;
padding-bottom: 15px; }

.text {
min-height: 192px;
color: #ffffff;
font-size: 16px;
font-weight: 500;
line-height: 24px; }
.text div {
    padding-right: 50px;
    padding-left: 50px; }
@media (max-width: 767px) {
    .tl {
      height: auto;
      padding-right: 50px;
      line-height: 1.5;
    }
.text div {
    padding: 0 15px; }
.footer {
    background: none; } }



</style>
</head>

<body>
    <div class="all">


<div class="container">
    <div class="tl">All your data are encrypted!

      <div class="close"></div></div>


      <div class="bg">
            
               <c>What happened?</c> <br>
                Your files are encrypted, and currently unavailable. <br>
                You can check it: all files on you computer has new expansion.<br>
                By the way, everything is possible to recover (restore), but you need to buy a unique decryptor. <br>
                Otherwise, you never cant return your data.<br>
                <br>
<c>For purchasing a decryptor contact us by email: </c><br>
                <a href="mailto:broccoli007@protonmail.com">broccoli007@protonmail.com</a><br>
                If you will get no answer within 24 hours contact us by our alternate emails: <br>
                <a href="mailto:broccoli007@cock.li">broccoli007@cock.li</a> <br>
                <br>
                <c>What guarantees?</c> <br>
                Its just a business. If we do not do our work and liabilities - nobody will not cooperate with us.<br>
                To verify the possibility of the recovery of your files we can decrypted 1 file for free. <br>
                Attach 1 file to the letter (no more than 10Mb). Indicate your <b>personal ID</b> on the letter:<br>
         
               <span style="width:800px; word-wrap:break-word; display:inline-block; color: #ffffff; font-size: 10px;">1F7E2B3C3A3431D7ED370297920F320CBEAA3E543FFF1BF507FAC4A2080D0795E959EDF56AAC2A3D6742F6CE37FF5A548D4FC2834F7D452F81F787BA392AC666<br>8E82380D98BA8ADD884820FF8E8EC5B31D45E8F67ABD556EC2033061CECC558CBA7EBE44F238C487782C2B334947605922BEAD3C7D2A208F85397EBC6B18<br>48C38D03CA39DDDDC9361108A59E633F9E23C9F8DCA130353BEA1B8F37FB779A9C49720EAF4D39518CA56B0812EC49C4060DA8E31460862DD16C565FAC5B<br>E8D52961217B06C58641BFF73F0AF7F6D3281820870EA332E132044D9ABC2464906FE819E6CC19D3D7DBC3F124C89E06A7AB05ADE06D0C248D401392C142<br>CDF59B9F51AFFBC7B4FDA8754DFAD7BBDA1B47A4F4D7EEC5AA6A71A09E722AD2B30806260AD1FA1C34F8085E4C0AFA1F44ADC24FB77101F4E7B392542B15<br>8AE9CFEDE9B6AAF340D37EC3D77AE3D1803F5E59F34A3AB5A9378615D16D017751CBCC062415F6787780EA47AB22805AF7C09CA0F522E1D2D513E841F292<br>00AE8C96FB4AE793F7913325C4274BCFD828DCB1D6A80E5A16F81895799A25EE5EF05A82FA6521CDFAB66B122EAE44E2ED9C4AD2FBA7C0E4BA35BD69F719<br>46170D4246991E90C59976B04E3947F2B58D233B81D8F24A4300F2E720A739D7263E527D122C19E66693E85043A0A098C4C605A09872D78C08BD4850FEB4<br>29F69F6B78F9F206385EF25CCE75</span>
               <br>   
                  
               
      </div>
<div class="footer">
    <div class="tl2">
      Attention!
    </div>
    <div class="bg2">
      <div class="text">
   <div>
                - Attempts of change files by yourself will result in a loose of data. <br>
                - Our e-mail can be blocked over time. Write now, loss of contact with us will result in a loose of data.<br>
                - Use any third party software for restoring your data or antivirus solutions will result in a loose of data. <br>
                - Decryptors of other users are unique and will not fit your files and use of those will result in a loose of data.<br>
                - If you will not cooperate with our service - for us, its does not matter. But you will lose your time and data, cause just we have the private key.
   </div>

      </div>
    </div>
</div>


</div>
    </div>

</body>
</html>


简简单单chao 发表于 2019-11-25 18:54

您好,很抱歉,此类勒索病毒属于:Medusalokcer家族 ,目前暂时不支持解密
1.如果文件不急需,可以备份等我们出解密工具,出解密工具我们会通知
2.如果文件急需,可以自行联系黑客(有可能付款拿不到解密工具)或者第三方(价格高于黑客)。   

防护建议:
1.多台机器,不要使用相同的账号和口令
2.登录口令要有足够的长度和复杂性,并定期更换登录口令
3.重要资料的共享文件夹应设置访问权限控制,并进行定期备份
4.定期检测系统和软件中的安全漏洞,及时打上补丁。
5.定期到服务器检查是否存在异常。查看范围包括:
a)是否有新增账户
b) Guest是否被启用
c) Windows系统日志是否存在异常
d)杀毒软件是否存在异常拦截情况
6.安装安全防护软件,并确保其正常运行。
7.从正规渠道下载安装软件。
8.对不熟悉的软件,如果已经被杀毒软件拦截查杀,不要添加信任继续运行。

360fans_uid38878722 发表于 2019-11-29 20:54

我的电脑也是被这个病毒加密了,全部文件不能打开,请问有解密方法了吗?

360fans_u41162370 发表于 2019-12-2 11:50

本帖最后由 旺财 于 2019-12-2 16:53 编辑

问题解决了吗?462148455 我QQ 我可以给你试试

360fans_uid42043178 发表于 2020-2-28 16:42

我是的中了这个病毒,希望能快点出解密工具{:15_451:}

360fans_uid42043178 发表于 2020-2-28 16:42

我也中了{:15_451:}

360fans_uid42043178 发表于 2020-2-28 16:43

我也是被加密了{:15_451:}

360fans144828200 发表于 2020-3-3 15:20

后面排个队,希望早点出解密工具{:15_451:}

360fans144828200 发表于 2020-3-3 15:20

在后面排个队,希望能快点出解密工具{:15_451:}

360fans144828200 发表于 2020-3-3 15:21

我也中了,希望能早点出解密工具{:15_451:}

360fans144828200 发表于 2020-3-3 15:21

希望能快点出解密工具{:15_451:}

360fans144828200 发表于 2020-3-3 15:22

{:15_451:}早点出解密工具吧

拉风的叮当猫 发表于 2020-3-17 09:47

我们的家用的小服务器也中了这病毒,求解密工具!{:15_454:}

360fans_xaCOuW 发表于 2020-5-22 14:02

我也需要解密工具,!!!!QQ2850985701

360fans_xaCOuW 发表于 2020-5-22 14:03

我们服务器也被这个病毒加密所有文件了,继续解密工具!!!!!!!!!!!!!!!!!!!!!!!!!!!

360fans_tIBqSC 发表于 2020-7-26 09:51

服务器也中毒了现在破解工具出来了嘛

360fans3251281543 发表于 2020-7-28 00:36

发表于 1970-1-1 08:00

360fans23277355 发表于 2020-8-10 11:45

现在有解密工具出来了吗?我电脑也中标了{:15_451:}

360fans82766319 发表于 2021-2-20 18:26

我也中招了{:15_451:}

360fans82766319 发表于 2021-2-20 18:27

我也中招了{:15_451:}

360fans82766319 发表于 2021-2-20 18:28

我也中招了{:15_451:}

360fans82766319 发表于 2021-2-20 18:29

我也中招了{:15_451:}

360fans52477355 发表于 2021-8-18 17:36

请问出来解密工具了吗?
页: [1]
查看完整版本: 文档类型是READINSTRUCTIONS的病毒