PopcornTime勒索病毒家族详情
勒索病毒家族名称:PopcornTime勒索病毒家族是否支持解密:否
详情:
被加密文件:
被加密文件后缀格式: 修改文件后缀为filock
勒索提示信息:
文件名:save_your_files.txt
文件内容 :
-------------------------------------------------------------------------------
Warning Message!!
=================
We are sorry to say that your computer and your files have been encrypted,
but wait, don't worry. There is a way that you can restore your computer and all of your files
*********************************************************************************************************************************
Your personal unique ID: 732c9b1cb8a919f8901eac5aa07b2ec4
You must send at least 1.0 Bitcoin to address 1HR68sM4ycqczK2DCmnQGuBaKCwbn5eoyQ to get your files back
Warning!!! If you will not pay for the next 7 days, the decryption key will be deleted and your files will be lost forever.
*********************************************************************************************************************************
Restoring your files - The fast and easy way
============================================
To get your files fast, please transfer 1.0 bitcoin to our wallet address 1HR68sM4ycqczK2DCmnQGuBaKCwbn5eoyQ. When we will get the money,
we will immediately give you your private decryption key. Payment should be confirmed in about 2 hours after payment made.
Restoring your files - The nasty way
====================================
Send the link https://3hnuhydu4pd247qb.onion.to/r/732c9b1cb8a919f8901eac5aa07b2ec4 below to other people, if two or more people will install this file and pay, we will decrypt your files for free.
What we did?
============
We had encrypted all of your important images, documents, videos and all other files on your computer.
We used a very strong encryption algorithm that used by all governments all over the world.
We store your personal decryption code to your files on our servers and we are the only ones that can decrypt your files.
Please don't try to be smart, anything other than payment will cause damage to your files and the files will be lost forever!!!
If you will not pay for the next 7 days, the decryption key will be deleted and your files will be lost forever.
Why we do that?
===============
We are a group of computer science students from Syria, as you probably know Syria is having bad time for the last five years.
Since 2011 we have more the half million people died and over 5 million refugees. Each member of our team has lost a dear from his family.
I personally have lost both my parents and my little sister in 2015.
The sad part is that the world remained silent and no one helping us so we decided to take an action.
How to buy Bitcoins?
====================
If you aren't familiar with Bitcoin and don't know what is it,
please visit the official Bitcoin website (https://bitcoin.org/en/getting-started),
follow the steps and you'll get your Bitcoins.
To understand more you can check also on the FAQ page (https://bitcoin.org/en/faq).
Please check this website (https://coinatmradar.com/) where you can find Bitcoin ATM all over the world.
List of encrypted files on your computer
========================================
-------------------------------------------------------------------------------
弹窗:
防护建议:
1.多台机器,不要使用相同的账号和口令
2.登录口令要有足够的长度和复杂性,并定期更换登录口令
3.重要资料的共享文件夹应设置访问权限控制,并进行定期备份
4.定期检测系统和软件中的安全漏洞,及时打上补丁。
5.定期到服务器检查是否存在异常。查看范围包括:
a)是否有新增账户
b) Guest是否被启用
c) Windows系统日志是否存在异常
d)杀毒软件是否存在异常拦截情况
6.安装安全防护软件,并确保其正常运行。
7.从正规渠道下载安装软件。
8.对不熟悉的软件,如果已经被杀毒软件拦截查杀,不要添加信任继续运行。
页:
[1]