本帖最后由 Potato 于 2020-4-10 17:21 编辑
勒索病毒家族名称:Jenkins勒索病毒家族
是否支持解密:否
详情:
被加密文件:
被加密文件后缀格式: .jenkins
勒索提示信息:
文件名:!READ_ME.txt
文件内容 :
-------------------------------------------------------------------------------
SOMETHING WENT WRONG, PLEASE CONTACT YOUR SYSTEM ADMINISTRATOR!
He can help you to understand whats happened.
If he can't help you, contact us via email:
jenkins0ran@countermail.com
jenkins0ran@cock.li
HURRY UP! WE HAVE ANTIDOTE FOR YOUR FILES! DISCOUNT 20% FOR CLIENTS, WHO CONTACT US IN THE SAME DAY!
You can attach 2 files (text or picture) to check our honest intentions, we will heal them and send back.
File size not more than 1 Mb and it's should be text or picture, NOT DATABASE.
Fill the following QUESTIONNAIRE and send it in body of your email.
***********************************
QUESTIONNAIRE
Company name: [PUT YOUR COMPANY NAME HERE]
Country: [PUT YOUR COUNTRY HERE]
City: [PUT YOUR CITY HERE]
ID: 8hCtwrMt1YGIX721AGjtCS7n5T2Dunxl9mUZuVmsuDhdyuHQuFe5RXFxG8rb6zY7dVbLki8kvTybrNejYIry6GQ3oUhEQ4qFljz/74GKwgQp4m+pQm/3V5yQIrsTT2eXb7uaV1rpRwlscEPZjne83/81Xd2CDfRjWQh6VKfUQ3g=:d73964e1d482992483ed6675fb321786fb3df6c315fff6429771ce1565f03626
***********************************
We can help you to avoid same issues in future, after heal we will provide advice how to fix security issues on your network.
-------------------------------------------------------------------------------
防护建议:
1.多台机器,不要使用相同的账号和口令
2.登录口令要有足够的长度和复杂性,并定期更换登录口令
3.重要资料的共享文件夹应设置访问权限控制,并进行定期备份
4.定期检测系统和软件中的安全漏洞,及时打上补丁。
5.定期到服务器检查是否存在异常。查看范围包括:
a)是否有新增账户
b) Guest是否被启用
c) Windows系统日志是否存在异常
d)杀毒软件是否存在异常拦截情况
6.安装安全防护软件,并确保其正常运行。
7.从正规渠道下载安装软件。
8.对不熟悉的软件,如果已经被杀毒软件拦截查杀,不要添加信任继续运行。
|
|
|
|
评论
直达楼层