【家族名】
Win32/Ransom.MountLocker
[平台] / [主类型] . [家族名]
平台类型 : Win32 Win64
威胁类型 : Ransom
【是否支持解密】
360解密大师:暂不支持
在线解密:暂不支持
【被加密文件】
修改文件后缀为.ReadManual.C77BFF8C
360社区
【勒索提示信息】:
文件名:RecoveryManual.html
文件内容 :
-------------------------------------------------------------------------------
Your ClientId:
a7fb00164f192687eda014cd1bde832536d1b04da08cb4116280c5796fa19dcf
/!\ YOUR COMPANY' NETWORK HAS BEEN HACKED /!\
All your important files have been encrypted and copied to our private servers!
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE WILL PERMANENTLY CORRUPT IT.
DO NOT MODIFY ENCRYPTED FILES.
DO NOT RENAME ENCRYPTED FILES.
But keep calm! There is a solution for your problem!
For some money reward we can decrypt all your encrypted files.
Also we will delete all your private data from our servers.
To prove that we are able to decrypt your files we give you the ability to decrypt 2-3 files for free.
So what is you next step ? Contact Us! Contact us for price and get decryption software.
http://6mlzahkc7vejytppbqhqjou4i ... 4116280c5796fa19dcf
* Note that you need installed Tor Browser to open this kind of links.
Follow the instructions to install/run Tor Browser:
1. Go to Tor Project using your default browser.
2. Click "Download Tor Browser", choose version depends on you operation system, usually it is Windows. Download and install it
3. After installation you will see new folder on your desktop: "Tor Browser". Open this folder and run "Start Tor Browser" link.
4. Using Tor Browser go to http://6mlzahkc7vejytppbqhqjou4i ... 4116280c5796fa19dcf
5. Carefully copy your client id from this document and paste it into Authorization window in opened page. Click 'OK'.
6. After that you will see a special chat web application to comminicate with us.
7. NB! Please be patient - sometimes our support team can be away from the keyboard but they will answear you as soon as possible! Time is Money! Contact us as soon as possible.
We won't store you decryption key forever!
-------------------------------------------------------------------------------
【防护建议】
1.多台机器,不要使用相同的账号和口令
2.登录口令要有足够的长度和复杂性,并定期更换登录口令
3.重要资料的共享文件夹应设置访问权限控制,并进行定期备份
4.定期检测系统和软件中的安全漏洞,及时打上补丁。
5.定期到服务器检查是否存在异常。查看范围包括:
a)是否有新增账户
b) Guest是否被启用
c) Windows系统日志是否存在异常
d)杀毒软件是否存在异常拦截情况
6.安装安全防护软件,并确保其正常运行。
7.从正规渠道下载安装软件。
8.对不熟悉的软件,如果已经被杀毒软件拦截查杀,不要添加信任继续运行。
|
|
|
|
评论
直达楼层