中国区域惊现fgb45ft3pqamyji7.onion病毒
请各位IT朋友尽快通知,1:修改现有的管理员账户密码,最少10位数的大小写数字字符。
2:请把默认3389等端口修改为不常见端口
3:请安装可以设置密码的杀毒软件
病毒特征:所有文件数据被修改为: XXXXXXX.原有后缀:ID:(9位数字).fgb45ft3pqamyji7.onion
如: 财务报表.xls.Id_735533221_fgb45ft3pqamyji7.onion
这样是一个完整的被加密的数据。
往往被加密的服务器上会留下一封勒索信:-DECRYPT-MY-FILES.TXT
并且要求支付比特币才能恢复。
*** ALL YOUR WORK AND PERSONAL FILES HAVE BEEN ENCRYPTED ***
To decrypt your files you need to buy the special software. To recover data, follow the instructions!
You can find out the details/ask questions in the chat:
https://fgb45ft3pqamyji7.onion.to (not need Tor)
https://fgb45ft3pqamyji7.onion.cab (not need Tor)
https://fgb45ft3pqamyji7.onion.nu (not need Tor)
You ID: 332500771
If the resource is not available for a long time, install and use the Tor-browser:
1. Run your Internet-browser
2. Enter or copy the address https://www.torproject.org/download/download-easy.html in the address bar of your browser and press key ENTER
3. On the site will be offered to download the Tor-browser, download and install it. Run.
4. Connect with the button "Connect" (if you use the English version)
5. After connection, the usual Tor-browser window will open
6. Enter or copy the address http://fgb45ft3pqamyji7.onion in the address bar of Tor-browser and press key ENTER
7. Wait for the site to load
If you have any problems installing or using, please visit the video tutorial https://www.youtube.com/watch?v=gOgh3ABju6Q
病毒并没有更多的特点,和以往的病毒并没有什么特殊之处,简单的攻击弱密码服务器,并且获取管理员权限进行加密,希望大家做好数据安全备份和管理好服务器密码安全。