Mafayi anu atetezedwa - chochita chiyani?

Chimodzi mwa zovuta kwambiri pulogalamu yachisawawa lero ndi trojan kapena kachilombo kamene kamakuta mafayilo pa disk ya wosuta. Zina mwa mafayilowa akhoza kuchotsedwa, ndipo ena - osati pano. Bukuli lili ndi zowonjezereka zokhudzana ndi zochitika pazinthu zonse ziwiri, njira zodziŵira mtundu wa zolembera pa Dipatimenti Yopereka Zowombola Zowonjezera ndi Zopereka Zachidziwitso, komanso ndondomeko yachidule ya ma anti-virus encryption software (ransomware).

Pali kusintha kwambiri kwa mavairasi kapena ransomware Trojans (ndipo zatsopano zikuwonekera nthawi zonse), koma cholinga chachikulu cha ntchitoyi ndi chakuti pambuyo poika mafayilo a zolemba, zithunzi ndi mafayilo omwe angakhale ofunikira, amalembedwa ndi kuwonjezera ndi kuchotsa mafayilo oyambirira. ndiye inu mumalandira uthenga mu fayilo ya readme.txt kuti mafayilo anu onse atsekedwa, ndi kuwachotsa iwo muyenera kutumiza kuchuluka kwa wovutayo. Zindikirani: Zowonjezera Zowonjezera Zowonongeka kwa Windows 10 tsopano zakhala zotetezedwa kumbuyo kwa mavairasi obisika.

Nanga bwanji ngati deta zonse zofunika zili mu encrypted

Poyambira, zowonjezera zambiri zowonjezera mauthenga ofunika pa kompyuta yanu. Ngati deta yofunikira pa kompyuta yanu yatsekedwa, ndiye choyamba musachite mantha.

Ngati muli ndi mwayi woterewu, lembani fayilo yachitsanzo ndi pempho lochokera kwa wovutitsa wa decryption, kuphatikizapo chitsanzo cha fayilo yofiira, ndikupita kunja (flash drive) kuchokera pa kompyuta disk yomwe virusi-encryptor (ransomware) inkawonekera. Chotsani kompyuta kuti kachilombo sikapitirize kufotokozera deta, ndipo chitani zomwe zatsala pa kompyuta ina.

Gawo lotsatila ndikupeza mtundu wa kachilombo komwe deta yanu ikuyimiridwa pogwiritsa ntchito mauthenga omwe alipo: ena mwa iwo ali ochepa (ena ndiwawonetsa apa, ena amawonetsedwa pafupi mapeto a nkhaniyo), kwa ena - osati pano. Koma ngakhale panopa, mungatumize zitsanzo za mauthenga oletsa anti-virus (Kaspersky, Dr. Web) kuti aphunzire.

Kodi ndendende bwanji? Mungathe kuchita izi pogwiritsa ntchito Google, kupeza mazokambirana kapena mtundu wa cryptographer ndi kufalikira kwa fayilo. Anayambanso kupezeka mautumiki kuti adziwe mtundu wa dipo.

Palibe Dipo

Powonjezeratu Dipo ndichitukuko chothandizira chothandizidwa ndi opanga zida zogwiritsira ntchito komanso zopezeka mu Russian version, omwe cholinga chake ndi kulimbana ndi mavairasi ndi ojambula (Trojans-extortionists).

Mwamwayi, Dipo Lidzatha kuthandizira zikalata zanu, mazithunzi, zithunzi ndi mauthenga ena, kukopera mapulogalamu ofunikira, komanso kupeza zambiri zomwe zingakuthandizeni kupeŵa zoopsa zoterozo.

Powonjezeratu Dipo, mukhoza kuyesa kufotokoza mafayilo anu ndikudziŵa mtundu wa kachilombo ka HIV motere:

  1. Dinani "Inde" patsamba lalikulu la utumiki //www.nomoreransom.org/ru/index.html
  2. Tsamba la Crypto Sheriff lidzatsegulidwa, kumene mungathe kukopera zitsanzo za mafayela osayika osaposa 1 Mb kukula (Ndikupangira kusunga deta yamtundu uliwonse), ndikufotokozeranso ma adiresi kapena malo omwe azinyenga amafunsira dipo (kapena kukopera fayilo ya readme.txt kuchokera chofunikira).
  3. Dinani botani "Fufuzani" ndipo dikirani cheke ndi zotsatira zake kuti zitsirize.

Komanso, malowa ali ndi zigawo zothandiza:

  • Decryptors - pafupifupi zinthu zonse zomwe zilipo panopa zowonongeka mauthenga omwe ali ndi kachilombo ka HIV.
  • Kuteteza matenda - Udzidzidzi wotsogoleredwa makamaka ndi ogwiritsa ntchito, omwe angathandize kupeŵa matenda m'tsogolomu.
  • Mafunso ndi Mayankho - nkhani kwa iwo amene akufuna kumvetsetsa bwino ntchito za mavairasi ndi zochitika pazochitika pamene mukukumana ndi mfundo yakuti mafayilo pamakompyuta anu atsekedwa.

Masiku ano, Dipo silingapezeke kuti ndilo lothandiza kwambiri komanso lothandiza lomwe limagwirizanitsidwa ndi decrypting mafayili a wosuta wa Russia, ndikupangira.

Id ransomware

Chinthu china chotere ndi //id-ransomware.malwarehunterteam.com/ (ngakhale sindikudziwa kuti zimagwiritsidwa ntchito bwanji m'zinenero zosiyanasiyana za Chirasha, koma ndi zoyenera kuyesera mwa kudyetsa ntchito chitsanzo cha fayilo yofiira ndi fayilo yolembedwa ndi pempho la dipo).

Pambuyo pozindikira mtundu wa cryptographer, ngati mutapambana, yesetsani kupeza ntchito yowonongeka njirayi kwa mafunso monga: Decryptor Type_Chiler. Zida zoterezi ndi zaulere ndipo zimatulutsidwa ndi antivirus omanga, mwachitsanzo, zingapo zowonjezera zingapezeke pa Kaspersky site //support.kaspersky.ru/viruses/utility (zina zothandiza zili pafupi ndi mapeto a nkhani). Ndipo, monga tanenera kale, musazengereze kulankhulana ndi omwe ali ndi mapulogalamu a antivayirasi pamisonkhano yawo kapena utumiki wothandizira makalata.

Mwamwayi, zonsezi sizithandiza nthawi zonse ndipo sizinagwiritse ntchito mafayilo opangira mafakitale nthawi zonse. Pankhaniyi, zochitikazo ndi zosiyana: ambiri amalandira malipiro, akuwalimbikitsa kuti apitirize ntchitoyi. Ogwiritsa ntchito ena amathandizidwa ndi pulogalamu yowonzetsa deta pamakompyuta (chifukwa kachilombo, polemba fayilo yofiira, imachotsa fayilo yofunikira, yomwe ili yofunikira yomwe imatha kubwezeretsedwa).

Mawindo pamakompyuta amalembedwa mu xtbl

Chimodzi mwa mapangidwe a kachilombo ka ransomware kamangotengera mafayilo, m'malo mwawo ndi mafayela ndi extension .xtbl ndi dzina lokhala ndi machitidwe osasintha.

Panthawi yomweyi, fayilo yolemba readme.txt imayikidwa pa kompyuta ndi zotsatirazi: "Mafaira anu anali atayikidwa pambali. Kuti muwachotsere, muyenera kutumiza code kwa [email protected] adiresi, [email protected] kapena [email protected]. mudzalandira mauthenga onse ofunikira. Kuyesera kufotokoza mafayilo nokha kumabweretsa kusokonezeka kwa chidziwitso "(madiresi ndi malemba angakhale osiyana).

Tsoka ilo, pakalipano palibe njira yothetsera .xtbl (ikadzawonekera, malangizowo adzasinthidwa). Ogwiritsa ntchito ena omwe anali ndi chidziwitso chofunika kwambiri pa lipoti lawo la makompyuta pa anti-virus masamu kuti anatumiza ma ruble 5000 kapena ndalama zina zofunikira kwa olemba kachilombo ndipo adalandira descrambler, koma izi ndizoopsa: simungalandire kanthu.

Nanga bwanji ngati mafayilo atalembedwa mu .xtbl? Ndondomeko zanga ndi zotsatizana (koma zimasiyanasiyana ndi zomwe zili pazinthu zina zambiri, zomwe zimakulimbikitsani kuti muzimitsa kompyuta yanu nthawi yomweyo kapena kuti musachotse kachilomboko. Mwa lingaliro langa, izi sizikufunikira, ndipo nthawi zina zingakhale zoipa, ngakhale mutasankha.):

  1. Ngati mungathe, musokoneze njira yobwezeretsamo pochotsa ntchito zomwe zikugwirizana ndi mâ € ™ ntchito yanu, kuchotsa kompyuta yanu pa intaneti (izi zikhoza kukhala zofunikira kuti mumvetsetse)
  2. Kumbukirani kapena lembani code imene oyimilira amafuna kuti ayitumize ku imelo (osati pa fayilo pa kompyuta, ngati zingatheke, kuti zisayikidwe).
  3. Pogwiritsira ntchito Malwarebytes Antimalware, Kaspersky Internet Security kapena Dr.Web Cure It pofuna kuchotsa kachilombo kamene kamakata mafayili (zipangizo zonse zakumtunda zikugwira ntchito yabwino). Ndikukulangizani kuti mutembenuzire ntchito pogwiritsa ntchito choyamba ndi chachiwiri mankhwala kuchokera pa mndandanda (ngakhale, ngati muli ndi antivayirasi yomwe mwaikidwa, kukhazikitsa yachiwiri "pamwamba" sikofunika, chifukwa kungayambitse mavuto pamakompyuta.)
  4. Yembekezani kuti kampani yotsutsa-kachirombo iwonekere. Pamaso pano ndi Kaspersky Lab.
  5. Mukhozanso kutumiza chitsanzo cha fayilo yoyimitsidwa ndi code yofunikira [email protected], ngati muli ndi fayilo lomwelo mu mawonekedwe osatchulidwa, tumizani. Mwachidziwikire, izi zikhoza kufulumizitsa maonekedwe a chododometsa.

Chimene sichiyenera kuchita:

  • Sinthani mafayilo osakanizika, sintha zowonjezereka ndikuzichotsa ngati ziri zofunika kwa inu.

Izi ndizo zonse zomwe ndingathe kunena za maofesi osakanizidwa ndi kufalikira kwa .xtbl pakadali pano.

Mafayi ali encrypted bwino_call_saul

Zotsatira zatsopano zotsegula mavitamini ndizoitanitsa Saulo (Trojan-Redemption.Win32.Shade), yomwe imayika .better_call_saul extension kwa mafayilo obisika. Momwe mungasankhire mafayilowa sichinawonekere. Ogwiritsa ntchito omwe adakumana ndi Kaspersky Lab ndi Dr.Web adalandira uthenga kuti izi sizingatheke panthawiyi (koma yesetsani kutumiza zowonjezera - zowonjezera zowonjezera maofesi osinthidwa kuchokera kwa omasulira = zambiri kupeza njira).

Ngati zikutanthauza kuti mwapeza njira yobweretsera (mwachitsanzo, inalembedwa kwinakwake, koma sindinatsatire), chonde funsani zomwe mumanenazo.

Trojan-Ransom.Win32.Aura ndi Trojan-Ransom.Win32.Rakhni

Tsamba lotsatirali ya Trojan yomwe imatumizira ndi kuyika zoonjezera kuchokera mndandanda uwu:

  • .locked
  • .betani
  • .kraken
  • .AES256 (osati kwenikweni trojanyi, palinso ena omwe akuwonjezera chimodzimodzi).
  • .codercsu @ gmail_com
  • .cc
  • .oshit
  • Ndipo ena.

Kuti muwononge mafayilo atatha kugwiritsa ntchito mavairasi awa, webusaiti ya Kaspersky ili ndi ufulu, RakhniDecryptor, yomwe ilipo pa tsamba lovomerezeka //support.kaspersky.com/viruses/disinfection/10556.

Palinso malangizo ofotokoza momwe mungagwiritsire ntchito mafayilowa, ndikuwonetsa momwe mungapezere mafayilo osindikizidwa, omwe ndingakhale nditachotsa chinthucho "Chotsani mafayilo osakanizika pambuyo polemba bwino" (ngakhale ndikuganiza kuti zonse zidzakhala bwino ndi njira yosungira).

Ngati muli ndi license ya Dr.Web anti-virus, mungagwiritse ntchito kutsegula kwaulere ku kampani iyi pa //support.drweb.com/new/free_unlocker/

Zina zambiri za encryption virus

Zowonjezereka, koma palinso ma Trojans otsatirawa, kulembera mafayilo ndikufuna ndalama kuti asinthe. Zogwirizanitsa zomwe zilipo sizothandiza chabe kubwezeretsa mafayilo anu, komanso kufotokoza zizindikiro zomwe zingakuthandizeni kudziwa kuti muli ndi kachilombo ka HIV. Ngakhale mwa njira yeniyeni, njira yabwino kwambiri: mothandizidwa ndi Kaspersky Anti-Virus, fufuzani dongosololi, fufuzani dzina la Trojan molingana ndi mndandanda wa kampaniyi, ndiyeno fufuzani kuti dzina likhale lofunika.

  • Trojan-Ransom.Win32.Rector ndi ufulu wa RectorDecryptor wothandizira kufotokozera ndikugwiritsa ntchito pano: //support.kaspersky.com/viruses/disinfection/4264
  • Trojan-Ransom.Win32.Xorist ndi Trojan yofanana yomwe imawonekera pawindo ndikukupemphani kuti mutumize SMS yolipidwa kapena kulankhulana kudzera pa e-mail kwa malangizo pa kuwerengera. Malangizo a ma fayilo obwezeretsedwa ndi XoristDecryptor zothandiza pa izi ziri patsamba //support.kaspersky.com/viruses/disinfection/2911
  • Trojan-Ransom.Win32.Rannoh, Trojan-Ransom.Win32.Fury - RannohDecryptor //support.kaspersky.com/viruses/disinfection/8547 yogwiritsidwa ntchito
  • Trojan.Encoder.858 (xtbl), Trojan.Encoder.741 ndi ena omwe ali ndi dzina lomwelo (pofufuza Dr.Web anti-virus kapena Cure It utility) ndi manambala osiyanasiyana - yesetsani kufufuza pa intaneti ndi dzina la Trojan. Ena mwa iwo ali ndi ntchito za Dr.Web decryption, komanso ngati simungathe kupeza ntchito, koma pali Dr.Web layisensi, mungagwiritse ntchito tsamba //support.drweb.com/new/free_unlocker/
  • CryptoLocker - kuchotsa mafayilo atatha CryptoLocker, mungagwiritse ntchito webusaiti ya //decryptcryptolocker.com - mutatumiza fayilo yachitsanzo, mudzalandira makiyi ndi othandizira kuti mubwezere mafayilo anu.
  • Pamalo//bitbucket.org/jadacyrus/ransomwareremovalkit/zokopera zilipo Chiwombolo Chotsitsa Chowomboledwa - archive yaikulu yomwe ili ndi chidziwitso pa mitundu yosiyanasiyana ya ojambula zithunzi ndi zowonjezera (mu English)

Inde, kuchokera ku nkhani zam'tsogolo - Kaspersky Lab, pamodzi ndi apolisi ochokera ku Netherlands, adapanga Ransomware Decryptor (//noransom.kaspersky.com) kuti awononge mafayili pambuyo pa CoinVault, komabe, wotsutsa uyu sanapezekebe m'mbuyo.

Anti-virus encryptors kapena ransomware

Chifukwa cha kuchuluka kwa Dipo, ambiri opanga kachilombo ka HIV ndi anti-malware anayamba kugwiritsa ntchito njira zothetsera mauthenga pa kompyuta.
  • Malwarebytes Anti-ransomware
  • BitDefender Anti-Ransomware
  • WinAntiRansom
Mayi awiri oyambirira alibe beta, koma amamasulidwa (amangovomereza tanthauzo la tizilombo ta tizilombo toyambitsa matendawa) - TeslaCrypt, CTBLocker, Locky, CryptoLocker WinAntiRansom - chinthu cholipira chomwe chimalonjeza kulepheretsa kufotokozera ndi njira iliyonse yopereka dipo, magalimoto.

Koma: mapulogalamu awa sanaganizidwe kuti adziwe, koma kuti ateteze kufotokozera mafayilo ofunika pa kompyuta yanu. Ndimawona kuti ntchitoyi iyenera kugwiritsidwa ntchito m'zinthu zolimbana ndi kachilombo ka HIV, mwinamwake zachilendo zimapezeka: wogwiritsa ntchito ayenera kusunga antivayirasi pamakompyuta, njira yothetsera AdWare ndi Malware, komanso tsopano Anti-ransomware ntchito, kuphatikizapo ngati Anti- gwiritsani ntchito.

Mwa njira, ngati mwadzidzidzi zimakhala kuti muli ndi chinachake chowonjezera (chifukwa sindingathe kukhala ndi nthawi yowunika zomwe zikuchitika ndi njira zowonongeka), lipoti mu ndemanga, chidziwitso ichi chidzakhala chothandiza kwa ogwiritsa ntchito ena omwe akumana ndi vuto.

Posts Popular

https://termotools.com ny.termotools.com © Mawindo 2024