2020-06-24 10:40 勒索病毒终结者
近期,力创数据接到不少客户求助,他们的服务器遭遇勒索病毒攻击,遭受攻击后,服务器内所有文件包括数据库全都被加密锁定了,无法打开使用,且所有文件名的后缀都被篡改了,被添加.EG后缀,如下图所示:
一客户中了EG后缀勒索病毒后的文件夹。
EG后缀勒索病毒的攻击者会在客户每一个文件夹内留下一个名为Recovery_Instructions的html,例举一位中毒客户的文件内内容如下:
/!\ YOUR COMPANY NETWORK HAS BEEN PENETRATED /!\
ALL YOUR IMPORTANT FILES HAVE BEEN ENCRYPTED!
YOUR FILES ARE SAFE! JUST MODIFIED ONLY. (RSA+AES)
ANY ATTEMPT TO RESTORE YOUR FILES WITH THIRD-PARTY SOFTWARE
WILL PERMENANTLY DESTROY YOUR FILE.
DO NOT MODIFY ENCRYPTED FILES. DO NOT RENAME ENCRYPTED FILES.
NO SOFTWARE AVAILABLE ON INTERNET CAN HELP YOU. WE ONLY HAVE
SOLUTION TO YOUR PROBLEM.
WE GATHERED HIGHLY CONFIDENTIAL/PERSORNAL DATA. THESE DATA
ARE CURRENTLY STORED ON A PRIVATE SERVER. THIS SERVER WILL BE
IMMEDIATELY DESTROYED AFTER YOUR PAYMENT. WE ONLY SEEK MONEY
AND DO NOT WANT TO DAMAGE YOUR REPUTATION. IF YOU DECIDE TO
NOT PAY, WE WILL RELEASE THIS DATA TO PUBLIC OR RE-SELLER.
YOU WILL CAN SEND US 2-3 NON-IMPORTANT FILES AND WE WILL
DECRYPT IT FOR FREE TO PROVE WE ARE ABLE TO GIVE YOUR FILES
BACK.
Contact us for price and get decryption software.
http://gvlay6u4g53rxdi5.onion/21-HYDpuQ62ywZTBmcYaMVaBc0pTBqlSjrs-FBRa5w0IA0jcAPW9psNfxTNToFE0lRB4
* Note that this server is available via Tor browser only
Follow the instructions to open the link:
1. Type the addres "https://www.torproject.org" in your Internet browser. It opens the Tor site.
2. Press "Download Tor", then press "Download Tor Browser Bundle", install and run it.
3. Now you have Tor browser. In the Tor Browser open "{{URL}}".
4. Start a chat and follow the further instructions.
If you can't use the above link, use the email:
dec_helper@dremno.com
dec_helper@excic.com
MAKE CONTACT AS SOON AS POSSIBLE. YOUR DECRYPTION KEY IS ONLY STORED
TEMPORARLY. IF YOU DON'T CONTACT US WITHIN 72 HOURS, PRICE WILL BE HIGHER.
中了EG后缀勒索病毒的服务器内所有的文件和数据库等均被加密,无法使用,可能会影响企业的正常业务运作,给企业带来无法估计的损失。力创数据针对各种勒索病毒,具有专业和有效的防御解决方案,同时力创数据温馨提醒大家,一定要做好勒索病毒的防御工作,在高数字化的今天,数据的价值越来越大,大家一定要对重要资料进行及时的隔离或者异地备份,切不可备份在本地,以保障公司数据安全。
如有疑问,马上在线咨询 点击在线咨询
周一至周日 8:00-22:00
13265855616
即可开始对话
