Tus kab mob no encrypts cov ntaub ntawv thiab renamed. Yuav ua li cas rau decrypt cov ntaub ntawv encrypted tus kab mob no

Tsis ntev los no muaj ib tug surge ntawm kev ua si ntawm lub tshiab tiam ntawm siab phem computer programs. Lawv nyob rau ib lub sij hawm ntev (6 - 8 xyoo dhau los), tab sis lub pace ntawm lawv siv peaked tam sim no. Nws yog nce ntsib nrog lub fact tias tus kab mob no cov ntaub ntawv yog encrypted.

Peb twb paub hais tias qhov no yog tsis yog ib tug txheej thaum ub siab phem software, piv txwv li, thaiv cov hlab cov computer (ua xiav tshuaj ntsuam), thiab loj heev cov kev pab cuam aimed ntawm kev puas tsuaj, raws li ib tug txoj cai, lub accounting cov ntaub ntawv. Lawv encrypt tag nrho cov ntaub ntawv uas muaj nyob rau hauv ncav tsis cuag, xws li cov ntaub ntawv 1C, docx, xlsx, jpg, doc, XLS, pdf, zip.

Tshwj xeeb muaj mob muaj nkees xam tau tias yog cov kab mob

Nws cov lus dag nyob rau hauv lub fact tias qhov no siv RSA-qhov tseem ceeb, uas yog khi rau ib tug neeg siv lub computer, raws li ib tug tsim nyog tau, qhov universal decoder (decryptor) yog uas ploj lawm. Kab mob uas yog active nyob rau hauv ib tug ntawm cov computers, tej zaum yuav tsis ua hauj lwm nyob rau hauv lwm.

Cov kev txaus ntshai yog tseem nyob rau hauv lub fact tias ntau tshaj ib xyoo nyob rau hauv Internet muab tso npaj cov kev pab cuam-builders (Builder), uas tsim xws li ib tug kab mob no, txawm kulhatskeram (cov neeg uas xav txog lawv tus kheej hackers, tab sis tsis tau kawm lub cajmeem).

Tam sim no, muaj ntau ntau haib kev hloov kho.

Malware database siv txoj kev

Cov ntawv xov xwm tus kab mob no ua tej hom phiaj, raws li ib tug txoj cai, lub accounting department ntawm lub tuam txhab. Ua ntej, nws sau e-mails neeg saib xyuas, nyiaj departments ntawm xws databases, piv txwv li, hh.ru. Tom ntej no yog xa tawm cov tsiaj ntawv. Lawv feem ntau muaj ib tug thov nrog regards mus rau lub me nyuam los tu ib tug me txoj hauj lwm. Xws li ib tug tsab ntawv txuas ntaub ntawv nrog ib txoj kev, nyob rau hauv uas lub sij ntawv nrog ib tug implanted Ole-kwv (pdf ntaub ntawv nrog ib tug kab mob).

Nyob rau hauv lub sij hawm uas accounting neeg ua hauj lwm tam sim ntawd launched hauv cov ntaub ntawv, tom qab rebooting cov nram qab no tshwm sim: ib tug kab mob thiab renamed lub encrypted ntaub ntawv, thiab ces self-destruct.

Qhov no zoo ntawm tsab ntawv no yog feem ntau txaus sau thiab xa mus rau nespamerskogo box (lub npe ntais ntawv kos npe). Vacancy yog yeej ib txwm thov rau lub hauv paus ntawm profiling kev ua ub no ntawm lub tuam txhab, uas yog vim li cas lub suspicions tsis tshwm sim.

Tsis daim ntawv tso cai "Kaspersky" (antivirus software) los yog "kab mob tas nrho" (hauv internet-kev pab cuam daim tshev attachments rau cov kab mob) yuav tsis tiv thaiv koj lub computer nyob rau hauv cov ntaub ntawv no. Qee zaus, ib txhia antivirus cov kev pab cuam rau luam theej duab qhov teeb meem uas cov Symptoms yog Gen: Variant.Zusy.71505.

Yuav ua li cas kom tsis txhob raug tus kab mob tus kab mob no?

Nws yog tsim nyog los xyuas txhua tau txais cov ntaub ntawv. Kev mloog yog them vordovsky cov ntaub ntawv uas tau kos pdf.

Variants ntawm "tus kab mob" lus

Ib tug ntau ntawm lawv. Cov feem ntau variants ntawm tus kab mob no encrypts cov ntaub ntawv yog qhia hauv qab no. Nyob rau hauv txhua tus neeg mob, cov nram qab no ntaub ntawv los e-mail:

1. Cov ntawv ceeb toom txog cov pib ntawm txoj kev ntsuam xyuas cov txheej txheem ua ntawv thov rau ib tug lub tuam txhab raws li txoj cai txiav txim (cov tsab ntawv ua hauj lwm pab mus xyuas cov ntaub ntawv los ntawm txhaj rau ntawm qhov link).
2. Daim ntawv los ntawm lub SAC rau rov qab los ntawm cov nuj nqis.
3. Lus los ntawm Sberbank rau ib qho kev nce nyob rau hauv uas twb muaj lawm cov nuj nqis.
4. Daim ntawv ceeb toom ntawm kev kho tsheb txhaum cai.
5. Ib tsab ntawv los ntawm ib tug sau lub koom haum nrog lub siab tshaj plaws tau ncua sij hawm ntawm kev them nyiaj.

Daim ntawv ceeb toom ntawm cov ntaub ntawv encryption

Nws yuav tshwm sim tom qab raug tus kab mob nyob rau hauv lub hauv paus nplaub tshev ntawm tsav C. Tej zaum tag nrho txoj kev muaj ib tug puas text hom muab tso ChTO_DELAT.txt ntaub ntawv, CONTACT.txt. Muaj, tus neeg siv yog paub txog yuav ua li cas rau encrypt nws cov ntaub ntawv uas yog ua los ntawm txhim khu kev qha cryptographic algorithms. Thiab nws ceeb toom txog cov tsis tau tsim nyog siv ntawm peb tog cov cuab yeej, raws li qhov no yuav ua kev puas tsuaj rau qhov kawg cov ntaub ntawv, uas nyob rau hauv lem yuav ua rau cov impossibility ntawm cov tom ntej decryption.

Cov ntawv ceeb toom yog pom zoo kom tawm hauv lub computer nyob rau hauv ib tug unaltered lub xeev. Nws qhia lub cia yog muab los ntawm ib tug tseem ceeb (feem ntau nws yog 2 hnub). Spelled lub caij nyoog hnub, tom qab uas txhua yam ntawm kev kho mob yuav tsum tsis quav ntsej li.

Thaum kawg ntawm lub muab e-mail. Nws kuj hais tias tus neeg siv yuav tsum sau koj daim ID thiab hais tias ib yam ntawm cov nram qab no ua tej zaum yuav raug nyob rau hauv lub tshem tawm ntawm lub qhov tseem ceeb, namely:

• insults;
• cov ntsiab lus ntawm qhov kev thov tsis muaj ntxiv lawm kev them nqi;
• kev hem thawj.

Yuav ua li cas rau decrypt cov ntaub ntawv encrypted tus kab mob no?

Qhov no zoo ntawm encryption yog haib heev: cov ntaub ntawv yog muab rau ib tug extension raws li zoo meej, nochance lwm yam nrib pleb tsuas yog tsis yooj yim sua, tab sis koj muaj peev xwm sim mus cuag ib tug cryptanalyst thiab saib rau ib tug loophole (nyob rau hauv tej lub sijhawm los pab Dr. WEB) ..

Muaj 1 txoj kev los encrypted ntaub ntawv kab mob no, tab sis nws tsis yog haum rau tag nrho cov kab mob, kuj yuav tau tshem tawm cov thawj exe nrog no siab phem kev pab cuam, uas yog txaus nyuaj rau siv self-destruct tom qab.

Thov regards rau tus kab mob no cov kev taw qhia ntawm ib tug tshwj xeeb code - ib tug me me daim tshev, vim hais tias cov ntaub ntawv nyob rau ntawm no point twb muaj ib tug decoder (code ntawm, yog li mus hais lus, tus attacker tsis tau). Lub essence ntawm no txoj kev - nkag nyob rau hauv tus kab mob no penetrated (nyob rau hauv qhov chaw ntawm cov kev sib piv cov tswv yim code nws tus kheej) npliag pawg. Cov - ib tug siab phem pab nws tus kheej sau cov decryption ntawm cov ntaub ntawv thiab li restores lawv kiag li.

Nyob rau hauv txhua tus kab mob no nws muaj nws tus kheej tshwj xeeb encryption feature, uas yog vim li cas ib tug thib peb-tog executables (cov hom ntaub ntawv exe) yuav tsis decrypt, los yog koj yuav tau sim kom xaiv cov saum toj no muaj nuj nqi, uas yuav tsum tau tag nrho cov kev ua tau rau WinAPI.

Tus kab mob no encrypts cov ntaub ntawv: yuav ua li cas?

Mus nqa tawm lub decryption txoj kev yuav tsum tau:

1. Ua backups (backups ntawm uas twb muaj lawm cov ntaub ntawv). Qhov kawg ntawm decrypting tag nrho nws tshem tawm nws tus kheej.
2. Nyob rau hauv computer (tus neeg), koj yuav tsum khiav no siab phem kev pab cuam, ces tos tsis tau, muaj ib tug yuav tsum tau nrog regards rau cov kev taw qhia ntawm cov code thaum lub qhov rais yog tso tawm.
3. Tom ntej no, koj yuav tau pib los ntawm lub txuas archive ntaub ntawv Patcher.exe.
4. Cov kauj ruam tom ntej yog ua kom paub ib tug xov tooj ntawm tus kab mob no cov txheej txheem, ces nws yog tsim nyog los nias "Enter-".
5. Yuav «patched» lus, uas txhais tau hais tias muab tshuaj ntxuav kev sib piv cov lus qhia.
6. Qhov no yog ua raws li los ntawm cov kev taw qhia ntawm cov cai nyob rau lub thawv ntaus ib yam ntawm cov cim, thiab ces nias "OK".
7. Tus kab mob no pib cov txheej txheem ntawm decrypting cov ntaub ntawv, tom qab uas nws yuav rhuav tshem nws tus kheej.

Yuav ua li cas kom tsis txhob muaj cov ntaub ntawv tsis vim kev saib xyuas ntawm malware?

Nws yog ib nqi kom paub hais tias nyob rau hauv ib qhov teeb meem nyob qhov twg tus kab mob no encrypts cov ntaub ntawv rau tus txheej txheem ntawm decryption nqa lub sij hawm. Qhov tseem ceeb point nyob rau hauv dej yog hais tias lub saum toj no-hais malware muaj yog ib tug kab uas tso cai rau koj mus cawm tau ib co ntaub ntawv, yog tias sai sai disconnect lub computer (rub lub plug los ntawm cov ntsawb, tig tua lub hwj chim sawb, tshem tawm cov roj teeb rau hauv cov ntaub ntawv ntawm ib tug laptop), sai li sai raws li ib tug loj tus naj npawb ntawm yav tas los kev cai tswjhwm extension cov ntaub ntawv .

Ib zaug ntxiv nws yuav tsum tau kev nyaub siab hais tias lub ntsiab tshaj plaws - yog lossi tsim ib cov thaub qab, tab sis tsis nyob rau hauv lwm lub tais ceev tseg, tsis nyob rau tshem tawm uas yog tso rau hauv lub computer, txij thaum lub kev hloov kho ntawm tus kab mob no thiab yuav mus txog tej chaw no. Nws yog ib nqi kom backups rau ib tug txawv computer, ib tug nyuaj tsav, uas yog tsis tas mus li txuas mus rau lub computer, thiab nyob rau hauv cov huab.

Yuav tsum tau kho nrog sijhawm twg los tau tag nrho cov ntaub ntawv uas tuaj nyob rau hauv lub mail los ntawm tsis paub hais tias cov neeg (nyob rau hauv txoj kev daim ntawv no, invoice, Resolution ntawm lub SAC los yog cov nyiaj ua se thiab lwm tus neeg.). Lawv yuav tsum tsis txhob khiav nyob rau hauv koj lub computer (rau lub hom phiaj no lub netbook, tsis muaj ntaub ntawv tseem ceeb yuav tsum tau qhia).

*.paycrypt@gmail.com siab phem kev pab cuam: kev

.. Nyob rau hauv ib qhov teeb meem nyob qhov twg saum toj no-hais encrypted tus kab mob no cbf ntaub ntawv, doc, jpg, thiab lwm yam, muaj tsuas yog peb scenarios:

1. Qhov yooj yim txoj kev uas yuav tau tshem ntawm nws - tshem tawm tag nrho cov kab mob cov ntaub ntawv (nws yuav siv tau, yog tias cov ntaub ntawv no tsis tseem ceeb heev).
2. Saib lab antivirus kev pab cuam, rau piv txwv, Dr. WEB. Email developers ob peb tus kab mob cov ntaub ntawv nrog rau cov tsim nyog tseem ceeb rau decrypt, nyob rau lub computer raws li KEY.PRIVATE.
3. Lub kim tshaj plaws txoj kev. Nws assumes cov nyiaj them ntawm lub thov nyiaj rau cov hackers decrypt mob cov ntaub ntawv. Feem ntau, tus nqi ntawm qhov kev pab no yog nyob nruab nrab ntawm 200 - 500 US dollars .. Qhov no yog tau nyob rau hauv ib qhov teeb meem nyob qhov twg tus kab mob no encrypts cov ntaub ntawv ntawm ib tug loj lub tuam txhab, nyob rau hauv uas ib tug ntau yam pauv loj txaus ntawm cov ntaub ntawv yuav siv sij hawm qhov chaw nyob rau ib tug txhua txhua hnub, thiab qhov no siab phem kev pab cuam tau nyob rau hauv vib nas this ua zoo kawg li kev tsim txom. Nyob rau hauv kev twb kev txuas nrog them qhov no - tus ceev tshaj version ntawm lub rov qab los ntawm tus kab mob no cov ntaub ntawv.

Tej zaum nws yog zoo thiab ib qho ntxiv kev xaiv. Nyob rau hauv lub rooj plaub uas tus kab mob no encrypts cov ntaub ntawv (paycrypt @ gmail_com los yog lwm yam siab phem software) yuav pab tau lub system rolls rov qab ib tug ob peb hnub dhau los.

Program rau decrypt RectorDecryptor

Yog hais tias tus kab mob no encrypts cov ntaub ntawv jpg, doc, cbf thiab thiaj li nyob. N., Yuav pab tau ib tug tshwj xeeb kev pab cuam. Rau no peb thawj zaug yuav tsum tau mus rau startup thiab lov tes taw tag nrho tab sis lub antivirus. Tom ntej no, koj yuav tsum mus pib dua koj lub computer. Saib tag nrho cov ntaub ntawv, highlight tej yam txawv. Nyob rau hauv lub teb nyob rau hauv lub npe "Team" hais qhov chaw ntawm ib lub cov ntaub ntawv (yuav tsum tau xyuam xim rau daim ntaub ntawv uas tsis muaj ib tug kos npe rau: cov chaw tsim tshuaj paus - tsis muaj ntaub ntawv).

Tag nrho tej yam txawv cov ntaub ntawv yuav tsum tau tshem, ces yuav tsum tau mus ntxuav qhov caches browsers ib ntus nplaub tshev (CCleaner kev pab cuam no yog tsim rau lub hom phiaj no).

Yuav pib decryption, koj yuav tsum download tau lub saum toj no qhov kev pab cuam. Ces, khiav nws thiab nias "Start Scan", specifying hloov cov ntaub ntawv thiab lawv extension. Nyob rau hauv niaj hnub versions ntawm qhov kev pab cuam muaj peev xwm tsuas qhia kom meej rau nws tus kheej mob cov ntaub ntawv thiab nias "Qhib". Tom qab hais tias, cov ntaub ntawv yuav tsum decrypted.

Tom qab, cov nqi hluav taws xob yeej scans tag nrho cov computer cov ntaub ntawv, xws li cov ntaub ntawv khaws tseg rau hauv kev cob cog rua network tsav, thiab decrypts lawv. Qhov no rov qab txheej txheem yuav siv ob peb teev (nyob ntawm seb lub workload thiab cov kev ceev ntawm lub computer).

Raws li ib tug tshwm sim, tag nrho cov corrupted ntaub ntawv yuav tsum decoded nyob rau hauv lub nplaub tshev tib qhov chaw uas lawv tau Ameslikas ntsia. Thaum kawg nws yuav tsuas tau tshem tawm tag nrho cov uas twb muaj lawm cov ntaub ntawv nrog tej yam txawv extension, uas koj yuav muab tso cia rau ib tug zuam nyob rau hauv cov lus nug "Rho tawm encrypted ntaub ntawv tom qab kev vam meej seev suab" los nias lub pre-khawm "Change scan nqis". Txawm li cas los, nws yog zoo dua tsis mus rau muab tso rau, raws li nyob rau hauv cov ntaub ntawv ntawm ib tug ua tsis tau tejyam decryption ntawm cov ntaub ntawv lawv yuav so num lawm, thiab ces yuav tau rov qab los rau lawv ua ntej.

Yog li ntawd, yog hais tias tus kab mob no encrypts cov ntaub ntawv doc, cbf, jpg t. E., Yuav tsum tsis txhob Rush mus cov nyiaj them code. Tej zaum nws tsis xav tau.

Nuances tshem tawm ntawm encrypted ntaub ntawv

Thaum koj sim mus tshem tawm tag nrho cov puas ntaub ntawv uas siv ib tug txheej txheem kev tshawb fawb thiab tom ntej tshem tawm muaj peev xwm pib dai thiab tseg koj lub computer. Yog li ntawd, rau txoj kev ua no koj yuav tsum tau siv ib tug tshwj xeeb hais kom ua kab. Tom qab lub community launch nws yog tsim nyog mus rau hauv lub nram qab no: del «: \ *. » / f / s.

Nco ntsoov koj xav rho tawm cov ntaub ntawv raws li "Nyeem-menya.txt", uas nyob rau hauv tib hais kom ua kab yuav tsum qhia kom meej: del ": \ *. » / f / s.

Yog li, tej zaum nws yuav tsum tau muab sau tias yog hais tias tus kab mob no hloov lub npe thiab encrypt cov ntaub ntawv, koj yuav tsum tsis txhob cia li siv cov nyiaj rau cov purchase ntawm cybercriminals tseem ceeb thawj tsim nyog los ua kom to taub qhov teeb meem rau lawv tus kheej. Nws yog zoo dua rau ua lag luam nyob rau hauv lub purchase ntawm ib tug tshwj xeeb kev pab cuam rau decrypt lub corrupted ntaub ntawv.

Thaum kawg nws yog ib nqi recalling tias nyob rau hauv no tsab xov xwm rau lo lus nug hais txog yuav ua li cas rau decrypt cov ntaub ntawv encrypted tus kab mob no.