吾爱破解 - 52pojie.cn

 找回密码
 注册[Register]

QQ登录

只需一步,快速开始

查看: 4043|回复: 30
收起左侧

文件被加密,请教大家帮帮看看!谢谢!

[复制链接]
anszyeah 发表于 2020-11-27 00:44
使用论坛附件上传样本压缩包时必须使用压缩密码保护,压缩密码:52pojie,否则会导致论坛被杀毒软件等误报,论坛有权随时删除相关附件和帖子!
病毒分析分区附件样本、网址谨慎下载点击,可能对计算机产生破坏,仅供安全人员在法律允许范围内研究,禁止非法用途!
禁止求非法渗透测试、非法网络攻击、获取隐私等违法内容,即使对方是非法内容,也应向警方求助!
本帖最后由 anszyeah 于 2020-11-27 22:32 编辑

首先多谢大家的回复!就不一一回复大家了,再次谢谢大家的支持!
由于昨晚下班前服务器还是正常的,但到晚上8点多,就有同事反映说连不上服务器,刚开始以为是网络问题,回去一查看原因,发现中勒索病毒了!冒汗!
整晚都没睡,立即断网杀毒,防护好其他机器,以防被感染,经过查找是中了“Sodinokibi”这个勒索毒病!
本来想找网店看看能不能帮恢复,但对方没回复,没办法,就格盘重装系统了,恢复最近备份的数据,刚刚忙完!
大家有重要的数据,要记得多备份!以减小损失!

------------------------
扩展名为:pg907jqu,请教怎么恢复?谢谢!
------------------------

---=== Welcome. Again. ===---

[+] Whats Happen? [+]

Your files are encrypted, and currently unavailable. You can check it: all files on your computer has extension pg907jqu.
By the way, everything is possible to recover (restore), but you need to follow our instructions. Otherwise, you cant return your data (NEVER).

[+] What guarantees? [+]

Its just a business. We absolutely do not care about you and your deals, except getting benefits. If we do not do our work and liabilities - nobody will not cooperate with us. Its not in our interests.
To check the ability of returning files, You should go to our website. There you can decrypt one file for free. That is our guarantee.
If you will not cooperate with our service - for us, its does not matter. But you will lose your time and data, cause just we have the private key. In practise - time is much more valuable than money.

[+] How to get access on website? [+]

You have two ways:

1) [Recommended] Using a TOR browser!
  a) Download and install TOR browser from this site: https://torproject.org/
  b) Open our website: http://aplebzu47wgazapdqks6vrcv6zcnjppkbxbr6wketf56nf6aq2nmyoyd.onion/65F9B4AA08FF0ECB

2) If TOR blocked in your country, try to use VPN! But you can use our secondary website. For this:
  a) Open your any browser (Chrome, Firefox, Opera, IE, Edge)
  b) Open our secondary website: http://decryptor.cc/65F9B4AA08FF0ECB

Warning: secondary website can be blocked, thats why first variant much better and more available.

When you open our website, put the following data in the input form:
Key:
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==



Extension name:

pg907jqu

-----------------------------------------------------------------------------------------

!!! DANGER !!!
DONT try to change files by yourself, DONT use any third party software for restoring your data or antivirus solutions - its may entail damge of the private key and, as result, The Loss all data.
!!! !!! !!!
ONE MORE TIME: Its in your interests to get your files back. From our side, we (the best specialists) make everything for restoring, but please should not interfere.
!!! !!! !!!

发帖前要善用论坛搜索功能,那里可能会有你要找的答案或者已经有人发布过相同内容了,请勿重复发帖。

mei564335 发表于 2020-11-27 08:04
典型的中式英语,被自己人坑了??
臭味香头 发表于 2020-11-27 08:16
tsecond 发表于 2020-11-27 08:51
我去了这个勒索软件的站点  对方要4800美元来解密你的文件。  你的被加密的文件价值大于2倍的 $4800美元吗?

熊猫 发表于 2020-11-27 08:19
勒索病毒,要不给钱,要不格式化
无解
EnterpriseSolu 发表于 2020-11-27 08:21
安装个工具,去付款给别人,再下载解密软件,恢复数据,基本上无解,格式化全盘,重装系统,重要的文件多用U盘备份,现在256G U盘已经很便宜了
skypojie51 发表于 2020-11-27 08:33
平时上网要注意安全
timid1026 发表于 2020-11-27 08:37
感觉社会好危险。。好害怕
终南明月 发表于 2020-11-27 08:38
这个基本没办法了。
lwb399 发表于 2020-11-27 08:39
不要给钱,给了也没用。
tsecond 发表于 2020-11-27 08:49
这是遇到勒索软件了   基本无解 除非你给钱按他说的步骤来
您需要登录后才可以回帖 登录 | 注册[Register]

本版积分规则

返回列表

RSS订阅|小黑屋|处罚记录|联系我们|吾爱破解 - LCG - LSG ( 京ICP备16042023号 | 京公网安备 11010502030087号 )

GMT+8, 2024-11-28 08:07

Powered by Discuz!

Copyright © 2001-2020, Tencent Cloud.

快速回复 返回顶部 返回列表