查看: 1481|回复: 1
收起左侧

[求助] 我真的被勒索了吗?

[复制链接]
Jirehlov1234
发表于 2017-8-5 15:59:21 | 显示全部楼层 |阅读模式
本帖最后由 Jirehlov1234 于 2017-8-5 16:21 编辑

开机启动打开了一个在C:\Users\Administrator\AppData\Roaming的文本文档HELP.txt。

文档内容如下:
[XML] 纯文本查看 / 双击代码区域 Ctrl+A快速复制
============================== GRYPHON RANSOMWARE ==============================

Your documents, photos, databases and other important files have been encrypted
cryptographically strong, without the original key recovery is impossible!
To decrypt your files you need to buy the special software - "GRYPHON DECRYPTER"
Using another tools could corrupt your files, in case of using third party 
software we dont give guarantees that full recovery is possible so use it on 
your own risk.

If you want to restore files, write us to the e-mail: [url=mailto:chines34@protonmail.ch]chines34@protonmail.ch[/url]
In subject line write "encryption" and attach your ID in body of your message
also attach to email 3 crypted files. (files have to be less than 2 MB)

It is in your interest to respond as soon as possible to ensure the restoration
of your files, because we wont keep your decryption keys at our server more than
one week in interest of our security.

Only in case you do not receive a response from the first email address
withit 48 hours, please use this alternative email adress: [url=mailto:oceannew_vb@protonmail.com]oceannew_vb@protonmail.com[/url]

Your personal identification number:

0rzb5H/eFgPkH6Zot5DRyrz31SklQbyG6pXxMe4F6oVIqO5kDB/NATKMo6v/oeW5qRulZVgyVzTGG7ls
mfSljQsxa+VKG6jpYc/JDD/qt6zTfQYjfzJnfRbOyhTwyS2k7iog+1RbhrRj0jhjtjMU2ZJBVdHa1iR1Rp0UVGPQpTc=

============================== GRYPHON RANSOMWARE ==============================

看样子我是被勒索了。
还好我重要文档是放在自己的文件夹E:\My Files下,没有被勒索的痕迹。
BDTS 2017没有报威胁。(ATC 高)已确认是http://bbs.kafan.cn/thread-2098428-1-1.html所为,双击被ATC咔擦,但是留下了这个文本文档。

我真的被勒索了吗?


吃土豆的小山腰
发表于 2017-8-5 16:28:08 | 显示全部楼层
没有痕迹??  应该是被拦截住了吧  不然你的文件应该是被加密了的
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛|优惠券| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.3( 苏ICP备07004770号 ) GMT+8, 2017-9-20 13:46 , Processed in 0.092316 second(s), 5 queries , MemCache On.

快速回复 返回顶部 返回列表