Igciwane libethelele wonke amafayela. Yini okufanele uyenze kulesi simo?

Ingabe kwenzeke ukuthi wamukele umlayezo ovela kumthumeli ongaziwa onesixhumanisi esithombeni somngani wakho noma ukuhalalisela ngeholide elizayo kwi-imeyili yakho, i-Skype noma i-ICQ? Kubonakala sengathi awulindeli ukusetha, futhi ngokuzumayo uma uchofoza isixhumanisi kwikhompyutha, ulanda isofthiwe enonya kakhulu. Awunayo isikhathi sokubuyiselwa, njengoba igciwane selivele selibethele yonke amafayela. Yini okufanele uyenze kulesi simo? Kungenzeka yini ukubuyisela amadokhumenti?

Ukuze uqonde ukuthi ungabhekana kanjani nesimiso esibi, udinga ukwazi ukuthi ungubani nokuthi ungena kanjani ohlelweni lokusebenza. Ngaphezu kwalokho, akunandaba ukuthi iyiphi i-Windows oyisebenzisayo - igciwane le-Critroni lihloselwe ukuthelela noma iyiphi isistimu yokusebenza.

I-Cipher Computer Virus: Incazelo kanye ne-Algorithm ye-Action

E-intanethi, isofthiwe entsha yegciwane lesikhompyutha, eyaziwa yi-CTB (Curve Tor Bitcoin) noma i-Critroni, ivele. Lena yiTrojan-extortionist ehambile, efana nesimiso se-algorithm ne-CriptoLocker yesofthiwe esaziwa ngaphambilini. Uma igciwane lifihliwe wonke amafayela, yini okufanele ngiyenze? Okokuqala, kubalulekile ukuqonda i-algorithm yokusebenza kwayo. Okuyinhloko yesenzo segciwane ukubethela wonke amafayela akho ezinkandweni .ctbl, .ctb2, .vault, .xtbl noma abanye. Kulesi simo, awukwazi ukuwavula uze ukhokhe imali eceliwe.

I-Virus iTrojan-Ransom.Win32.Shade neTrojan-Ransom.Win32.Onion ijwayelekile. Zifana kakhulu ne-PTS ngesenzo sabo sendawo. Zingahlukaniswa ngokukhuliswa kwamafayela obhaliwe. ITrojani-Isihlengo sichaza ulwazi kwifomethi ye-.xtbl. Uma uvula noma yiliphi ifayela, umlayezo uvela esikrinini esitshela ukuthi imibhalo yakho siqu, yolwazi, izithombe kanye namanye amafayili abhalwe ngekhodi ngenqubo enonya. Ukuze uziqede, kufanele ukhokhe ukhiye oyingqayizivele ogcinwe kuseva eyimfihlo futhi kuphela kulokhu ungakwazi ukukhipha izinyathelo nezindlela zokubhala ngezincwadi zakho. Kodwa ungakhathazeki, ungazitholi ukuthumela imali kule nombolo, kunenye indlela yokubhekana naloluhlobo lwe-cybercrime. Uma ikhompyutha yakho ithole igciwane elinjalo, libethele wonke amafayela we-.xtbl, yini okufanele yenziwe kulesi simo?

Okungafanele ukwenze uma igciwane le-cryptographic lingena kukhompyutha

Kwenzeka ukuthi ngesabeka sifaka uhlelo lwe-antivirus futhi ngosizo lwaso kumodi yokuzenzakalelayo noma yebhulogi sisusa isofthiwe yegciwane, silahlekelwa yimibhalo ebalulekile. Lokhu akujabulisi, ngaphezu kwalokho, ikhompiyutha ingagcina idatha osebenza kuyo izinyanga. Kuyinto ehlazo ukulahlekelwa imibhalo enjalo ngaphandle kokubuyisela kwabo.

Uma igciwane lihlanganisa wonke amafayela we-.xtbl, abanye bazama ukushintsha isandiso sabo, kodwa nalokhu akuholeli emiphumeleni emihle. Ukuvuselela uhlelo lokusebenza nokufometha i-disk eyinkimbinkimbi kuzosusa unomphela uhlelo olubi, kodwa ngalo uzolahlekelwa yiwo wonke amandla okubuyisela amadokhumenti. Kulesi simo, izinhlelo zokudumisa ngokukhethekile ngeke zisize noma, ngoba umlutha-ophangi uhlelwe ngokwe-algorithm engeyona ejwayelekile futhi kudinga indlela ekhethekile.

Kunokuba i-virus-umphangi wekhompyutha yomuntu siqu iyingozi

Kusobala ukuthi akukho hlelo olubi olungayizuzisa ikhompyutha yakho siqu. Kungani udala isofthiwe enjalo? Okumangalisa ukuthi, izinhlelo ezinjalo zadalwa hhayi kuphela ukuheha abasebenzisi ngemali eningi ngangokunokwenzeka. Eqinisweni, ukumaketha kwe-viral kunenzuzo kakhulu kunabaningi abanamaprosesa antivirus. Emva kwakho konke, uma igciwane lifakela wonke amafayela kukhompyutheni yakho, uya kuqala kuphi? Ngokuvamile, ngosizo lwabachwepheshe. Yini ama- virtual encryption ayingozi kwikhompyutha yakho noma ikhompyutha yomuntu siqu?

I-algorithm yokusebenza kwayo ayiyona indawo, ngakho ngeke kwenzeke ukuthi ilahlelise amafayela anesifo sofuba nge-software evamile ye-anti-virus. Ukususa izinto ezinonya kuzoholela ekulahlekeni kwedatha. Ukuthuthela ekuhlukaniseni kuphela kuzokwenza ukuthi kutholakale amanye amafayela ukuthi igciwane elibi lingakapheli ukubethela.

Ubude be-malware obhalisiwe

Uma ikhompyutha yakho igciwane le-Critroni (i-malware) negciwane libethela wonke amafayela, kufanele ngenzeni? Amafomethi we-.vault-, .xtbl-, .rar ayikwazi ukuchithwa wena ngokwakho, ngokushintsha ngesandla isandiso ku-.doc, .mp3, .txt nabanye. Uma kwenzeka ukuthi kungakapheli amahora angu-96 ungakhokhi inani elifanele kuma-cybercriminals, uzosatshiswa yi-mail ngeposi ukuze wonke amafayela akho asuswe unomphela. Ezimweni eziningi, abantu babhekene nezinsongo ezinjalo, futhi bayanqikaza, kodwa ngokuzithoba benza lezi zenzo, besaba ukulahlekelwa ulwazi oluyigugu. Abasebenzisi abanosizi abaqondi ukuthi abakwa-cybercriminals abahlali beqiniso njalo ngezwi labo. Ngemuva kokuthola imali, kaningi abakhathazeki ngokukhipha amafayela akho avinjelwe.

Uma uhlelo lwe-malicious timer luphelelwa yisikhathi, luvala ngokuzenzakalelayo. Kodwa usenalo ithuba lokubuyisela amadokhumenti abalulekile. Umlayezo uzovela esikrinini esibonisa ukuthi isikhathi sesiphelile futhi ungabuka ulwazi oluningiliziwe mayelana namafayela kwifolda yamadokhumenti ku-notebook ye-DecryptAllFiles.txt eyakhelwe ngokukhethekile.

Izindlela zokungena kwe-malware ye-cryptographic kwisistimu yokusebenza

Ngokuvamile, amagciwane e-cryptographic angena kwikhompyutha ngemilayezo ethintekile ethunyelwe e-mail noma ngokulandwayo okukhohlisayo. Lezi zingaba izibuyekezo ze-fake ezifake amanga noma abadlali bevidiyo abanamandla. Uma uhlelo lulandwa kwikhompyutha nganoma iyiphi yalezi zindlela, lifakela ngokushesha idatha ngaphandle kokuyibuyisela. Uma igciwane libethela wonke amafayela .cbf, .ctbl, .ctb2 kwamanye amafomethi futhi awunayo isipele sedokhumenti elondolozwe kumithombo ekhishwayo, cabanga ukuthi ngeke ukwazi ukuyibuyisela. Okwamanje, ama-anti-virus ama-lab awazi ukuthi angawasebenzisa kanjani ama-viruses okubethela. Ngaphandle kwesihluthulelo esidingekayo, ungavimbela kuphela amafayela athelelekile, uwahambise ekuhlukaniseni, noma ususe.

Indlela Yokugwema Ukuqeda ikhompyutha yakho nge-Virus

Igciwane elimangalisa lifake wonke amafayela we-.xtbl. Yini okufanele ngiyenze? Usuvele ufunda imininingwane eminingi engadingekile, ebhaliwe kumawebhusayithi amaningi, futhi impendulo ayitholakali. Kwenzeka ukuthi ngesikhathi sokungapheli isikhathi, uma udinga ngokuphuthumayo ukuthatha umbiko emsebenzini, uthweswe iziqu enyuvesi noma uvikele isiprofesa sakho, ikhompiyutha iqala ukuhlala impilo yayo: ihlehla, ifakwe amagciwane, ilenga. Kufanele uzilungiselele izimo ezinjalo futhi ugcine ulwazi kuseva nakumithombo ekhishwayo. Lokhu kuzovumela noma kunini ukubuyisela uhlelo lokusebenza futhi emva kwemizuzu engu-20 ukusebenza kwikhompyutha, njengokungathi akukho okwenzekile. Kodwa, ngeshwa, asihlali njalo njalo.

Ukuze ugweme ukutheleleka kwekhompyutha ngegciwane, okokuqala kubalulekile ukufaka uhlelo oluhle lwe-antivirus. Kumelwe ube ne- Windows Firewall evikela kahle i- Windows engena enethiwekhi. Futhi okubaluleke kakhulu: ungalanda isofthiwe kusuka kumasayithi angabonwanga, abagibeli bezintambo. Ukuze ugweme ukutheleleka kwekhompuyutha ngezinhlelo zegciwane, gcina ukuthi yiziphi izixhumanisi ozihambelayo. Uma uthola i-imeyili evela kumakheli ongenakuqondakala ngesicelo noma isipho sokubona ukuthi isixhumanisi sifihliwe, kungcono ukuhambisa umlayezo ugaxekile noma ususe ngokuphelele.

Ukuvimbela igciwane ekubhapheni wonke amafayela we-.xtbl, ama-software we-anti-virus aphakamisa indlela yamahhala yokuvikela ukulwa nokutheleleka ngamagciwane wokubethela: kanye ngesonto, ukuvuselela idatha futhi ubuke isimo sabo.

Igciwane libethela wonke amafayela kwikhompyutha: izindlela zokwelapha

Uma waba yisisulu se-cybercrime futhi idatha ekhompyutheni yakho yatholwa ngenye yezinhlobo zokubethela ze-malware, sekuyisikhathi sokuzama ukubuyisela amafayela.

Kunezindlela eziningana zokwelapha mahhala imibhalo enegciwane:

1. Indlela ejwayelekile kunazo zonke, futhi mhlawumbe ephumelela kakhulu okwamanje, kuyisimo sokulondoloza amaphepha kanye nokuvuselela okulandelayo lapho kwenzeka ukutheleleka okungalindelekile.
2. Ukuthola ifayela le-Software. I-algorithm ye-CTB yegciwane isebenza ngendlela ethakazelisayo. Ngesinye ikhompyutha, ikopisha amafayela, ayibhala, futhi asuse amadokhumenti okuqala, ngaleyo ndlela akhiphe ukuthi kungenzeka ukuthi alulame. Kodwa ngosizo lwe-software yesofthiwe ye-Photorec noma i-R-Studio, ungaba nesikhathi sokulondoloza amanye amafayela angasetshenzisiwe. Kumele uqaphele ukuthi uma ususebenzisa isikhathi eside ikhompyutha ngemuva kokutheleleka, cishe kungenzeka ukuthi yonke imibhalo edingekayo izobuyiselwa.
3. Uma igciwane libethela wonke amafayela we-.vault, kunenye enye indlela enhle yokuwayeka - usebenzisa ama-shadow amakhophi. Yiqiniso, igciwane lizozama kuze kube phakade futhi liyisuse unomphela, kodwa futhi kwenzeka ukuthi amanye amafayela ahlale engahloliwe. Kulesi simo, uzoba nanobe mncane, kepha ithuba lokubuyiselwa kwabo.
4. Kungenzeka ukuthi igcine idatha emisebenzini yokwabelana ngefayela, njengeDropBox. Ingafakwa kukhompuyutha njengesibonisi sediski yendawo. Ngokwemvelo, igciwane lokubethela lizoliphazamisa. Kodwa kulokhu kunengqondo kakhulu ukubuyisela amadokhumenti namafayela abalulekile.

Ukuvimbela i-software ye-virus ukutheleleka kwekhompyutha yomuntu siqu

Uma wesaba ukuthola isofthiwe enonya ekhompyutheni yakho futhi ungafuni ukuthi igciwane elikhohlisayo libethe yonke amafayela, kufanele usebenzise umhleli wenqubomgomo yendawo noma iqembu le-Windows. Ngenxa yalolu hlelo lokusebenza oludidiyelwe, ungahlela inqubomgomo yokuvimbela isofthiwe - bese ungakhathazeki ngemibono mayelana nokutheleleka kwekhompyutha.

Indlela yokubuyisela amafayela anesifo

Uma igciwane le-CTB libethele yonke amafayela, ngingenzenjani kuleli cala ukuze ngilondoloze imibhalo edingekayo? Ngeshwa, okwamanje, akukho i-laboratory ye-antivirus enganikeza ukukhishwa kwamafayela akho, kodwa ulahla ukutheleleka, ukususwa okuphelele kusuka kukhompyutha yomuntu siqu kungenzeka. Ngaphezu kwazo zonke izindlela eziphumelelayo zokuthola ulwazi kukhonjisiwe. Uma amafayela akho ebiza kakhulu, futhi ungakhathazeki ukwenza ikhophi yokulondoloza emithonjeni ekhishwayo noma i-Inthanethi drive, khona-ke kufanele ukhokhe inani lemali eliceliwe ngabakwa-cybercriminals. Kodwa akunakwenzeka ukuthi uzothunyelwa ukhiye wokumisa kabusha ngisho nangemva kokukhokha.

Indlela yokuthola amafayela anesifo

Ukuze ubone uhlu lamafayela anesifo, ungahamba ngendlela elandelayo: "Amadokhumenti ami" \. Html noma "C:" \ "Abasebenzisi \" Bonke Abasebenzisi \ .html. Lolu hlu lwe-html luqukethe idatha hhayi kuphela ngemiyalelo engahleliwe, kodwa futhi nangezinto ezithathelwanayo.

Indlela yokuvimbela igciwane lesikhalabhu

Uma ikhompyutha isuselwe isofthiwe enonya, isenzo sokuqala esidingekayo kumsebenzisi ukuvumela imodi ephephile nenethiwekhi. Lokhu kwenziwa ngokucindezela ukhiye wekhibhodi F10.

Uma ikhompiyutha yakho ithole igciwane le-Critroni, libethele wonke amafayela ku-.rar, .ctbl, .ctb2, .xtbl, .vault, .cbf noma yimuphi omunye ifomethi, lapho kunzima kakade ukuyibuyisela. Kodwa uma igciwane lingakwazanga ukwenza izinguquko eziningi, kukhona ithuba lokulivimbela ngenqubomgomo yokufinyelela okuvinjelwe kwezinhlelo.