Windows XP bitcoin virus
Publish: 2021-04-18 22:05:09
1. According to the network security agency, this is a virus attack launched by lawless elements using the "eternal blue" leaked from NSA hacker's weapon library“ "Eternal blue" will scan windows machines with open 445 file sharing port, without any user operation. As long as the machine is turned on and connected to the Internet, criminals can plant blackmail software, remote control Trojan horse, virtual currency mining machine and other malicious programs in computers and servers. This is to remind the majority of computer users: 1. Install the latest security patch for the computer. Microsoft has released patch ms17-010 to fix the system vulnerability of "eternal blue" attack. Please install this security patch as soon as possible at the website of https://technet.microsoft.com/zh-cn/library/security/ms17-010; For Windows XP, 2003 and other machines that Microsoft no longer provides security updates, we can use 360 "NSA Arsenal immunity tool" to detect whether there are vulnerabilities in the system, and close the ports affected by the vulnerabilities, so as to avoid being infringed by blackmail software and other viruses. The download address of immunization tool is: NSA / nsatool.exe. 2. Close ports 445, 135, 137, 138 and 139, and close network sharing. 3. Strengthen the awareness of network security: don't click the unknown link, don't download the unknown file, don't open the unknown email... 4. Back up the important files in your computer to the mobile hard disk and U disk as soon as possible (regularly in the future), and save the disk offline after backup. 5. It is suggested that users who are still using Windows XP and windows 2003 should upgrade to Windows 7 / windows 10 or windows 2008 / 2012 / 2016 as soon as possible.
2. You can use Tencent computer housekeeper to check and kill viruses as follows
1. First, upgrade your antivirus software and update the virus library to the latest
2. Open Tencent computer Housekeeper - virus checking and killing
3. Select lightning, overall or designated location (three kinds of checking and killing modes, according to your own needs). During the process of killing, you will scroll the process description and display the progress bar. In its traditional interface, it displays the start status of the antivirus engine in the form of icons, and displays the identification times of suspicious behaviors, the number of files scanned safely and other information
4. Wait patiently for the end of the scanning, if there is any abnormality, you can click to deal with it and clean up the virus
5, You can also choose to turn on the Tencent computer manager in safe mode, and follow the above steps for antivirus
turn off the computer, cut off the network, and select the entry mode (press the F8 key to start the computer and select the first item to enter the mode. This mode only starts the basic driver, and does not load other software. Then open your virus software and clean it up
1. First, upgrade your antivirus software and update the virus library to the latest
2. Open Tencent computer Housekeeper - virus checking and killing
3. Select lightning, overall or designated location (three kinds of checking and killing modes, according to your own needs). During the process of killing, you will scroll the process description and display the progress bar. In its traditional interface, it displays the start status of the antivirus engine in the form of icons, and displays the identification times of suspicious behaviors, the number of files scanned safely and other information
4. Wait patiently for the end of the scanning, if there is any abnormality, you can click to deal with it and clean up the virus
5, You can also choose to turn on the Tencent computer manager in safe mode, and follow the above steps for antivirus
turn off the computer, cut off the network, and select the entry mode (press the F8 key to start the computer and select the first item to enter the mode. This mode only starts the basic driver, and does not load other software. Then open your virus software and clean it up
3. Now many security software can prevent bitcoin virus, such as Jinshan drug bully
unless you don't install security software, or the installed software is too junk, it doesn't play the role of anti-virus and anti-virus
if it has been poisoned, you can use the U boot disk or the system CD to boot. After entering the PE system, you can re partition and format the hard disk, and then reload the system
just in this way, all the data in the hard disk will be gone. If there is no important data, just do it like this.
unless you don't install security software, or the installed software is too junk, it doesn't play the role of anti-virus and anti-virus
if it has been poisoned, you can use the U boot disk or the system CD to boot. After entering the PE system, you can re partition and format the hard disk, and then reload the system
just in this way, all the data in the hard disk will be gone. If there is no important data, just do it like this.
4. It's not easy for home users to get the blackmail virus, because broadband providers have blocked port 445. As long as you don't visit strange websites, click strange links, and download strange files. Basically won't be poisoned, and now it won't be poisoned for the time being
for security, please go to the Microsoft official website to download the XP special patch after you start the Internet. This is the vulnerability used to fix the blackmail virus.
for security, please go to the Microsoft official website to download the XP special patch after you start the Internet. This is the vulnerability used to fix the blackmail virus.
5. In the meeting, the virus can use 360 to fix the vulnerability
or download and install the official Microsoft patch directly
official patch download page 1 https://technet.microsoft.com/zh-cn/library/security/MS17-010
official patch download page 2 http://www.catalog.update.microsoft.com/Search.aspx?q=KB4012598
or download and install the official Microsoft patch directly
official patch download page 1 https://technet.microsoft.com/zh-cn/library/security/MS17-010
official patch download page 2 http://www.catalog.update.microsoft.com/Search.aspx?q=KB4012598
6. Steps of setting screen lock in WinXP
7. 1. To install the latest security patch for the computer, Microsoft has released the patch ms17-010 to fix the system vulnerability of "eternal blue" attack. Please install this security patch as soon as possible; For windows
XP, 2003 and other machines that Microsoft no longer provides security updates, 360 "NSA Arsenal immune tool" can be used to detect whether there are loopholes in the system, and close the ports affected by the loopholes, so as to avoid being infringed by blackmail software and other viruses
2. Close ports 445, 135, 137, 138 and 139, and close network sharing
3. Strengthen the awareness of network security: don't click the unknown link, don't download the unknown file, don't open the unknown email...
4. Back up the important files in your computer to the mobile hard disk and U disk as soon as possible (regularly in the future), and save the disk offline after the backup
5. It is recommended that users who are still using Windows XP, windows 2003 or windows
2008 / 2012 / 2016 upgrade to Windows 7 / windows 10 as soon as possible.
XP, 2003 and other machines that Microsoft no longer provides security updates, 360 "NSA Arsenal immune tool" can be used to detect whether there are loopholes in the system, and close the ports affected by the loopholes, so as to avoid being infringed by blackmail software and other viruses
2. Close ports 445, 135, 137, 138 and 139, and close network sharing
3. Strengthen the awareness of network security: don't click the unknown link, don't download the unknown file, don't open the unknown email...
4. Back up the important files in your computer to the mobile hard disk and U disk as soon as possible (regularly in the future), and save the disk offline after the backup
5. It is recommended that users who are still using Windows XP, windows 2003 or windows
2008 / 2012 / 2016 upgrade to Windows 7 / windows 10 as soon as possible.
8. If it is confirmed that it is poisoned, do not try to plug in the network cable or USB flash disk. Shut down the computer, including TCP and UDP protocol 135 and 445 port tutorial http://bbs.360.cn/thread-14973844-1-1.html 2. Install anti blackmail protection tools and document guards, and try to recover the encrypted files. Specifically, you can go to 360 forum for technical consultation
9. Unfortunately, Windows users are attacked by wanacry blackmail virus. The current solution is as follows: (never pay ransom in any case. There is a lot of evidence that even if ransom files are paid, they cannot be decrypted.) Windows users can completely eliminate the wanacry blackmail virus on the device by formatting all hard disks. Indivial users can contact security manufacturers at home and abroad, such as Qihoo 360, Jinshan drug bully, Kaspersky, mcfel, Tencent security manager and other security centers for assistance in recovering important data. Use "blackmail virus immunity tool" to repair. Users download the offline version of Tencent computer manager "blackmail virus immunity tool" through other computers, and the files to a safe and non-toxic U disk; Then turn on the designated computer when WiFi is turned off, the network cable is unplugged and the network is disconnected, and back up important files as soon as possible; Then use the offline version of "blackmail virus immunity tool" to fix the vulnerability with one click through USB flash disk; Network can be normal use of the computer. Use the file recovery tool to recover. Users who have been infected with the virus can use the computer manager - file recovery tool for file recovery, with a certain probability of recovering your documents. Note: we should also pay attention to the handling methods of relevant security manufacturers and wait for more superior perfect unlocking.
10. According to the network security agency, this is a virus attack launched by lawless elements using the "eternal blue" leaked from NSA hacker's weapon library“ "Eternal blue" will scan windows machines with open 445 file sharing port, without any user operation. As long as the machine is turned on and connected to the Internet, criminals can plant blackmail software, remote control Trojan horse, virtual currency mining machine and other malicious programs in computers and servers
1. Install the latest security patch for your computer. Microsoft has released patch ms17-010 to fix the system vulnerability of "eternal blue" attack. Please install this security patch as soon as possible; For windows
XP, 2003 and other machines that Microsoft no longer provides security updates, 360 "NSA Arsenal immune tool" can be used to detect whether there are loopholes in the system, and close the ports affected by the loopholes, so as to avoid being infringed by blackmail software and other viruses
2. Close ports 445, 135, 137, 138 and 139, and close network sharing
3. Strengthen the awareness of network security: don't click the unknown link, don't download the unknown file, don't open the unknown email...
4. Back up the important files in your computer to the mobile hard disk and U-disk as soon as possible (regularly in the future), and save the disk offline after the backup
5. It is recommended that users who are still using Windows XP, windows 2003 or windows 2008 / 2012 / 2016 upgrade to Windows 7 / windows 10 as soon as possible.
1. Install the latest security patch for your computer. Microsoft has released patch ms17-010 to fix the system vulnerability of "eternal blue" attack. Please install this security patch as soon as possible; For windows
XP, 2003 and other machines that Microsoft no longer provides security updates, 360 "NSA Arsenal immune tool" can be used to detect whether there are loopholes in the system, and close the ports affected by the loopholes, so as to avoid being infringed by blackmail software and other viruses
2. Close ports 445, 135, 137, 138 and 139, and close network sharing
3. Strengthen the awareness of network security: don't click the unknown link, don't download the unknown file, don't open the unknown email...
4. Back up the important files in your computer to the mobile hard disk and U-disk as soon as possible (regularly in the future), and save the disk offline after the backup
5. It is recommended that users who are still using Windows XP, windows 2003 or windows 2008 / 2012 / 2016 upgrade to Windows 7 / windows 10 as soon as possible.
Hot content