Mobile mining Trojan horse
Publish: 2021-05-02 00:57:29
1. This trojan takes advantage of the "eternal blue" vulnerability to attack and spread in the local area network. It builds a robust botnet of the infected machine, supports the self-renewal of the intranet, and lurks in the computer for a long time to extract Monroe money. Because most ordinary personal computers have been patched by windows security update and Tencent computer manager and other security software, they are basically not affected by wanna miner. It is suggested that if the suspected wanna miner mining Trojan horse is found, the poisoned machine can be located and isolated in time. It can be judged by scanning port 26931. If the port is open, the host has been infected; If you need to patch the intranet, all the computers that have not been patched. It is suggested that professional terminal security management software should be installed in the whole network, such as Tencent Yudian. The administrator should carry out mass antivirus and patch installation for the whole network to avoid unnecessary losses.
2. Don't worry about this. 360 has automatic interception function
Mining Trojan horse is now in the limelight, and its gold sucking power is catching up with blackmail virus. Recently, 360 security guard intercepted a Monroe coin mining Trojan horse spread by "eternal blue". Due to carrying heavy attack ammunition, the Trojan horse spread a large amount, reaching 100000 times a day at the peak, and 360 recently intercepted more than one million attacks
it is understood that this is a large-scale attack of mining Trojan horse carrying "eternal blue" against ordinary Internet users. In order to prevent computers from becoming the coolie of hackers mining, 360 reminds Internet users to ensure that they are well patched and immune to all kinds of attacks using "eternal blue", and at the same time, 360 security guard is opened to comprehensively defend against all kinds of mining Trojan horse
.
Mining Trojan horse is now in the limelight, and its gold sucking power is catching up with blackmail virus. Recently, 360 security guard intercepted a Monroe coin mining Trojan horse spread by "eternal blue". Due to carrying heavy attack ammunition, the Trojan horse spread a large amount, reaching 100000 times a day at the peak, and 360 recently intercepted more than one million attacks
it is understood that this is a large-scale attack of mining Trojan horse carrying "eternal blue" against ordinary Internet users. In order to prevent computers from becoming the coolie of hackers mining, 360 reminds Internet users to ensure that they are well patched and immune to all kinds of attacks using "eternal blue", and at the same time, 360 security guard is opened to comprehensively defend against all kinds of mining Trojan horse
.
3. I didn't see this problem. I forgot that I didn't receive mine for two days. I use Tencent computer manager, which can monitor the process behavior, real-time intercept malicious programs and virus Trojan horse, prevent virus Trojan horse from modifying the settings of other programs in the system through the registry.
4.
because those who come in after mobile phone mining will be cut leeks
precautions:
1. In the past two years, various myths about blockchain "overnight wealth" have been constantly staged, and "mining" cryptocurrency has become a new trend of wealth, and mobile phone mining is becoming more and more popular
2. There will be special mining machines for real mining. After all, every mining machine is not cheap now. Mobile phone automatic mining can be obtained at a very low price. What you dig is not bitcoin. Basically, the counterfeit coin you send is not worth money. At that time, you will still be cut leeks
5. It's OK to use Tencent computer housekeeper. Every time I download a software, I open Tencent computer housekeeper, and then check if there is any abnormality in the software. If not, I use it. If there is, Tencent computer Housekeeper will kill it directly
6. To restore the factory settings, you have to find a mobile phone repairer
7. Enter the activity interface! That's it
8. As long as you don't escape, don't trust unknown enterprise applications or description files. It's not toxic.
Hot content