May 15, with the enterprises and institutions focused on the start office on Monday, WannaCry extortion virus may further spread, universities, banks, hospitals and other high-risk users will be a great challenge. As of 10:30 on the 14th, the National Internet Emergency Center has been monitoring about 242.3 million IP addresses suffered "Eternal Blue" vulnerability attack; by the blackmail the software IP address number of nearly 35,000, of which IP in China about 1.8 Million.
In this regard, Tencent security anti-virus laboratory person in charge, Tencent computer steward security expert Ma Jinsong said, WannaCry extortion virus, although the potential harm, but the security researchers in the defense of WannaCry blackmail virus has made some progress. Tencent computer housekeeper has released "extortion virus immune tool" and "extortion virus immune tool off-line version", the user as long as the correct disposal method, through the computer steward extortion virus immune tool, you can reinforce the computer to avoid infection.
How ordinary personal computer users operate
Ma Jinsong proposed in strict accordance with the norms of operation, to avoid the computer was infected with the virus. Tencent computer housekeeper who launched the "extortion virus immune tool" offline version (http://guanjia.qq.com/wannacry/) can help you immune to extortion virus. Before the boot to ensure that the computer is in a broken state, after the boot back to the important documents in other documents without important information to download offline patch package to a safe, non-toxic U disk, and then copy the U disk "extortion virus immune tool" Offline version to this computer, a key repair vulnerability; networking can use the computer.
1. Open the computer before the broken network: open the computer before the first cut off the computer network cable or cut off Wi-Fi, and then boot operation.
2. Back up important documents to the mobile hard disk or U disk
3. Download the immune tool: in other no important documents on the computer to download "virus off-line version of the immune tool"
4. copy the U disk in the "virus off-line version of the immune tool" to the computer, run and wait for the completion of the patch after the restoration of the computer, you can normal Internet
How does an enterprise administrator user operate?
Administrators are not sure whether the computer is infected, you can use Tencent computer steward's "administrator assistant" diagnostic tool for testing. Enterprise network administrator as long as the download of this diagnostic tool, enter the target computer's IP or device name, you can diagnose the target computer is infected loopholes loopholes. The biggest benefit of this diagnostic tool is to provide an effective tool for network administrators to diagnose computer equipment security and defense, which can help companies fully understand the security of computer equipment, greatly enhance the efficiency of the administrator, and in the diagnosis of the guidance of the report Under the health of the equipment has not yet patched in time to patch, layout defense.
1. Disable Access Layer PC PC segment This 445 port access.
2. Require all employees to follow the previous 1 to 4 steps to repair the vulnerability.
3. Use the "Administrator Assistant" to confirm whether the employee computer vulnerability is fixed.
(Command: MS_17_010_Scan.exe 192.168.164.128)
How to protect the file
In addition, in order to avoid the file again by WannaCry similar virus threat. Tencent computer housekeeper has also launched a protective tool "document guardian", the user can be in the latest version of the 12.5 version of the computer steward toolbox to open, select the "full document backup", to be restarted after the computer, "document guardian" will be intelligent protection of the computer Document, when there is encryption, modify, delete and other operations to achieve no sense of automatic backup. At the same time, Tencent computer housekeeper also on the line "computer housekeeper file repair tool", can help users reduce the loss caused by blackmail virus.
On the WannaCry extortion virus new variants rumors, Ma Jinsong said that although the current monitoring of the data and did not fully confirm the WannaCry 2.0 extortion virus has been struck, but the possibility of a new variant is very large, to remind the majority of users, be sure to strengthen the network security awareness , Unfamiliar links do not click, unfamiliar files do not download, unfamiliar mail do not open, computer installation and open anti-virus software!
Read More:
How to Recover Encrypted File from Wannacry Virus Infected Computer
Recover Files from Wannacry Virus Infected Memory Card and USB Drive
How to Repair Damaged Video File due to WannaCrypt Virus Attack
In this regard, Tencent security anti-virus laboratory person in charge, Tencent computer steward security expert Ma Jinsong said, WannaCry extortion virus, although the potential harm, but the security researchers in the defense of WannaCry blackmail virus has made some progress. Tencent computer housekeeper has released "extortion virus immune tool" and "extortion virus immune tool off-line version", the user as long as the correct disposal method, through the computer steward extortion virus immune tool, you can reinforce the computer to avoid infection.
How ordinary personal computer users operate
Ma Jinsong proposed in strict accordance with the norms of operation, to avoid the computer was infected with the virus. Tencent computer housekeeper who launched the "extortion virus immune tool" offline version (http://guanjia.qq.com/wannacry/) can help you immune to extortion virus. Before the boot to ensure that the computer is in a broken state, after the boot back to the important documents in other documents without important information to download offline patch package to a safe, non-toxic U disk, and then copy the U disk "extortion virus immune tool" Offline version to this computer, a key repair vulnerability; networking can use the computer.
1. Open the computer before the broken network: open the computer before the first cut off the computer network cable or cut off Wi-Fi, and then boot operation.
2. Back up important documents to the mobile hard disk or U disk
3. Download the immune tool: in other no important documents on the computer to download "virus off-line version of the immune tool"
4. copy the U disk in the "virus off-line version of the immune tool" to the computer, run and wait for the completion of the patch after the restoration of the computer, you can normal Internet
How does an enterprise administrator user operate?
Administrators are not sure whether the computer is infected, you can use Tencent computer steward's "administrator assistant" diagnostic tool for testing. Enterprise network administrator as long as the download of this diagnostic tool, enter the target computer's IP or device name, you can diagnose the target computer is infected loopholes loopholes. The biggest benefit of this diagnostic tool is to provide an effective tool for network administrators to diagnose computer equipment security and defense, which can help companies fully understand the security of computer equipment, greatly enhance the efficiency of the administrator, and in the diagnosis of the guidance of the report Under the health of the equipment has not yet patched in time to patch, layout defense.
1. Disable Access Layer PC PC segment This 445 port access.
2. Require all employees to follow the previous 1 to 4 steps to repair the vulnerability.
3. Use the "Administrator Assistant" to confirm whether the employee computer vulnerability is fixed.
(Command: MS_17_010_Scan.exe 192.168.164.128)
How to protect the file
In addition, in order to avoid the file again by WannaCry similar virus threat. Tencent computer housekeeper has also launched a protective tool "document guardian", the user can be in the latest version of the 12.5 version of the computer steward toolbox to open, select the "full document backup", to be restarted after the computer, "document guardian" will be intelligent protection of the computer Document, when there is encryption, modify, delete and other operations to achieve no sense of automatic backup. At the same time, Tencent computer housekeeper also on the line "computer housekeeper file repair tool", can help users reduce the loss caused by blackmail virus.
On the WannaCry extortion virus new variants rumors, Ma Jinsong said that although the current monitoring of the data and did not fully confirm the WannaCry 2.0 extortion virus has been struck, but the possibility of a new variant is very large, to remind the majority of users, be sure to strengthen the network security awareness , Unfamiliar links do not click, unfamiliar files do not download, unfamiliar mail do not open, computer installation and open anti-virus software!
Read More:
How to Recover Encrypted File from Wannacry Virus Infected Computer
Recover Files from Wannacry Virus Infected Memory Card and USB Drive
How to Repair Damaged Video File due to WannaCrypt Virus Attack
No comments:
Post a Comment