win7系统防止中招勒索病毒
echo @@ netsh advfirewall firewall add rule name="Deny TCP 123" dir=out action=block protocol=TCP localport=123 netsh advfirewall firewall add rule name="Deny UDP 123" dir=out action=block protocol=UDP localport=123 netsh advfirewall firewall add rule name="Deny TCP 135" dir=out action=block protocol=TCP localport=135 netsh advfirewall firewall add rule name="Deny UDP 135" dir=out action=block protocol=UDP localport=135 netsh advfirewall firewall add rule name="Deny TCP 137" dir=out action=block protocol=TCP localport=137 netsh advfirewall firewall add rule name="Deny UDP 137" dir=out action=block protocol=UDP localport=137 netsh advfirewall firewall add rule name="Deny TCP 138" dir=out action=block protocol=TCP localport=138 netsh advfirewall firewall add rule name="Deny UDP 138" dir=out action=block protocol=UDP localport=138 netsh advfirewall firewall add rule name="Deny TCP 139" dir=out action=block protocol=TCP localport=139 netsh advfirewall firewall add rule name="Deny UDP 139" dir=out action=block protocol=UDP localport=139 netsh advfirewall firewall add rule name="Deny TCP 445" dir=out action=block protocol=TCP localport=445 netsh advfirewall firewall add rule name="Deny UDP 445" dir=out action=block protocol=UDP localport=445 netsh advfirewall firewall add rule name="Deny TCP 3389" dir=out action=block protocol=TCP localport=3389 netsh advfirewall firewall add rule name="Deny UDP 3389" dir=out action=block protocol=UDP localport=3389 end
1、以管理员身份运行“1封端口”文件夹中的bat文件
2、根据电脑版本以管理员身份运行“2打补丁”中x64或者x86文件夹中的文件
被勒索病毒感染的机器中文件如下:
任何txt等被加密的文档都是乱码
http://nic.swu.edu.cn/s/nic/gzdt/20190515/3710754.html
|
作者:Agoly 出处:https://www.cnblogs.com/qmfsun/ 本文版权归作者和博客园共有,欢迎转载,但未经作者同意必须保留此段声明,且在文章页面明显位置给出原文连接,否则保留追究法律责任的权利。 如果文中有什么错误,欢迎指出。以免更多的人被误导。 |
