Thefreedom
JF-Expert Member
- Jan 27, 2019
- 319
- 313
OKAY sio mwongeaji sana ila
dhumuni ni
1. ku protect watu wenye uelewa mdogo na viruses
2. kuchukua tahadhari na kulinda vifaa vyako vya office , biashara n.k
haina haja ya kujitambulisha maana weng mnanifahamu okay...twende direct kwenye point.
kumekuwa na tabia kubwa hasa kwa watu wengi ikiwemo sisi watanzania kupalamia microsoft windows installion packages cracked yani activated bila kujua nini kilichosababisha software hio kuwa free au activated pasipo kutoa pesa yako kulipia.
Na ukijaribu kuangalia upande wa demand...sisi watanzania tunapenda sana vitu vizuri, simplified yani free..
nachotaka kusema acheni kudownload microsoft windows kwenye websites ambazo zinatoa free hizi softwares . sasa hivi kumekuwa na mtindo mchafu wa hawa developers wa hizo softwares wana attach ransomewares ambao wanakuwa remoted na server zao na kuchagua lini wacomprimmised ur system.
je wanabind vipi hizo virus ? unaweza jiuliza......
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
ukidownload microsoft windows ile image.iso ndani ukiiiexctract utakuta folders tofauti ikiwemo boot, setup n.k
sasa hawa mbwa wanatumia software inayoitwa "z~cry binders" kubind setup na boot exe. kwamaana kwamba
wewe user ukiinstall windows inasend two files
1. ni backdoor 1 hii inaenda jificha kwenye c:\Users\Public
2. ni backdoor 2 (ransomewr) hii inaenda jificha kwenye c:\Windows\system32
sasa inafanyaje kaziiiii...?
baada ya kujijificha wewe user lazima uunge pc yako na internet ili ufanye shughuli zako ..sasa ukiingia kwenye net hizi backdoors zinafanya connection na server yao na kutengeneza lifetime access
je unajua how?
okay kwenye windows microsoft kuna kitu kinaitwa system registry na hizi zinaenda backdoor zinaatack preccessor ku add new registry kwenye c:HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSSION\RUN
Ina add backdooor 2 na baada ya kufanya hivo ni kwamba user kila akiwasha pc server yao inapata taarifa na kuanzisha connection na wanaweza kutransfer hata datas
sasa ransomeware wanakuwa activated vipi ....?
hii system ikianzisha connection only server yao ndo inauwezo wa kuactivated ile binded ransomwr kustart
na hapa kama ukiwa na datas zako za kazini au kwenye kampuni yako zinakuwa encrpted na huwez ku unlock mpKA utume kiasi cha pesa ....
sa this is extremely dangerous especiall kama umeinstall a particular windows kwenye pcs zote za kazini au officine au computr binafsi Ambazo ziko on LAN or WAN.
watu wengi mtakuwa na maswalii ikiwemo haya yafuatyo....
1. nitajuaje kama niko affected?
JIBU: kwanza utona mabadiliko kwnye baadhi ya sehemu mfano ....process usage PC Itakuwa na high power usage
ukienda kwenye monitor activity zako za pc utaona hizi backdoor mbili zikiwa na description ya kampu husika....au fungua CMD type netstat -ano utaona established connection kwenye port 8989,8734,5612
2. nitawezaje kujizuia?
JIBU : njia nzuri ni kutumia activirus updated na kuacha kuinstall software from unknown developers
3.je kama cracked je si lazima uzime antivirus ...hapo itakuaje?
JIBU ni kwamba TUMIA software zitokanazo na kutolewa na developer husika mfano microsoft n.k?
4. umejuaje hizi habari?
binafsi nimekuwa nikichuinguza hii kitu kwa muda wa miezi mitatu sasa , nachunguza sana platform za virus wakubwa na pia ni mtengenezaji wa powerful ransomewares kwa kutumia C# PROGRAMMING na hawa watu mmoja wao niliwahi kuwasiliana naye na kunishawishi kufanya naye kazi kama mnavyoona kwenye picha chini...na server yao ipo shared na web kubwa kam get into pc na comfart softwares free.
so ndugu kuwa makini sana usije ukaingia mikononi mwa hawa watu ....kwasabbu kama ukiwa unatumia pc ya kazin na kuna docs muhimu ...itakuwa ni hatar
ni hayo tu
Thefreedom
dhumuni ni
1. ku protect watu wenye uelewa mdogo na viruses
2. kuchukua tahadhari na kulinda vifaa vyako vya office , biashara n.k
haina haja ya kujitambulisha maana weng mnanifahamu okay...twende direct kwenye point.
kumekuwa na tabia kubwa hasa kwa watu wengi ikiwemo sisi watanzania kupalamia microsoft windows installion packages cracked yani activated bila kujua nini kilichosababisha software hio kuwa free au activated pasipo kutoa pesa yako kulipia.
Na ukijaribu kuangalia upande wa demand...sisi watanzania tunapenda sana vitu vizuri, simplified yani free..
nachotaka kusema acheni kudownload microsoft windows kwenye websites ambazo zinatoa free hizi softwares . sasa hivi kumekuwa na mtindo mchafu wa hawa developers wa hizo softwares wana attach ransomewares ambao wanakuwa remoted na server zao na kuchagua lini wacomprimmised ur system.
je wanabind vipi hizo virus ? unaweza jiuliza......
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
ukidownload microsoft windows ile image.iso ndani ukiiiexctract utakuta folders tofauti ikiwemo boot, setup n.k
sasa hawa mbwa wanatumia software inayoitwa "z~cry binders" kubind setup na boot exe. kwamaana kwamba
wewe user ukiinstall windows inasend two files
1. ni backdoor 1 hii inaenda jificha kwenye c:\Users\Public
2. ni backdoor 2 (ransomewr) hii inaenda jificha kwenye c:\Windows\system32
sasa inafanyaje kaziiiii...?
baada ya kujijificha wewe user lazima uunge pc yako na internet ili ufanye shughuli zako ..sasa ukiingia kwenye net hizi backdoors zinafanya connection na server yao na kutengeneza lifetime access
je unajua how?
okay kwenye windows microsoft kuna kitu kinaitwa system registry na hizi zinaenda backdoor zinaatack preccessor ku add new registry kwenye c:HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSSION\RUN
Ina add backdooor 2 na baada ya kufanya hivo ni kwamba user kila akiwasha pc server yao inapata taarifa na kuanzisha connection na wanaweza kutransfer hata datas
sasa ransomeware wanakuwa activated vipi ....?
hii system ikianzisha connection only server yao ndo inauwezo wa kuactivated ile binded ransomwr kustart
na hapa kama ukiwa na datas zako za kazini au kwenye kampuni yako zinakuwa encrpted na huwez ku unlock mpKA utume kiasi cha pesa ....
sa this is extremely dangerous especiall kama umeinstall a particular windows kwenye pcs zote za kazini au officine au computr binafsi Ambazo ziko on LAN or WAN.
watu wengi mtakuwa na maswalii ikiwemo haya yafuatyo....
1. nitajuaje kama niko affected?
JIBU: kwanza utona mabadiliko kwnye baadhi ya sehemu mfano ....process usage PC Itakuwa na high power usage
ukienda kwenye monitor activity zako za pc utaona hizi backdoor mbili zikiwa na description ya kampu husika....au fungua CMD type netstat -ano utaona established connection kwenye port 8989,8734,5612
2. nitawezaje kujizuia?
JIBU : njia nzuri ni kutumia activirus updated na kuacha kuinstall software from unknown developers
3.je kama cracked je si lazima uzime antivirus ...hapo itakuaje?
JIBU ni kwamba TUMIA software zitokanazo na kutolewa na developer husika mfano microsoft n.k?
4. umejuaje hizi habari?
binafsi nimekuwa nikichuinguza hii kitu kwa muda wa miezi mitatu sasa , nachunguza sana platform za virus wakubwa na pia ni mtengenezaji wa powerful ransomewares kwa kutumia C# PROGRAMMING na hawa watu mmoja wao niliwahi kuwasiliana naye na kunishawishi kufanya naye kazi kama mnavyoona kwenye picha chini...na server yao ipo shared na web kubwa kam get into pc na comfart softwares free.
so ndugu kuwa makini sana usije ukaingia mikononi mwa hawa watu ....kwasabbu kama ukiwa unatumia pc ya kazin na kuna docs muhimu ...itakuwa ni hatar
ni hayo tu
Thefreedom
