date
21 April 2019 Sunday. 21:03:56 UTC
scammer/abuser
ransomware
description
This kid do mysql injection then create a PROXY GRANT user and if he can other USER WITH ALL PRIVILEGES.
Don't be fools, the deleted database is not backed up. He just wait for the payment.
To solve it:
1. Backup your databases everyday
2. Delete every new account
3. Execute this line and check every account -> show grants for 'account'@'domain'
4. Change every account's password. Or delete unknown users
5. Protect your webpage using methods to avoid SQL INJECTION
To recover your lost data : Send 0.05 BTC to our BitCoin Address and Contact us by eMail with your server IP Address or Domain Name and a Proof of Payment. Any eMail without your server IP Address or Domain Name and a Proof of Payment together will be ignored. Your File and DataBase is downloaded and backed up on our servers. If we dont receive your payment,we will delete your databases.