Uma ubhekana neqiniso lokuthi i-Yandex ayisebenzi, futhi esikhundleni sokubonisa ikhasi elijwayelekile, lithi, "Oh ... Izicelo ezitholiwe kusuka ekhelini lakho zifana nezizenzakalelayo" futhi zicela ukungena inombolo yefoni ukuze uqhubeke nokuseshwa - okokuqala, ungakholelwa: enye enye indlela yokuhlambalaza yokuthola imali yakho ngokusebenzisa isofthiwe enonya.
Kulesi sihloko sizobheka indlela yokususa lo mlayezo bese ubuyela ikhasi elijwayelekile le-Yandex.
Kuyini futhi kungani uYandex ebhala kanjalo?
Okokuqala, ikhasi olibonayo alikho isayithi le-Yandex, nje usebenzisa umklamo ofanayo ukukudukisa. Yebo okuyinhloko yegciwane ukuthi uma ucela izingosi ezithandwayo (esimweni sethu, i-Yandex), asibonisi ikhasi langempela, kodwa likuyisa kwisayithi eliphanga lokuphanga. Okufanayo okwenzekayo lapho ofunda nabo kanye namanye amanethiwekhi omphakathi engavuli futhi uceliwe ukuba uthumele i-SMS noma ufake inombolo yakho yefoni.
Izicelo ezivela ekhelini lakho le-IP zifana nezindlela ezizenzakalelayo.
Indlela yokulungisa ikhasi Oh ku-Yandex
Futhi manje ungalungisa kanjani lesi simo futhi ususe igciwane. Le ndlela ifana kakhulu nale engiyichazile kakade ku-athikili Amasayithi namakhasi awavuli, kepha i-Skype isebenza.
Ngakho-ke, uma u-Yandex ebhala O, senza okulandelayo:
- Qala umhleli wokubhalisa ngokuchofoza izinkinobho ze-Win + R bese ufaka umyalo regedit.
- Vula igatsha lokubhalisa I-HKEY_LOCAL_MACHINE SOFTWARE Microsoft Windows NT CurrentVersion Windows
- Naka i-AppInit_DLLs yepharamitha nokubiza kwayo - chofoza ngakwesokudla kuyo, khetha "Shintsha", susa indlela eya ku-DLL echazwe lapho. Khumbula indawo yefayela ukususa kamuva.
- Vula i-Windows Task Scheduler futhi ubuke imisebenzi esebenzayo kuLabhulali Yomhleli - phakathi kwabanye, kufanele kubonakale into eqala ifayela le-exe ngendawo efanayo nelabhulali ku-AppInit_DLLs. Susa lo msebenzi.
- Qala kabusha ikhompyutha yakho, ngcono kumodi ephephile.
- Susa amafayela amabili endaweni yegciwane - i-DLL nefayela le-Exe kusuka emsebenzini.
Ngemva kwalokhu, ungaqala kabusha ikhompyutha yakho kakade kwimodi evamile futhi, cishe, uma uzama ukuvula i-Yandex kusiphequluli, iyovula ngokuphumelelayo.
Enye indlela ihambisana nosizo lwe-AVZ unqulo wesi arab.
Lolu khetho, ngokujwayelekile, luphinda oludlule, kodwa, mhlawumbe, luzoba lula futhi lucacile komunye umuntu. Ukuze senze lokhu, sidinga i-AVZ yamahhala ye-antivirus Umbuso, ongayilanda mahhala kusuka lapha: //z-oleg.com/secur/avz/download.php
Ngemuva kokulanda, ukuyikhiphe kusuka ku-archive, uyigijime, futhi ngokuchofoza kwimenyu enkulu "Ifayela" - "Uhlelo Lokusesha". Emva kwalokho, chofoza inkinobho ethi "Qala"; akudingeki ushintshe noma yiziphi izilungiselelo (into kuphela oyodinga ukucacisa ukuthi ungayilondoloza kuphi umbiko).
Embikweni wokugcina, ngemuva kokucwaninga, thola isigaba "Shintsha ngokuzenzakalelayo" bese uthola ifayela le-DLL, ekuchazweni kwalo okukhonjisiwe HKEY_LOCAL_I-MACHINE I-SOFTWARE I-Microsoft Windows NT I-CurrentVersion Windows I-AppInit_I-DLL Kusukela kuleli phuzu kufanele ukhumbule (ukopishe) igama lefayela.
I-DLL ye-Malware kumbiko we-AVZ
Bese ubheka umbiko "Wezinhlelo Zokuhlela" bese uthola ifayela le-exe elisefolda elifanayo njenge-DLL kusukela esigabeni esedlule.
Emva kwalokho, ku-AVZ, khetha "Ifayela" - "Run script" futhi usebenzise iskripthi kanje:
qala u-DeleteFile ('indlela eya ku-DLL kusukela entweni yokuqala'); Susa i-DeleteFile ('indlela eya ku-EXE kusuka entweni yesibili'); I-ExecuteSysClean; Qala kabusha iWindows (yeqiniso); ukuphela.Ngemva kokusebenzisa le script, ikhompyutha izoqala kabusha ngokuzenzakalelayo futhi uma uqala i-Yandex, umlayezo othi "Oh" ngeke usabonakala.
Uma lo msizi usize, sicela uwahlanganyele nabanye usebenzisa izinkinobho zokuxhumana nabantu ngezansi.
