Ukuqonda i-Sality Virus nokuthi Ungayisusa kanjani
I-Sality ngumndeni we- software ehlasela ifayela ehlasela ifayela echaphazela ama-computer eWindows ngokusabalalisa izifo ngokusebenzisa amafayela we- EXE ne-SCR.
I-Sality, okungenzeka ukuthi iqalile eRussia ekuqaleni, iguqukile kakhulu eminyakeni, ukuhlukahluka kakhulu kwe-malware kubonisa izici ezihlukahlukene. Noma kunjalo, ukuhlukahluka okuningi kwe-Sality kuyizibungu lapho zisebenzisa uhlobo oluthile lokusebenza kwe-autorun ukuthelela amafayela afanelekayo ngezingcingo ezithintekayo noma ezitholakalayo.
Amanye ama-botnets we-Sality ajoyina imishini ethempelini kwinethiwekhi yayo ye-P2P ukuze amakhompyutha wonke alekelele ukwenza izinto ezifana nokuba idatha yangasese, ukuphazamisa amaphasiwedi, ukuthumela ugaxekile nokuningi.
I-virus ye-Sality ingase ifake futhi i-Trojan downloader efaka i-malware eyengeziwe nge-intanethi, ne-keylogger ehlola futhi erekhoda ama-keystrokes.
Qaphela: Ezinye izinhlelo ze-antivirus zibhekisela kuma-Sality amagciwane ngamanye amagama afana ne-SaILoad, iSaliCode, Kookoo, ne-Kukacka.
Indlela Esebenza ngayo
Njengoba kuboniswe ngenhla, i-Sality malware ihlasela amafayela aphethwe kwikhompyutha elelekile.
Izinguqulo eziningi ze-malware zifaka ifayela elikhethekile le- DLL kwikhompyutha ngaphakathi kwefolda ye- % SYSTEM% futhi lingase liyibize ngokuthi "wmdrtc32.dll" noma, ngenxa ye-compressed version, "wmdrtc32.dl_."
Nokho, akuzona zonke izinhlobo ze-Sality virus ezizosebenzisa ifayela le-DLL ngale ndlela. Abanye balayisha ikhodi ngqo enkumbulweni, futhi ifayela le-DLL ngeke litholakale noma kuphi ngaphakathi kwamafayela wangempela wediski.
Abanye bangakwazi ngisho nokugcina umshayeli wedivayisi kufolda ye- % SYSTEM% \ ifolda. Okwenza lokhu kube okukhohlisayo ukuthi kungagcinwa ngegama elifakiwe lefayela, ngakho-ke uma isofthiwe yakho ye-unqulo wesi arab kuphela ifunda amagama efayela ukuhlola ama-virus, hhayi okuqukethwe kwefayela, kunethuba elihle lokuthi ngeke libheke i-Sality virus .
Ukubuyekezwa kwe-Sality malware kwondliwa nge-HTTP ngezinhlu ezimele ze- URL . Uma usulelekile, i-malware idinga kuphela ukucela izibuyekezo ngemuva kwezigcawu ukuguqula nokukhula ngokwakho, ukulanda amafayela amasha ukuthelela amanye amakhompyutha.
Izimpawu zokutheleleka
Kubalulekile ukuqaphela izimpawu zokutheleleka kwegciwane lesandulela-ngculaza-ukuthi ikhompyutha yakho ingayenza noma ingayenza kanjani uma i-Sality virus ikhona.
Njengamanye ama-malware amaningi, uSality angenza noma yikuphi okulandelayo:
- Khubaza isofthiwe ye-antivirus futhi uvimbele ukufinyelela kumawebhusayithi anqulo wesi arab kanye nokuphepha.
- Vimbela ukuphinda usebenzise i- Safe Mode .
- Susa amafayela ahlobene nokuphepha, izinqubo, kanye / noma amasevisi .
- Gcina i-CMD, i-PIF, kanye / noma ifayela le-EXE emmpandeni wokushayela okutholakala, kanye nefayela le-autorun.inf equkethe imiyalelo yokulayisha amafayela alahlekile lapho kutholakala idrayivu.
- Thumela ugaxekile kubathintana nabo be-imeyili ngokufinyelela ibhuku lakho lekheli leklayenti le-imeyili.
- Susa amafayela aqukethe isandiso esithile sefayela .
Indlela yokususa
Indlela engcono kakhulu yokuvimbela ukutheleleka kwegciwane lesandulela ngculazi ukugcina ikhompyutha yakho isesikhathini samanje kanye nezincazelo zokuvikeleka. Sebenzisa i- Windows Update futhi ugcine isofthiwe yakho ye-antivirus ivuselelwe ukusiza ukuvimbela lokhu kuhlaselwa.
Uma usuvele wazi ukuthi une-Sality virus, ungayilahla ngendlela efanayo. Skena ikhompyutha yakho nge-malware ngenhlelo yesofthiwe ye-antivirus ebuyekeziwe futhi enamandla . Ungase ube nenhlanhla usebenzisa i- remover spyware ukuze ubambe igciwane le-Sality njengoba isebenza njenge-spyware, futhi. Uma lezo zingasebenzi noma ungenawo ukufinyelela okuvamile ku-Windows, sebenzisa uhlelo lokuvikela unqulo wesi arab esikhundleni.
Abanye abathengisi be-antivirus bafaka ithuluzi elikhethekile elisho ngokuqondile ukubhekana ne-Sality virus. Isibonelo, i-AVG inikeza uhlelo lokusebenza oludumile lwe-antivirus mahhala kodwa futhi lufaka phakathi i-Sality Fix ongayilanda mahhala ukususa i-Sality virus ngokuzenzakalelayo. I-Kaspersky ikuvumela ukuthi usebenzise ithuluzi lamahhala le-SalityKiller.
Uma ifayela litholakala ukuthi linesifo Sality, vumela isofthiwe ukuhlanza ifayela. Uma ngabe enye i-malware itholakele, zama ukususa igciwane noma uthathe isenzo esikhuthazwayo ngesithwebuli.
Ezinye izinhlelo ze-antivirus kungenzeka zingatholi i-Sality virus. Uma usola ukuthi unegciwane kodwa isofthiwe yakho yokuphepha ayikutholi, zama ukuyilayisha ku-VirusTotal ukuze ulayishe ngokuxhumeke ku-intanethi ngezinjini ezahlukene zokuskena.
Enye indlela yokwenza ngesandla ukususa amafayela wegciwane ngokucwaninga kukhompyutha ngekholi yosesho lwefayela njenge Konke. Noma kunjalo, kunethuba elihle lokuthi amafayela avaliwe ekusetshenzisweni futhi angeke asuswe ngendlela evamile. Uhlelo lwe-antivirus lungavimbela lokhu ngokuhlela uhlelo lwe-malware lokususwa lapho ikhompyutha ivaliwe.
Okufanele Ukwenze Okulandelayo
Uma uqinisekile ukuthi i-Sality virus isusiwe, kufanele ucabange ukukhubaza i-autorun ukuvimbela ukutheleleka kabusha kabusha nge- USB .
Kubalulekile futhi ukushintsha amaphasiwedi kunoma yiziphi ama-akhawunti a-intanethi oyisebenzisayo ngesikhathi sokutheleleka. Uma i-Sality virus igxile ama-keystrokes, khona-ke kunethuba elihle lokuthi lirekhodi imininingwane yakho yasebhange, izimpawu zezindaba zenhlalo, iphasiwedi ye-imeyli, njll. Ukushintsha lawo maphasiwedi ( emva kokutheleleka sekuphelile ) nokuhlola ama-akhawunti akho ukweba yisinyathelo esibalulekile .
Faka uhlelo olusha lwe-antivirus njalo, oluvuselela njalo, olulula ukusebenzisa i-antivirus ukuze kungabi khona ukuthi lokhu kuzokwenzeka futhi. Qinisekisa ukuthi ingabheka ukushayela okukhiphayo kwe-malware futhi usethe izikrini ezihleliwe ukuhlola ngezikhathi ezithile i-malware yazo zonke izinhlobo, hhayi nje nge-Sality virus.