Google Virus Redirect – Tillaabo-tallaabo Buugga Hagaha ka saarida

Dhibaato ma(Are) ku haysataa biraawsarkaaga in si toos ah loogu jiheeyo mareegaha qariib iyo kuwa shakiga leh? Waddooyinku inta badan miyay(Are) farta ku fiiqayaan goobta ganacsiga e-commerce, goobaha khamaarka? Ma haysaa soo-bandhigyo badan oo soo baxaya oo muujinaya xayeysiis? Fursadaha waxaa laga yaabaa inaad qabtid Google Redirect Virus .

Google redirect virus waa mid ka mid ah caabuqyada ugu dhibka badan, khatarta ah, iyo kuwa ugu adag ee abid lagu sii daayo intarneedka. Malware-ka ayaa laga yaabaa in aan loo qaadanin mid dilaa ah, maadaama joogitaanka caabuqan aanu ku dhacayn kombiyuutarkaaga oo aanu ka dhigi doonin mid aan faa'iido lahayn. Laakin waxaa loo arkaa wax laga xumaado marka loo eego dilaaga ah sababtoo ah jiheynta aan loo baahnayn iyo soo-bandhigista kuwaas oo qof walba niyad jabin kara ilaa dhammaadka.

(Google)Fayraska Google -ku-gudbinta ma aha oo kaliya in uu jiho natiijooyinka Google -ka balse waxa uu awood u leeyahay in uu dib u habeeyo natiijooyinka raadinta Yahoo iyo Bing sidoo kale. Markaa ha la yaabin inaad maqasho  Virus Redirect Virus(Yahoo Redirect Virus)  ama  Bing Redirect Virus . Malware-ku waxa kale oo uu dhibaa browser kasta oo ay ka mid yihiin Chrome , Internet Explorer , Firefox , iwm. Maadaama Google Chrome uu yahay browserka loogu isticmaalka badan yahay, qaar baa u yaqaan Google Chrome Redirect virus oo ku salaysan browser-ka uu dib u hagayo. Dhawaan,  malwareCodeeyayaashu waxay wax ka beddeleen koodkooda si ay u abuuraan kala duwanaansho si ay uga baxsadaan ogaanshaha fudud ee software-ka amniga. Qaar ka mid ah kala duwanaanshiyaha dhawaanahan waa  Nginx Redirect Virus,  Happili Redirect Virus,  iwm. Dhammaan caabuqyadan waxay hoos yimaadaan fayraska dib-u-hagaajinta, laakiin waxay ku kala duwan yihiin koodka iyo qaabka weerarka.

Sida laga soo xigtay warbixin 2016, Google redirect virus ayaa horeyba u haleelay in ka badan 60 milyan oo kombuyuutar oo ballaaran, kuwaas oo 1/3 ka mid ah ay ka yimaadeen Maraykanka. Laga bilaabo Maajo 2016(May 2016) , infekshanku wuxuu u muuqdaa inuu soo noqday iyadoo ay sii kordhayaan kiisaska la soo sheegay.

Ka saar Google Redirect Virus gacanta

Waa maxay sababta Google Redirect Virus ugu adag tahay in la saaro?

Google Redirect Virus waa rootkit ee maaha fayras. Rootkit-ku waxa uu laftigiisa ku xidhiidhiyaa qaar ka mid ah adeegyada muhiimka ah ee daaqadaha kuwaas oo ka dhigaya in uu u shaqeeyo sidii faylka nidaamka hawlgalka. Tani waxay adkeynaysaa in la aqoonsado faylka ama koodka cudurka qaba. Xitaa haddii aad aqoonsato faylka, way adag tahay in la tirtiro faylka sababtoo ah feylku wuxuu u socdaa qayb ka mid ah faylka nidaamka hawlgalka. Malware-ka waxa loo codeeyay si ay u abuurto noocyo kala duwan oo ka mid ah kood isku mid ah waqti ka waqti. Tani waxay adkaynaysaa software-ka ammaanku inuu qabto koodka oo uu sii daayo balastar ammaan ah. Xataa haddii ay ku guulaystaan ​​abuuritaanka balastar, waxay noqotaa mid aan waxtar lahayn haddii malware uu mar kale soo weeraro kaas oo ka kooban noocyo kala duwan.

Google redirect virus waa adag tahay in meesha laga saaro sababtoo ah awooda uu u leeyahay in uu ku dhuunto gudaha nidaamka hawlgalka iyo sidoo kale awooda uu u leeyahay in uu meesha ka saaro raadadka iyo raadadka sida uu u galay gudaha kombiyuutarka. Marka ay gudaha soo gasho, waxa ay isku xidhaysaa faylalka nidaamka(System) hawlgalka ee asaasiga ah taas oo ka dhigaysa in ay u ekaato fayl sharci ah oo gadaal ka socda. Xitaa haddii faylka cudurka qaba la ogaado, mararka qaarkood way adag tahay in laga saaro cos ee xiriirka uu la leeyahay faylka nidaamka hawlgalka. Ilaa hadda, ma jiro hal software oo amniga suuqa ah oo kuu dammaanad qaadi kara 100% ka ilaalinta caabuqan. Tani waxay sharxaysaa, sababta uu kombuyuutarkaaga markii hore u qaaday cudurka xitaa iyada oo la rakibay software ammaan ah.

Maqaalka halkan wuxuu sharxayaa sida gacanta loo soo qaado oo gacanta looga saaro fayraska dib u hagajinta Google . Xagga farsamada, tani waa habka ugu waxtarka badan ee looga hortago caabuqan. Farsamayaqaannada u shaqeeya qaar ka mid ah noocyada ugu waaweyn ee software amniga ayaa hadda raacaya qaab la mid ah. Isku day kasta ayaa la sameeyaa si casharka looga dhigo mid fudud oo si sahlan loo raaco.

Sida looga saaro Google Redirect Virus

1. Isku day qalabka laga heli karo onlayn ama u tag qalab xirfad leh
(1. Try tools available online or go for a professional tool )Waxaa jira qalab badan oo amniga ah oo laga heli karo suuqa. Laakin ma jiro mid ka mid ah qalabkan loo sameeyay si gaar ah si looga saaro google redirect virus. Iyadoo qaar ka mid ah isticmaalayaasha ay ku guulaysteen inay ka saaraan caabuqa iyagoo isticmaalaya hal software, isku mid ayaa laga yaabaa inuusan ka shaqayn kombuyuutar kale. Qaar ka mid ah ayaa isku dayaya dhammaan qalabyada kala duwan kuwaas oo abuuraya dhibaatooyin badan iyaga oo kharribaya OS iyo faylasha darawalka qalabka. Inta badan aaladaha bilaashka ah way adag tahay in la aamino maadaama ay sumcad ku leeyihiin inay kharribaan faylalka nidaamka hawlgalka oo ay burburiyaan. Markaa qaado kaydka xogta muhiimka ah ka hor inta aanad isku dayin qalab kasta oo bilaash ah si aad u ahaato dhinaca badbaadada. Waxa kale oo aad caawimo ka heli kartaa khabiiro ku takhasusay ka saarista caabuqan. Ka hadli maayo inaad kumbuyuutarkaaga geyso dukaanka farsamada ama wac kooxda geek taasoo kugu kacaysa lacag badan. Waxaan horay u sheegay adeeg aad awoodidisku day sida ugu dambeeya.(try as a last resort.)

2. Isku day inaad gacanta ka saarto google redirect virus(Try to remove google redirect virus manually)

Ma jirto si sahlan oo caabuqa looga saaro oo aan ka ahayn in la sameeyo iskaanka iyadoo la isticmaalayo software iyo hagaajintiisa. Laakiin haddii software-ku ku guuldareysto inuu hagaajiyo dhibaatada, xalka ugu dambeeya waa in la isku dayo in laga saaro caabuqa gacanta. Hababka ka saarista gacanta ayaa ah waqti badan waxaana laga yaabaa in qaarkiin ay kugu adkaato inaad raacdo tilmaamaha marka loo eego dabeecadeeda farsamo. Habkani waa mid aad waxtar u leh, laakiin ku guuldareysiga inaad raacdo tilmaamaha si sax ah ama suurtagalnimada qaladka bini'aadamka ee aqoonsiga faylka cudurka qaba waxay ka dhigi kartaa dadaalkaaga mid aan waxtar lahayn. Si loo fududeeyo qof walba inuu raaco, waxaan sameeyay fiidiyoow tallaabo-tallaabo ah oo sharraxaya faahfaahinta. Waxay tusinaysaa isla tillaabooyinka saxda ah ee ay adeegsadaan khubarada ka saarista fayraska si ay gacanta uga saaraan caabuqa fayraska. Waxaad ka heli kartaa muuqaalka ku dhow dhammaadka qoraalkan.

Cilad-saaridda tillaabooyinka lagu tirtirayo Google-ka Virus-(Google Redirect Virus) ka-wareejinta gacanta

Si ka duwan inta badan infekshannada, kiiska Google Redirect Virus , waxaad ka heli doontaa hal ama laba fayl oo keliya kuwaas oo la xiriira caabuqa. Laakin haddii infekshanka marka hore la iska indho tiro, tirada faylalka cudurka qaba waxay u muuqdaan inay sii kordhayaan muddo wakhti ah. Markaa si fiican iska ilaali infekshanka isla marka aad la kulanto dhibaatooyinka jiheynta. Raac hababka cilad-raadinta ee hoos lagu xusay si aad uga takhalusto Google -ka fayraska redirect. Waxa kale oo jira muuqaal hoose.

1. Daar faylalka qarsoon adiga oo furaya Folder Options(1. Enable hidden files by opening Folder Options)

Faylasha nidaamka hawlgalka si caadi ah ayaa loo qariyaa si looga hortago in si lama filaan ah loo tirtiro. Faylasha cudurka qaba waxay isku dayaan inay ku dhex qariyaan faylalka OS. Markaa waxa lagula talinayaa in aad qariso dhammaan faylasha qarsoon ka hor inta aanad cilad-bixinta bilaabin:

  • Riix Windows Key + R si aad u furto   Daaqadda Run
  • Nooca  galka xakamaynta(Control folders)
  • Guji  View  tab
  • Daar tus faylasha qarsoon, faylalka iyo darawallada(show hidden files, folders and drives)
  • Ka saar kordhinta qarinta noocyada faylka la yaqaan(hide extensions for known file types)
  • Ka saar qarinta faylalka nidaamka hawlgalka ee la ilaaliyo(hide protected operating system files)

2. Fur Msconfig(2. Open Msconfig)

Isticmaal qalabka MSConfig si aad awood ugu siiso faylka bootlog.

  1. Fur   daaqadda Run
  2. Ku qor  msconfig
  3. Guji  Boot  tab haddii aad isticmaalayso Windows 10 , 8 ama 7. Gudaha aad isticmaalayso Win XP , dooro  boot.ini  tab
  4. hubi  bootlog  si aad awood ugu yeelato
  5. Guji  Codso(Apply)  oo guji  OK

Faylka bootlog-ka waxa loo baahan yahay oo keliya tallaabada u dambaysa.

3. Dib u bilaw Computerka(3. Restart Computer)

Dib u bilaw kombiyuutarka si aad u hubiso in isbedeladii aad samaysay la fuliyay. (Marka dib loo bilaabo kombuyuutarka faylka ntbttxt.log ayaa la abuurayaa kaas oo looga hadlayo hadhow tallaabooyinka cilad-bixinta).

4. Samee hagaajinta IE dhamaystiran(4. Do a Complete IE optimization)

Hagaajinta sahamiyaha intarneedka(Internet) waxa loo sameeyaa si loo hubiyo in dib u hagistu aanay sababin cilad ka jirta biraawsarkaaga ama goobaha internet-ka ee kharribmay ee ku xidha browserka onlayn. Haddii hagaajinta si sax ah loo sameeyo, browserka iyo goobaha intarneedka ayaa dib loogu dajinayaa khaladaadkii asalka ahaa.

Fiiro gaar ah:(Note:) Qaar ka mid ah goobaha intarneedka ee la helay marka la samaynayo hagaajinta IE ayaa caadi u ah dhammaan daalacashada. Marka, dhib malahan haddii aad isticmaasho Chrome , Firefox , Opera , iwm., wali waxaa lagu talinayaa in la sameeyo kor u qaadida IE.

5. Hubi Maareeyaha Qalabka(5. Check Device Manager)

Maareeyaha Aaladda(Device Manager) waa aalad Windows oo taxaysa dhammaan aaladaha ku jira kombiyuutarkaaga. Infekshannada qaar ayaa awood u leh inay qariyaan aaladaha qarsoon ee loo isticmaali karo weerarrada malware-ka. Hubi(Check) maamulaha aaladda si aad u heshid wax galinta cudurka.

  1. Fur  daaqadda Run  (Windows Key + R)
  2. Nooca  devmgmt.msc
  3. Guji  View  tab xagga sare
  4. Dooro tus  qalabka qarsoon(hidden devices)
  5. U fiirso  darawallada aan ku xirnayn oo ciyaarta(non-plug and play drivers) . Balaadhi si aad u aragto dhammaan liiska ku jira ikhtiyaarka.
  6. (Check)Ka hubi gelista TDSSserv.sys Haddi aanad lahayn galitaanka, raadi wax gal kale oo u muuqda mid laga shakisan yahay. Haddii aadan maskaxdaada ka go'aansan karin gelitaanku inuu wanaagsan yahay ama xun yahay, ka dib samee google-ka raadinta magaca si aad u ogaato inay run tahay.

Haddii galitaanka la ogaado inuu cudurku qabo, midig-guji ka dibna riix uninstall(click uninstall) . Marka uninstall-ka la dhammeeyo, kombayutarka weli dib ha u bilaabin. Sii wad cilad-baadhista adoon dib u bilaabin.

6. Hubi diiwaanka(6. Check Registry)

Hubi faylka cudurka qaba ee ku dhex jira diiwaanka:

  1. Fur   daaqadda Run
  2. Ku qor  regedit  si aad u furto tifaftiraha diiwaanka
  3. Guji  Edit  >  Hel(Find)
  4. Geli(Enter) magaca caabuqa Haddii ay dheer tahay, geli xarfaha ugu horreeya ee gelitaanka cudurka
  5. Guji(Click) wax ka beddel -> hel. Geli dhawrka xaraf ee ugu horreeya magaca caabuqa. Xaaladdan oo kale, waxaan isticmaalay TDSS oo aan raadiyay wixii gelis ah oo ka bilaabmaya xarfahaas. Mar kasta oo uu jiro galo ka bilaabma TDSS , waxay tusinaysaa galitaanka bidixda iyo qiimaha dhinaca midig.
  6. Haddii ay jirto gelid kaliya, laakiin aan meel fayl ah lagu sheegin, dabadeed si toos ah u tirtir. Sii wad(Continue) raadinta gelida xigta ee TDSS
  7. Raadinta ku xigta waxay i geysay meel laga soo galo oo laga helay faahfaahinta goobta faylka ee dhanka midig taasoo leh C: WindowsSystem32 TDSSmain.dll(TDSSmain.dll) .Waxaad u baahan tahay inaad ka faa'ideysato macluumaadkan. Fur faylka C:WindowsSystem32, raadi oo tirtir TDSSmain.dll halkan lagu sheegay.
  8. Ka soo qaad inaadan awoodin inaad hesho faylka TDSSmain.dll gudaha C:WindowsSystem32. Tani waxay muujinaysaa gelitaanku aad buu u qarsoon yahay. Waxaad u baahan tahay inaad ka saarto faylka adoo isticmaalaya amarka degdega ah. Kaliya(Just) isticmaal amarka si aad uga saarto. del C: WindowsSystem32 TDSSmain.dll(TDSSmain.dll)
  9. Ku soo celi si la mid ah ilaa laga saaro dhammaan gelinta diiwaanka ee ka bilaabma TDSS . Hubi(Make) haddii gelitaanadaas ay tilmaamayaan fayl kasta oo ku jira galka ka saar si toos ah ama adiga oo isticmaalaya isla markiiba amarka.

Ka soo qaad inaadan awoodin inaad ka hesho TDSSserv.sys gudaha aaladaha qarsoon ee maareeyaha aaladda, ka dibna u gudub Tallaabada 7.(Assume that you were not able to find TDSSserv.sys inside hidden devices under device manager, then go to Step 7.)

7. Ka hubi log ntbtlog.txt galka xumaaday(7. Check ntbtlog.txt log for corrupted file)

Markaad sameyso tallaabada 2, faylka log ee loo yaqaan ntbtlog.txt ayaa laga soo saarayaa gudaha C: Windows. Waa fayl yar oo qoraal ah oo ka kooban waxyaabo badan oo laga yaabo inuu socdo in ka badan 100 bog haddii aad daabacdo. Waxaad u baahan tahay inaad si tartiib ah hoos ugu dhaadhacdo oo aad hubiso haddii aad leedahay TDSSserv.sys oo tusaysa inuu jiro caabuq. Raac tillaabooyinka lagu sheegay Tallaabada 6(Step 6) .

Kiiskan kor ku xusan, waxaan ku sheegay kaliya TDSSserv.sys , laakiin waxaa jira noocyo kale oo rootkits ah oo sameeya waxyeelo isku mid ah. Aynu daryeelno 2 entries H8SRTnfvywoxwtx.sys iyo _VOIDaabmetnqbf.sys ee ku hoos qoran maareeyaha aaladda PC saaxiibkay. Caqliga ka dambeeya fahamka haddii uu yahay fayl khatar ah iyo in kale waxaa inta badan magacooda la socda. Magacani wax macno ah ma samaynayo mana filayo in shirkad kasta oo is-ixtiraamta ay magac sidan oo kale ah u bixin doonto faylalkooda. Halkan, waxaan adeegsaday dhowrkii xaraf ee ugu horreeyay H8SRT iyo _VOID waxaanan sameeyay tillaabooyinka lagu sheegay Tallaabada 6(Step 6) si aan uga saaro faylka cudurka qaba. (Fadlan Ogow: H8SRTnfvywoxwtx.sys iyo _VOIDaabmetnqbf.sys waa tusaale uun. Faylasha la kharribmay waxay ku iman karaan magac kasta, laakiin way fududahay in la aqoonsado sababtoo ah magaca faylka dheer iyo joogitaanka nambarada iyo alifbeetada magaca(Please Note: H8SRTnfvywoxwtx.sys and _VOIDaabmetnqbf.sys are just an example. The corrupted files can come in any name, but it will be easy to recognize because of the long file name and the presence of random numbers and alphabets in the name) .)

Fadlan isku day tillaabooyinkan khatartaada Talaabooyinka aan kor ku soo xusnay kuma dhacayaan kombiyuutarkaaga. Laakiin si aad u noqoto dhinaca badbaadada, waxaa fiican inaad qaadato kaydinta faylasha muhiimka ah oo aad hubiso inaad haysato ikhtiyaarka ah inaad hagaajiso ama dib u rakibto nidaamka hawlgalka adoo isticmaalaya OS disk.

Isticmaalayaasha qaar ayaa laga yaabaa inay u arkaan cilad-raadinta halkan lagu sheegay mid adag. Aynu ka hadalno, infekshanku laftiisu wuu adag yahay oo xataa khubaradu waxay la halgamayaan sidii ay uga takhalusi lahaayeen caabuqan.

Lagu taliyay: (Recommended:) Sida Virus-ka looga saaro Taleefanka Android(How to Remove a Virus from an Android Phone)

Hadda waxaad haysataa tilmaamo cad oo ay ku jiraan hage tallaabo tallaabo ah oo ku saabsan sida looga takhaluso fayraska dib u hagidda Google . Sidoo kale, waad garanaysaa waxa la sameeyo haddii ay tani shaqayn waydo. Isla markiiba tallaabo qaado ka hor inta aanu caabuqu ku faafin faylal badan oo aanu PC-ga ka dhigin mid aan la isticmaali karin. La wadaag casharradan maadaama ay farqi weyn u samaynayso qof dhibaato isku mid ah soo food saartay.



Mckenna Parson

About the author

Waxaan ahay horumariye yaqaan iOS ah oo leh waayo-aragnimo ka badan laba iyo toban sano. Waxaan ka shaqeeyay labada aaladaha iPhone iyo iPad-ka, waxaanan garanayaa sida loo abuuro oo loo habeeyo abka aniga oo isticmaalaya tignoolajiyada Apple ee ugu dambeeyay. Marka lagu daro xirfadahayga horumariyaha aiOS, waxaan sidoo kale khibrad adag u leeyahay adeegsiga Adobe Photoshop iyo Illustrator, iyo sidoo kale horumarinta shabakada qaab-dhismeedka sida WordPress iyo Laravel.


Related posts