Yawancin umarni game da cirewar Adware, Malware, da sauran software da ba'a so daga kwamfuta sun ƙunshi magana game da buƙatar duba ayyukan Windows don masu shakku bayan amfani da kayan aikin cirewa na atomatik. Koyaya, ba abu bane mai sauƙi ga mai amfani don yin wannan ba tare da ƙwarewa mai mahimmanci tare da tsarin aiki ba - jerin shirye-shiryen aiwatarwa a cikin mai gudanar da aikin zasu iya gaya masa kaɗan.
Taimakawa wajen bincikawa da kuma nazarin hanyoyin gudanarwa (shirye-shirye) na Windows 10, 8 da Windows 7 da XP na iya amfani da CrowdStrike CrowdInspect na kyauta, wanda aka tsara musamman don wannan dalili, wanda za'a tattauna a cikin wannan bita. Dubi kuma: Yadda ake cire talla (AdWare) a cikin mai bincike.
Ta amfani da CrowdInspect don Binciken Gudanar da Gudanar da ayyukan Windows
CrowdInspect baya buƙatar shigarwa a kwamfuta kuma babban fayil ne .zip tare da fayil ɗin aiwatarwa mai gudana guda ɗaya, wanda, lokacin da aka ƙaddamar da shi, na iya ƙirƙirar wani fayil don tsarin Windows-bit 64. Don shirin ya yi aiki, kuna buƙatar Intanet da aka haɗa.
A farkon farawa, kuna buƙatar karɓar sharuɗɗan yarjejeniyar lasisi tare da maɓallin karɓa, kuma a taga na gaba, idan ya cancanta, saita haɗin kai tare da sabis ɗin kan layi na VirusTotal (kuma idan ya cancanta, kashe zazzage fayilolin da ba a sani ba zuwa wannan sabis ɗin, yiwa alama "Sanya fayilolin da ba a sani ba").
Bayan danna "Ok" na wani ɗan gajeren lokaci, taga tallace-tallace na kayan aikin tsaro na CrowdStrike Falcon da aka biya zai buɗe, sannan babban taga shirin CrowdInspect tare da jerin ayyukan aiwatarwa a cikin Windows da bayani mai amfani game da su.
Ga masu farawa, bayani akan mahimman ginshiƙai a CrowdInspect
- Tsari Suna shine sunan aiwatarwa. Hakanan zaka iya nuna cikakkun hanyoyin aiwatar da fayiloli ta hanyar danna maɓallin "Cikakken Hanyar" a cikin babban menu na shirin.
- Magana - dubawa don allurar lamba ta hanyar (a wasu halayen, yana iya nuna kyakkyawan sakamako ga tashin hankali). Idan ana zargin an yi barazanar, alamar mamaki da ninki za a nuna.
- VT ko HA - sakamakon duba fayil ɗin aiwatarwa a cikin VirusTotal (ƙididdigar ta dace da yawan tashin hankalin da ke ɗauka fayil ɗin yana da haɗari). Sabon fasalin yana nuna shafin HA, an gudanar da bincike ta amfani da sabis ɗin kan layi na Hybrid Analysis (wataƙila mafi inganci fiye da VirusTotal).
- Mhr - scan sakamakon a cikin Team Cymru Malware Hash Repository (checksum database na sanannu shirye-shirye shirye-shirye). Nuna hoton ja da kuma alamar mamaki idan akwai wani tsari mai kyau a cikin bayanan.
- Wot - lokacin da aiwatarwar ke aiwatar da haɗi tare da shafuka da sabobin akan Intanet, sakamakon duba waɗannan sabobin cikin sabis ɗin martaba na Yanar Gizo
Sauran ginshiƙan sun ƙunshi bayani game da haɗin Intanet ɗin da aka kafa ta hanyar: nau'in haɗin, matsayi, lambobin tashar tashar jiragen ruwa, Adireshin IP na gida, adireshin IP na nesa, da wakilcin DNS na wannan adireshin.
Lura: zaku iya lura cewa shafin mai bincike ɗaya an nuna shi azaman tsarin goma ko fiye da haka a CrowdInspect. Dalilin wannan shine cewa an nuna layin daban don kowane haɗin da aka kafa ta hanyar tsari guda ɗaya (kuma an buɗe shafin yau da kullun a cikin mai binciken yana tilasta ku haɗi zuwa sabobin da yawa akan Intanet a lokaci ɗaya). Kuna iya kashe wannan nau'in nunin ta hanyar kashe maɓallin TCP da UDP a saman sandar menu.
Sauran menu da abubuwan sarrafawa:
- Live / Tarihi - yana sauya yanayin nuni (a ainihin lokacin ko jerin abin da aka nuna lokacin fara kowane tsari).
- Dakata - dakatar da tarin bayanai.
- Kashe Tsari - kammala aikin da aka zaɓa.
- Rufe TCP - dakatar da haɗin TCP / IP don aiwatarwa.
- Gidaje - buše babban taga Windows tare da kaddarorin fayil ɗin da za a aiwatar.
- VT Sakamako - bude wata taga tare da sakamakon binciken a VirusTotal da kuma hanyar haɗi zuwa sakamakon binciken a shafin.
- Kwafa Duk - kwafe duk bayanan da aka ƙaddamar game da aiwatar da aiki zuwa allon rubutu.
- Hakanan, ga kowane tsari, menu na danna-dama yana samar da menu na mahallin tare da ayyukan yau da kullun.
Na yarda cewa mafi yawan masu amfani da kwarewa yanzu sun yi tunani: "babban kayan aiki", kuma masu farawa ba su fahimci abin da amfanin wannan ba da kuma yadda za a yi amfani da shi. Sabili da haka, a takaice kuma mai sauƙi ne ga masu farawa:
- Idan kun yi zargin cewa wani abu mara kyau yana faruwa a kwamfutar, amma tare da riga-kafi da abubuwan amfani, kamar AdwCleaner, an riga an bincika kwamfutar (duba Mafi kyawun kayan aikin cire malware), zaku iya bincika cikin Crowd Ins duba ku gani idan akwai wasu shirye-shiryen bango da ake tuhuma suna gudana. a kan Windows.
- Tsarin aiki tare da alamar ja tare da babban kashi a cikin shafi na VT da / ko alamar ja a cikin shafi na MHR ya kamata a yi la'akari da ƙagewa. Babu makawa zaka ga gumakan ja a Inject, amma idan ka gan shi, ka mai da hankali sosai.
- Abin da za a yi idan aiwatarwar ta kasance abin zargi: duba sakamakonsa a cikin VirusTotal ta danna maɓallin Sakamakon VT, sannan danna kan hanyar haɗin tare da sakamakon gwajin fayil ɗin riga-kafi. Kuna iya gwada bincika sunan fayil a Intanet - yawan barazanar da aka saba yawanci ana tattaunawa akan dandalin tattaunawa da kuma shafukan tallafi.
- Idan sakamakon hakan an kammala cewa fayil ɗin yana da mugunta, gwada cire shi daga farawa, cire shirin wanda wannan aikin yake dashi, kuma yi amfani da wasu hanyoyin don kawar da barazanar.
Lura: a tuna cewa daga ra'ayi da yawa antiviruse, "shirye-shiryen saukar da" daban-daban da sauran kayan aikin da aka shahara a ƙasarmu na iya zama software mai yuwuwan, wanda za a nuna a cikin VT da / ko layin MHR na Crowd Inspect utility. Koyaya, wannan baya ma'anar cewa suna da haɗari - yana da daraja la'akari da kowane shari'ar mutum.
Kuna iya saukar da Inshorar Crowd kyauta kyauta daga shafin yanar gizo mai cikakken sani //www.crowdstrike.com/resources/community-tools/crowdinspect-tool/ (bayan danna maɓallin saukarwa, akan shafi na gaba kuna buƙatar karɓar sharuɗan lasisi ta danna Yarda don fara saukarwa). Hakanan yana iya zuwa cikin amfani: Mafi kyawun riga-kafi don Windows 10, 8 da Windows 7.
