Ịkọwapụta Data Ntanetị iji nyere aka wepu Spyware na Nchọgharị Hijackers
Hijack Nke a bụ ngwá ọrụ n'efu site na Trend Micro. Maryjn Bellekom, bụ nwa akwụkwọ na Netherlands, malitere ya. Ngwudata ngwa ngwa Spyware dị ka Adaware ma ọ bụ Spybot S & D na-arụ ezi ọrụ nke ịchọpụta ma wepụ ọtụtụ spyware mmemme, ma ụfọdụ spyware na ihe nchọgharị hijackers bụ oke aghụghọ maka ọbụna ndị a oké mgbochi spyware utilities.
HijackỌ bụ nke a ka edepụtara iji chọpụta ma wepụ ihe nchọgharị weebụ, ma ọ bụ ngwanrọ na-ewepu ihe nchọgharị weebụ gị, gbanwee ebe obibi gị na nchọnchọ na ihe ọjọọ ndị ọzọ. N'adịghị ka ụdị software spyware na-ahụkarị, HijackThis anaghị eji saịnye aka ma ọ bụ lelee ihe omume ọ bụla ma ọ bụ URL nke ịchọpụta ma gbochi. Kama nke ahụ, Hijack Nke a na-achọ usoro aghụghọ na usoro ndị malware na-eji na-emetụta usoro gị na redirect nchọgharị gị.
Ọ bụghị ihe niile gosipụtara na Ndekọ HijackThis a bụ ihe ọjọọ ma ọ bụghị ihe niile ga-ewepụ. N'ezie, ihe dị iche. Ọ fọrọ nke nta ka o sie ike na ụfọdụ n'ime ihe ndị dị na Ndekọ Hijack gị ga-abụ ngwanrọ ziri ezi ma wepụ ihe ndị ahụ nwere ike imetụta usoro gị ma ọ bụ mee ya n'ụzọ zuru ezu. Iji HijackThis dị ọtụtụ dị ka edezi aha Windows n'onwe gị. Ọ bụghị ọkà mmụta sayensi, mana ị ghaghị ime ya n'enweghị nduzi ọkachamara ma ọ bụrụ na ị maara ihe ị na-eme.
Ozugbo ị wụnye HijackThis ma mee ya ka ịmepụta faịlụ log, enwere ọtụtụ forums na saịtị ebe ị nwere ike biputere ma ọ bụ bulite data ndekọ gị. Ndị ọkachamara maara ihe ịchọrọ anya ga-enyere gị aka nyochaa ihe ndekọ data ahụ ma gwa gị ihe ndị ị ga - ewepu na ndị nke ga - ahapụ.
Iji budata nsụgharị HijackThis ugbu a, ị nwere ike ịga na saịtị ndị ọrụ na Trend Micro.
Nke a bụ nkọwa nke HijackThis log log nke ị nwere ike iji jupụta na ozi ị na-achọ:
- R0, R1, R2, R3 - Ntanetị Internet Explorer / Nchọta peeji nke URL
- F0, F1 - Nbudata na ebudata
- N1, N2, N3, N4 - Netscape / Mozilla Malite / Chọọ peeji nke URLs
- O1 - Nchịkwa faịlụ redirection
- O2 - Ihe Nchọgharị Nchọgharị
- O3 - Nchọpụta ngwaọrụ Internet Explorer
- O4 - Na-ebudata ihe omume site na ndekọ
- O5 - IE Nhọrọ ngosi enweghi anya na Panel Panel
- O6 - IE Nhọrọ nhọrọ ohere site nchịkwa
- O7 - Enwere ohere Regedit nke Nchịkwa
- O8 - Ihe ndị ọzọ n'ime IE nri-pịa menu
- O9 - Mpịpị ọzọ na isi bọtịnụ IE bọtịnụ, ma ọ bụ mmezi ihe na menu IE 'Ngwaọrụ'
- O10 - Winsock hijacker
- O11 - Nhọrọ ọzọ na IE 'Advanced Options' windo
- O12 - IE plugins
- O13 - IE DefaultPrefix hijack
- O14 - 'Malitegharịa Ntọala Ntanetị'
- O15 - Ebe a na-achọghị na Trusted Zone
- O16 - Ihe arụ ActiveX (aka faịlụ ndị a zitere)
- O17 - Lop.com ngalaba hijackers
- O18 - Usoro mgbakwunye na protocol hijackers
- O19 - Ikike ejiji ngwa ngwa
- O20 - AppInit_DLLs Registry value autorun
- O21 - ShellServiceObjectDelayLoad Registry key autorun
- O22 - SharedTaskScheduler Registry key autorun
- O23 - Windows NT Ọrụ
R0, R1, R2, R3 - IE Malite ma chọọ ibe
Ihe ọ dị ka:
R0 - HKCU Software Microsoft \ Internet Explorer Main, Start Page = http://www.google.com/
R1 - HKLM Software Microsoft InternetExplorer \ Main, Default_Page_URL = http://www.google.com/
R2 - (ụdị a anaghị eji HijackThis mee ihe)
R3 - Nchọta URLSearchHook na-efu
Ihe a ga-eme:
Ọ bụrụ na ị ghọtara URL na njedebe dị ka ebe obibi gị ma ọ bụ search engine, ọ dị mma. Ọ bụrụ na i meghị, lelee ya ma nwee HijackThis dozie ya. Maka ihe R3, dozie ha ma ọ gwụla ma ọ na-ekwu banyere mmemme ị matara, dị ka Copernic.
F0, F1, F2, F3 - Nbudata na-ebudata na faịlụ nke INI
Ihe ọ dị ka:
F0 - system.ini: Shell = Explorer.exe Openme.exe
F1 - win.ini: run = hpfsched
Ihe a ga-eme:
Ihe F0 dị njọ mgbe niile, ma dozie ha. Ihe F1 na-abụkarị ihe omume ochie nke dị oke nchebe, yabụ ị ga-achọta ihe ọmụma ọzọ na aha njirimara iji hụ ma ọ dị mma ma ọ bụ ihe ọjọọ. Ndepụta mmalite nke Pacman nwere ike inyere aka n'ịchọpụta ihe.
N1, N2, N3, N4 - Netscape / Mozilla Malite & nkwupụta ụda; Chọọ na ibe
Ihe ọ dị ka:
N1 - Netscape 4: user_pref "nchọgharị.startup.homepage", "www.google.com"); (C: \ Mmemme Netscape \ Ọrụ ndabara prefs.js)
N2 - Netscape 6: user_pref ("browser.startup.homepage", "http://www.google.com"); (C: \ Documents na Ntọala Ngwa Data Ngwa Ngwa Mozilla Profaịlụ defaulto9t1tfl.slt prefs.js)
N2 - Netscape 6: user_pref ("nchọgharị.search.defaultengine", "engine: //C%3A%5CProgram%20Files%5CNetscape%206%5Csearchplugins%5CSBWeb_02.src"); (C: \ Documents na Ntọala Ngwa Data Ngwa Ngwa Mozilla Profaịlụ defaulto9t1tfl.slt prefs.js)
Ihe a ga-eme:
Ọ na-abụkarị ebe Netscape na Mozilla na saịtị nchọta dị mma. Ọ na-esiri ha ike ịbanye, naanị Lop.com amaralarị ime nke a. Ị ga-ahụ URL nke ị na-amaghị dị ka ebe obibi gị ma ọ bụ chọọ peeji nke, nwere HijackThis dozie ya.
O1 - Gọọmenti ndị ọrụ redirection
Ihe ọ dị ka:
O1 - Ndị agha: 216.177.73.139 auto.search.msn.com
O1 - Ndị agha: 216.177.73.139 search.netscape.com
O1 - Ndị agha: 216.177.73.139 ieautosearch
O1 - Ụgha ndị agha nọ na C: \ Windows Help \ hosts
Ihe a ga-eme:
Igwe mmiri a ga-edegharị adreesị ahụ gaa n'aka nri adreesị IP ahụ n'aka ekpe. Ọ bụrụ na IP adịghị na adreesị ahụ, a ga-ebute gị gaa na saịtị na-ezighị ezi kwa oge ị banyere adreesị. Ị nwere ike ịnweta HijackThis dozie ihe ndị a, ma ọ bụrụ na i jiri nlezianya tinye mpaghara ndị a na faịlụ ndị agha gị.
Ihe ikpeazụ a na - eme na Windows 2000 / XP na ọrịa Coolwebsearch. Debe ihe a mgbe niile, ma ọ bụ mee ka CWShredder rụzie ya na akpaghị aka.
O2 - Ihe Nchọgharị Nchọgharị
Ihe ọ dị ka:
O2 - BHO: Yahoo! BHO ibe - {13F537F0-AF09-11d6-9029-0002B31F9E59} - C: \ PROGRAM FILES \ YAHOO! \ COMPANION \ YCOMP5_0_2_4.DLL
O2 - BHO: (enweghị aha) - {1A214F62-47A7-4CA3-9D00-95A3965A8B4A} - C: \ PỤRỤ FILES \ PILU ELIMINATOR \ AUTODISPLAY401.DLL (faịlụ na-efu)
O2 - BHO: MediaLoads Enhanced - {85A702BA-EA8F-4B83-AA07-07A5186ACD7E} - C: \ PROGRAM FILES \ MEDIALOADS CRED ME1.DLL
Ihe a ga-eme:
Ọ bụrụ na ịnweghị amata aha aha Nchọgharị Ihe Nchọgharị, jiri TonyK's BHO & Toolbar List iji chọta ya site na ID ID (CLSID, nọmba dị n'etiti ogwe aka) ma hụ ma ọ dị mma ma ọ bụ ihe ọjọọ. Na BHO List, 'X' pụtara spyware na 'L' pụtara nchekwa.
O3 - IE toolbars
Ihe ọ dị ka:
O3 - Ogwe ngwaọrụ: & Yahoo! Enyi - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C: \ PỤRỤ FILES \ YAHOO! \ COMPANION \ YCOMP5_0_2_4.DLL
O3 - Ngwá ọrụ: Popup Eliminator - {86BCA93E-457B-4054-AFB0-E428DA1563E1} - C: \ PROGRAM FILES \ ELIMINATOR POPUP \ PETOOLBAR401.DLL (faịlụ efu)
O3 - Toolbar: rzillcgthjx - {5996aaf3-5c08-44a9-ac12-1843fd03df0a} - C: \ WINDOWS \ APPLICATION Data \ CKSTPRLLNQUL.DLL
Ihe a ga-eme:
Ọ bụrụ na ịnweghị amata aha aha ngwaọrụ, jiri TonyK's BHO & Toolbar List ịchọta ya site na ID ID (CLSID, ọnụ ọgụgụ dị n'agbata ogwe aka) ma hụ ma ọ dị mma ma ọ bụ ihe ọjọọ. Na Ndepụta Ngwá Ọrụ, 'X' pụtara nledo na 'L' pụtara nchekwa. Ọ bụrụ na ọ bụghị na listi na aha ahụ dị ka ihe odide nke ụda na faịlụ dị na nchekwa data 'Ngwa Data' (dịka nke ikpeazụ n'ime ihe atụ ndị dị n'elu), ma eleghị anya Lop.com, na ị ga-enwe HijackThis fix ya.
O4 - Na-ebudata mmemme site na ndekọ ma ọ bụ mmalite
Ihe ọ dị ka:
O4 - HKLM \ .. \ Run: [ScanRegistry] C: \ WINDOWS \ scanregw.exe / autorun
O4 - HKLM \ .. \ Run: [SystemTray] SysTray.Exe
O4 - HKLM \ .. \ Run: [ccApp] "C: \ Program Files Common Files Symantec Shared \ ccApp.exe"
O4 - Mmalite: Microsoft Office.lnk = C: \ Ihe Mmemme Microsoft Office \ Office \ OSA9.EXE
O4 - Mmalite ụwa: winlogon.exe
Ihe a ga-eme:
Jiri PacMan's Startup List ka ịchọta ntinye ma hụ ma ọ dị mma ma ọ bụ ihe ọjọọ.
Ọ bụrụ na ihe ahụ gosipụtara usoro ihe omume nke nọ na otu Mmalite (dị ka ihe ikpeazụ dị n'elu), HijackỌnweghị ike idozi ihe ahụ ma ọ bụrụ na usoro a ka dị na ebe nchekwa. Jiri Manager Windows Task (TASKMGR.EXE) iji mechie usoro tupu ịzie.
O5 - IE Nhọrọ anaghị ahụ anya na Ogwe njikwa
Ihe ọ dị ka:
O5 - control.ini: inetcpl.cpl = ee
Ihe a ga-eme:
Ọ gwụla ma gị ma ọ bụ onye na-elekọta usoro ihe nzuzo amachiri akara ngosi ahụ site na Ogwe njikwa, nwere HijackThis dozie ya.
O6 - IE Nhọrọ nhọrọ ohere site nchịkwa
Ihe ọ dị ka:
O6 - HKCU Software Atumatu Microsoft Microsoft Internet Explorer
Ihe a ga-eme:
Ọ gwụla ma ị nwere Nhọrọ Spybot S & D 'Ịkwụsị ebe obibi site na mgbanwe' nọ n'ọrụ, ma ọ bụ onye nchịkwa usoro gị tinyere nke a, nwere HijackThis dozie nke a.
O7 - Enwere ohere Regedit nke Nchịkwa
Ihe ọ dị ka:
O7 - HKCU Software Microsoft Windows CurrentVersion Policies \ System, DisableRegedit = 1
Ihe a ga-eme:
Mgbe niile ka HijackThis fix this, ọ gwụla ma onye nchịkwa usoro gị etinyela mmachi a n'ime ebe.
O8 - Ihe ndị ọzọ n'ime IE nri-pịa menu
Ihe ọ dị ka:
O8 - Ihe omume menu ọzọ: & Google Search - res: // C: \ WINDOWS \ SITE PROGRAM FILES \ GOOGLETOOLBAR_EN_1.1.68-DELEON.DLL / cmsearch.html
O8 - Ihe ihe omuma ihe di n'ime: Yahoo! Chọọ - faịlụ: /// C: \ Ihe omume Mmemme Yahoo! \ Common / ycsrch.htm
O8 - Ihe ihe omuma ihe di iche: Abata na In - C: \ WINDOWS \ WEB \ zoomin.htm
O8 - Ihe omuma ihe di n'ime: Nbupu nke & - C: \ WINDOWS WEB \ zoomout.htm
Ihe a ga-eme:
Ọ bụrụ na ịnweghị aha aha nke ihe ahụ na nri aka nri na IE, nwere HijackThis dozie ya.
O9 - Igodo ọzọ na isi IB toolbar, ma ọ bụ ihe mmezi na IE & # 39; Ngwaọrụ & # 39; menu
Ihe ọ dị ka:
O9 - Mgbakwunye bọtịnụ: ozi (HKLM)
O9 - Ngwaọrụ 'Ngwaọrụ': ozi (HKLM)
O9 - Mgbakwunye bọtịnụ: AIM (HKLM)
Ihe a ga-eme:
Ọ bụrụ na ịchọghị aha bọtịnụ ma ọ bụ ihe omume, nwere HijackThis dozie ya.
O10 - ndị na-afụ ụzụ
Ihe ọ dị ka:
O10 - Enwere ike ịntanetị site New.Net
O10 - Anwụrụ Ịntanetị n'ihi LSP ọrụ 'c: \ progra ~ 1 common ~ 2 \ toolbar \ cnmib.dll' na-efu
O10 - Unknown file in Winsock LSP: c: \ mmemme faịlụ ọhụrụton maara \ vmain.dll
Ihe a ga-eme:
Ọ kacha mma idozi ndị a site na iji LSPFix si Cexx.org, ma ọ bụ Spybot S & D site Kolla.de.
Rịba ama na faịlụ 'amaghị' na ogwe aka LSP agaghị eguzo site na HijackThis, maka nsogbu nchekwa.
O11 - Nke ọzọ n'ime IE & # 39; Di elu Nhọrọ & # 39; window
Ihe ọ dị ka:
O11 - Otu nhọrọ: [CommonName] CommonName
Ihe a ga-eme:
Nanị hijacker dịka nke ugbu a na-agbakwụnye nhọrọ nke ya na IE Advanced Options window bụ CommonName. Ya mere, ị nwere ike ịnweta HijackThis fix this.
O12 - IE plugins
Ihe ọ dị ka:
O12 - Nkwụnye maka .spop: C: \ Ihe omume Mmemme Nchọpụta Internet Explorer NPDocBox.dll
O12 - Nkwụnye maka .PDF: C: \ Ihe Mmemme Internet Explorer PLUGINS \ nppdf32.dll
Ihe a ga-eme:
Ọtụtụ n'ime oge ndị a dị mma. Naanị OnFlow na-agbakwunye ngwa mgbakwunye ebe a na ị chọghị (.ofb).
O13 - IE DefaultPrefix hijack
Ihe ọ dị ka:
O13 - DefaultPrefix: http://www.pixpox.com/cgi-bin/click.pl?url=
O13 - Prefix WWW: http://prolivation.com/cgi-bin/r.cgi?
O13 - WWW. Prefix: http://ehttp.cc/?
Ihe a ga-eme:
Ndị a dị njọ mgbe niile. HijackThis dozie ha.
O14 - & # 39; Tọgharịa Ntọala Weebụ & # 39; ugbo
Ihe ọ dị ka:
O14 - IERESET.INF: START_PAGE_URL = http: //www.searchalot.com
Ihe a ga-eme:
Ọ bụrụ na URL abụghị onye na-enye kọmputa gị ma ọ bụ ISP, nwere HijackThis dozie ya.
O15 - Ebe a na-achọghị na saịtị dị na Trusted Zone
Ihe ọ dị ka:
O15 - Tụkwasịrị Obi Mpaghara: http://free.aol.com
O15 - Tụkwasịrị Obi Mpaghara: * .coolwebsearch.com
O15 - Tụkwasịrị Obi Mpaghara: * .msn.com
Ihe a ga-eme:
Imirikiti oge nanị AOL na Coolwebsearch na-agbakwụnye ntinye saịtị na Mpaghara Kwadoro. Ọ bụrụ na i tinyeghị mpaghara edepụtara na mpaghara Tụkwasịrị Obi n'onwe gị, nwere HijackThis dozie ya.
O16 - Ihe arụ ActiveX (aka faịlụ ndị a zitere)
Ihe ọ dị ka:
O16 - DPF: Yahoo! Nkata - http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/c381/chat.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Ihe a ga-eme:
Ọ bụrụ na ịchọghị aha aha ahụ, ma ọ bụ URL ahụ ebudatara ya, nwere HijackThis dozie ya. Ọ bụrụ na aha ma ọ bụ URL nwere okwu dịka 'dialer', 'casino', 'free_plugin' wdg, mezie ya. Javacool's SpywareBlaster nwere nnukwu nchekwa data nke obi ActiveX ihe na ike ga-eji maka na-achọ elu CLSIDs. (Right-click list to use the Find function.)
O17 - Lop.com ngalaba hijacks
Ihe ọ dị ka:
O17 - HKLM \ System \ CCS \ Services VxD MSTCP: Domain = aoldsl.net
O17 - HKLM \ System \ CCS \ Services \ Tcpip \ Parameters: Ngalaba = W21944.find-quick.com
O17 - HKLM Software \ .. \ Telephony: DomainName = W21944.find-quick.com
O17 - HKLM \ System \ CCS \ Services \ Tcpip \ .. \ {D196AB38-4D1F-45C1-9108-46D367F19F7E}: Domain = W21944.find-quick.com
O17 - HKLM \ System \ CS1 \ Services \ Tcpip \ Parameters: SearchList = gla.ac.uk
O17 - HKLM \ System \ CS1 \ Services VxD MSTCP: NameServer = 69.57.146.14,69.57.147.175
Ihe a ga-eme:
Ọ bụrụ na ngalaba ahụ abụghị site na ISP ma ọ bụ netwọk ụlọ ọrụ, nwere HijackThis dozie ya. Otu na-aga maka ndenye 'SearchList'. Maka 'AhaServer' ( sava DNS ) ntinye, Google maka IP ma ọ bụ IPs ọ ga-adị mfe ịhụ ma ọ dị mma ma ọ bụ ihe ọjọọ.
O18 - Usoro mgbakwunye na protocol hijackers
Ihe ọ dị ka:
O18 - Usoro njikọ yiri njikọ - {5AB65DD4-01FB-44D5-9537-3767AB80F790} - C: \ PROGRA ~ 1 COMMON ~ 1 \ MSIETS \ msielink.dll
O18 - Usoro: mctp - {d7b95390-b1c5-11d0-b111-0080c712fe82}
O18 - Ibu ndi ozo: http - {66993893-61B8-47DC-B10D-21E0C86DD9C8}
Ihe a ga-eme:
Naanị ndị na-apụnara mmadụ ihe na-egosi ebe a. Ndị a mara amara bụ 'cn' (CommonName), 'ayb' (Lop.com) na 'relatedlinks' (Huntbar), ị ga-enwe HijackThis dozie ndị ahụ. Ihe ọzọ egosiri na ekwesighi ka ekwenye na ọ dị mma, ma ọ bụ na-ejichi (ntụgharị CLSID agbanweela) site spyware. N'okwu ikpeazụ, nwere HijackThis dozie ya.
O19 - Ikike ejiji ngwa ngwa
Ihe ọ dị ka:
O19 - Mpempe akwụkwọ onye ọrụ: c: \ WINDOWS \ Java \ my.css
Ihe a ga-eme:
N'ihe banyere nchọgharị slowdown na ugboro popups, nwere HijackThis dozie ihe a ma ọ bụrụ na ọ na-egosi na log. Otú ọ dị, ebe nanị Coolwebsearch mere nke a, ọ ka mma iji CWShredder dozie ya.
O20 - AppInit_DLLs Registry value autorun
Ihe ọ dị ka:
O20 - AppInit_DLLs: msconfd.dll
Ihe a ga-eme:
Ihe ndekọ aha a dị na HKEY_LOCAL_MACHINE Software Microsoft Windows NT CurrentVersion Windows na-ebu DLL n'ime ebe nchekwa mgbe onye ọrụ ahụ na-abanye na ya, mgbe nke ahụ gasịrị, ọ na-anọ na ebe nchekwa ruo mgbe gosipụtara ya. Nanị ihe omume ole na ole dị na ya na-eji ya (Norton CleanSweep na-eji APITRAP.DLL), ọtụtụ mgbe ndị trojans na-eji ya ma ọ bụ ndị na-eme nchọgharị hijacker.
Ọ bụrụ na 'DLL' zoro ezo na-ebugharị site na aha ndekọ a (naanị mgbe a na-eji 'Dezie ọnụọgụ abụọ' nhọrọ na Regedit) aha dll nwere ike ịpịnye ọkpụkpọ '|' ime ka ọ pụta ìhè na log.
O21 - ShellServiceObjectDelayLoad
Ihe ọ dị ka:
O21 - SSODL - AUZOOK - {11566B38-955B-4549-930F-7B7482668782} - C: \ WINDOWS \ System \ auhook.dll
Ihe a ga-eme:
Nke a bụ usoro ikike nke undocumented, nke Windows Windows ole na ole na-ejikarị eme ihe. Ihe edepụtara na HKEY_LOCAL_MACHINE Software Microsoft Windows CurrentVersion ShellServiceObjectDelayLoad na-ebugharị site Explorer mgbe Windows malitere. HijackThis na - eji ihe dị iche iche nke SSODL eme ihe, yabụ mgbe ọ bụla a na - egosiputa ihe na ihe ndekọ na - amaghị ma ọ bụ ike. Na-emeso nlekọta anya.
O22 - SharedTaskScheduler
Ihe ọ dị ka:
O22 - SharedTaskScheduler: (no name) - {3F143C3A-1457-6CCA-03A7-7AA23B61E40F} - c: \ windows \ system32 \ mtwirl32.dll
Ihe a ga-eme:
Nke a bụ ununcumented autorun maka Windows NT / 2000 / XP naanị, nke a na-eji nnọọ adịkarịghị. Ruo ugbu a, CWS.Smartfinder na-eji ya. Na-elekọta ya.
O23 - NT Ọrụ
Ihe ọ dị ka:
O23 - Ọrụ: Kerio Personal Firewall (PersFw) - Kerio Technologies - C: \ Program Files Kerio Personal Firewall \ persfw.exe
Ihe a ga-eme:
Nke a bụ ndepụta nke ọrụ Microsoft. Ndepụta ahụ kwesiri ịbụ otu ihe ahụ ị na-ahụ na ọrụ Msconfig nke Windows XP. Ọtụtụ ndị na-apụnara mmadụ ihe n'ụzọ aghụghọ na-eji ọrụ a na-arụ n'ụlọ n'ụlọ adittion na mmalite ndị ọzọ iji rụgharịa onwe ha. Aha zuru oke dị mkpa - ụda olu, dịka 'Ọrụ Nchebe Ntanetị', 'Ọrụ Ntanetị Ọrụ' ma ọ bụ 'Ntanetị Na-enyere Aka', mana aha n'ime (n'etiti brackets) bụ eriri mkpofu, dị ka 'Ort'. Akụkụ nke abụọ nke akara ahụ bụ onye nwe faịlụ na njedebe, dị ka a hụrụ na ihe faịlụ ahụ.
Rịba ama na idozi ihe O23 ga-egbochi ọrụ ma gbanyụọ ya. A ghaghị ehichapụ ọrụ ahụ site na Ndenye ma ọ bụ na ngwaọrụ ọzọ. Na HijackThis 1.99.1 ma ọ bụ karịa, bọtịnụ 'Hichapụ NT Ọrụ' na mpaghara Misc Ngwaọrụ nwere ike iji maka nke a.