¿¡ºê¸®Á¸¼Ò°³ | Á¦Ç°¼Ò°³ | °í°´¼¾ÅÍ | »çÀÌÆ®¸Ê | Home
°³ÀÎ°í°´ ¿©¼º°í°´ eº¸¾È¸¶ÄÏ À̺¥Æ®
°³ÀÎ°í°´±â¾÷°í°´
º¸¾ÈÁ¢¼Ó IDÀúÀå
AD ¹«·á·Î Ã¥¹Þ¾Æ°¡¼¼¿ä!


 
Adware/Bho.Obfus
 Á¾·ù
Bho
 °¨¿°°æ·Î
ActiveX
 Ä¡·á¹æ¹ý

¿¡ºê¸®Á¸ Á¦Ç°±ºÀ¸·Î Áø´Ü/Ä¡·á °¡´ÉÇÕ´Ï´Ù.

 
Áõ»ó
Adware/Bho.Obfus´Â ActiveX Çü½ÄÀ» ÃëÇØ »ç¿ëÀÚ¿¡°Ô ¼³Ä¡¸¦ À¯µµÇÏ°í,
¼³Ä¡ °úÁ¤¿¡¼­µµ ¼³Ä¡°úÁ¤À» Ç¥½Ã ÇÏÁö ¾Ê´Â µî ÀºÆóÀûÀ¸·Î ¼³Ä¡µÇ´Â ¾Ç¼ºÄÚµåÀÌ´Ù.
¼³Ä¡ ÀÌÈÄ, ÃÖ¼ÒÇÑÀÇ Ç¥½Ã ÀÌ¿Ü¿¡´Â ÇÁ·Î±×·¥ ¼³Ä¡¸¦ ¾Ë¾Æº¼¼ö ¾øµµ·Ï Çϸç,
»ç¿ëÀÚ µ¿ÀÇ ¾øÀÌ À¥»çÀÌÆ®ÀÇ ¼³Á¤¹× ±âº» ±â´ÉÀ» º¯°æ ÇÏ´Â ¾Ç¼ºÄÚµåÀÌ´Ù.

ÀÌ´Â
1) À¥ºê¶ó¿ìÀúÀÇ È¨ÆäÀÌÁö ¼³Á¤À̳ª °Ë»ö ¼³Á¤À» º¯°æ ¶Ç´Â ½Ã½ºÅÛ ¼³Á¤ º¯°æÇÏ´Â ÇàÀ§
¿¡ ÇØ´çÇÏ¿©, ¾Ç¼ºÄÚµå·Î ±¸ºÐ µÈ´Ù.

[»ý¼º ÆÄÀÏ]
%system%\RwKwHpTc.dll


[»ý¼º ·¹Áö]
HKEY_CLASSES_ROOT\CLSID\{dfa62e22-1dd1-11b2-9d69-c77b98e1ed41}


°æ·Î´Â ¾Æ·¡¸¦ ÂüÁ¶ ÇÑ´Ù.
%windows%
c:\windows
%program%
C:\Documents and Settings\(username)\½ÃÀÛ ¸Þ´º\ÇÁ·Î±×·¥
%system%
C:\windows\system32
%prog%
C:\Program Files
%currentuser%
C:\Documents and Settings\(username)
%startmenu%
C:\Documents and Settings\(username)\½ÃÀÛ ¸Þ´º
 
 
Adware/Toolbar.Windowsbar
 Á¾·ù
adware
 °¨¿°°æ·Î
ActiveX
 Ä¡·á¹æ¹ý

¿¡ºê¸®Á¸ Á¦Ç°±ºÀ¸·Î Áø´Ü/Ä¡·á °¡´ÉÇÕ´Ï´Ù.

 
Áõ»ó
Adware/Toolbar.Windowsbar´Â ActiveX Çü½ÄÀ» ÃëÇØ »ç¿ëÀÚ¿¡°Ô ¼³Ä¡¸¦ À¯µµÇÏ°í,
¼³Ä¡ °úÁ¤¿¡¼­µµ ¼³Ä¡°úÁ¤À» Á¤È®È÷ Ç¥½Ã ÇÏÁö ¾Ê´Â µî ÀºÆóÀûÀ¸·Î ¼³Ä¡µÇ´Â ¾Ç¼ºÄÚµåÀÌ´Ù.
¼³Ä¡ ÀÌÈÄ, ÃÖ¼ÒÇÑÀÇ Ç¥½Ã ÀÌ¿Ü¿¡´Â ÇÁ·Î±×·¥ ¼³Ä¡¸¦ ¾Ë¾Æº¼¼ö ¾øµµ·Ï Çϸç,
»ç¿ëÀÚ µ¿ÀÇ ¾øÀÌ À¥»çÀÌÆ®ÀÇ ¼³Á¤¹× ±âº» ±â´ÉÀ» º¯°æ ÇÏ´Â ¾Ç¼ºÄÚµåÀÌ´Ù.

ÀÌ´Â
1) À¥ºê¶ó¿ìÀúÀÇ È¨ÆäÀÌÁö ¼³Á¤À̳ª °Ë»ö ¼³Á¤À» º¯°æ ¶Ç´Â ½Ã½ºÅÛ ¼³Á¤ º¯°æÇÏ´Â ÇàÀ§
¿¡ ÇØ´çÇÏ¿©, ¾Ç¼ºÄÚµå·Î ±¸ºÐ µÈ´Ù.

[»ý¼º ÆÄÀÏ]
%prog%\Windowsbar\sysrun.exe
%prog%\Windowsbar\Toolbarmaster.exe
%prog%\Windowsbar
%system%\Untoolbar.exe


[»ý¼º ·¹Áö]
HKEY_CURRENT_USER\software\Windowsbar
HKEY_CLASSES_ROOT\CLSID\{C8665AE4-FA6F-4e9d-9B54-D3B471961B52}
HKEY_CLASSES_ROOT\TypeLib\{5B2B2D0E-0BEA-423C-9051-9430DBEC0368}
HKEY_CLASSES_ROOT\Interface\{758721DC-E6EC-4DB7-803A-7E3C18A813DA}
HKEY_CLASSES_ROOT\Windowsblackbar.MainBand
HKEY_CLASSES_ROOT\Windowsblackbar.MainBand.1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Windowsbar
HKEY_*_*\SOFTWARE\Microsoft\Windows\CurrentVersion\Run sysrun.exe
HKEY_*_*\SOFTWARE\Microsoft\Windows\CurrentVersion\Run Toolbarmaster

°æ·Î´Â ¾Æ·¡¸¦ ÂüÁ¶ ÇÑ´Ù.
%windows%
c:\windows
%program%
C:\Documents and Settings\(username)\½ÃÀÛ ¸Þ´º\ÇÁ·Î±×·¥
%system%
C:\windows\system32
%prog%
C:\Program Files
%currentuser%
C:\Documents and Settings\(username)
%startmenu%
C:\Documents and Settings\(username)\½ÃÀÛ ¸Þ´º
 
 
Adware/Bho.Mortal
 Á¾·ù
Bho
 °¨¿°°æ·Î
ActiveX
 Ä¡·á¹æ¹ý

¿¡ºê¸®Á¸ Á¦Ç°±ºÀ¸·Î Áø´Ü/Ä¡·á °¡´ÉÇÕ´Ï´Ù.

 
Áõ»ó
Adware/Bho.Mortal´Â BHO Çü½ÄÀ» ÃëÇØ »ç¿ëÀÚ°¡ iexplorer¸¦ ½ÇÇà½Ãų ½Ã È°µ¿ ÇÏ´Â ¾Ç¼ºÄÚµåÀÌ´Ù.
iexplorerÀÇ ¿À·ù¸¦ ÃÊ·¡ ÇÏ°í, °í°´ÀÇ µ¿ÀÇ ¾øÀÌ ±¤°íÀÇ ¿ªÈ°°ú ÀºÆÐµÈ ±â´ÉÀ» ¼öÇàÇÏ´Â ¾Ç¼ºº¸µåÀÔ´Ï´Ù.

ÀÌ´Â
1) À¥ºê¶ó¿ìÀúÀÇ È¨ÆäÀÌÁö ¼³Á¤À̳ª °Ë»ö ¼³Á¤À» º¯°æ ¶Ç´Â ½Ã½ºÅÛ ¼³Á¤ º¯°æÇÏ´Â ÇàÀ§
¿¡ ÇØ´çÇÏ¿©, ¾Ç¼ºÄÚµå·Î ±¸ºÐ µÈ´Ù.

[»ý¼º ÆÄÀÏ]
%system%\mortal.dll


[»ý¼º ·¹Áö]
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2B07C9B0-DE22-4F7A-AF91-20380B53B8D7}


°æ·Î´Â ¾Æ·¡¸¦ ÂüÁ¶ ÇÑ´Ù.
%windows%
c:\windows
%program%
C:\Documents and Settings\(username)\½ÃÀÛ ¸Þ´º\ÇÁ·Î±×·¥
%system%
C:\windows\system32
%prog%
C:\Program Files
%currentuser%
C:\Documents and Settings\(username)
%startmenu%
C:\Documents and Settings\(username)\½ÃÀÛ ¸Þ´º
»ç¿ëÀÚ µ¿ÀǾøÀÌ BHO·Î ¼³Ä¡µÇ¾î »ç¿ëÀÚ Å°¿öµå¸¦ °¨½ÃÇÏ´Â ¾Öµå¿þ¾îÀÌ´Ù.
 
 
¹«´ÜÀüÀç¤ý¹èÆ÷±ÝÁö
¿¡ºê¸®Á¸¿¡¼­ Á¦°øÇÏ´Â ¸ðµç ÄÁÅÙÃ÷ Á¤º¸¿¡ ´ëÇÑ ÀúÀÛ±ÇÀº ¿¡ºê¸®Á¸ÀÇ ¼ÒÀ¯ÀÌ¸ç °ü·Ã¹ýÀÇ º¸È£¸¦ ¹Þ½À´Ï´Ù.
¿¡ºê¸®Á¸ÀÇ »çÀü Çã°¡ ¾øÀÌ ¿¡ºê¸®Á¸ ÄÁÅÙÃ÷¸¦ ¹«´ÜÀ¸·Î ÀüÀç, ¹èÆ÷¸¦ ±ÝÁöµÇ¾î ÀÖ½À´Ï´Ù.
À̸¦ À§¹ÝÇÏ´Â °æ¿ì ¼ÕÇعè»óÀÇ ´ë»ó ¶Ç´Â ¹Î.Çü»ç»óÀÇ ¹ýÀû ¼Ò¼Û ´ë»óÀÌ µÉ ¼ö ÀÖ½À´Ï´Ù.
                                                                 * ¿¡ºê¸®Á¸ Á¤º¸ ÀÌ¿ë ¹®ÀÇ : greenking@everyzone.com
   | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40