|
Adware/Findnavi´Â ´Ù¿î·Î´õ¿¡ ÀÇÇؼ ¼³Ä¡µÇ´Â ¾Ç¼ºÄÚµå·Î,
¼³Ä¡ ÈÄ¿¡ Internet Explorer¿¡ Ãß°¡µÇ¾î »ç¿ëÀÚÀÇ °Ë»ö Á¤º¸¸¦ º¯°æÇÏ´Â ÇàÀ§¸¦ Çϸç,
ÁÖ¼ÒÇ¥½Ã ÁÙ º¯°æ¸¦ ºÒ °¡´ÉÇϵµ·Ï ¸¸µå´Â ¾Ç¼ºÄÚµåÀÌ´Ù.
ÀÌ´Â
1. À¥ ºê¶ó¿ìÀúÀÇ È¨ÆäÀÌÁö ¼³Á¤À̳ª °Ë»ö ¼³Á¤À» º¯°æ ¶Ç´Â ½Ã½ºÅÛ ¼³Á¤À» º¯°æÇÏ´Â ÇàÀ§
2. Á¤»ó ÇÁ·Î±×·¥ÀÇ ¿î¿µÀ» ¹æÇØ, ÁßÁö ¶Ç´Â »èÁ¦ ÇÏ´Â ÇàÀ§
3. ´Ù¸¥ ÇÁ·Î±×·¥À» ´Ù¿î·Îµå ÇÏ¿© ¼³Ä¡ÇÏ°Ô ÇÏ´Â ÇàÀ§
4. ÀÌ¿ëÀÚ°¡ ÇÁ·Î±×·¥À» Á¦°ÅÇϰųª Á¾·á½ÃÄѵµ ÇÁ·Î±×·¥(´çÇØ ÇÁ·Î±×·¥ÀÇ º¯Á¾ ÇÁ·Î±×·¥µµ Æ÷ÇÔ)ÀÌ Á¦°Å µÇ°Å³ª Á¾·áµÇÁö ¾Ê´Â ÇàÀ§
[»ý¼º ÆÄÀÏ]
%windows%\install.exe
%windows%\findnavi.exe
%windows%\unfnd.exe
%windows%\unfnnsub.exe
%prog%\findnavi\fndnv.dll
%prog%\findnavi\fndsub.dll
[»ý¼º ·¹Áö]
HKEY_CURRENT_USER\software\1111111111
HKEY_CLASSES_ROOT\CLSID\{23267422-A6C8-4af4-B2C3-9369041CF552}
HKEY_CLASSES_ROOT\CLSID\{15829F9F-C9B7-41f5-B20F-360ACC60324F}
HKEY_CLASSES_ROOT\TypeLib\{C8EBE6EC-2D9A-4E6F-AFB2-1AC8A1AB2BC8}
HKEY_CLASSES_ROOT\TypeLib\{93325A53-3806-4FBF-8A6D-9AB58BB0BB63}
HKEY_CLASSES_ROOT\Interface\{1EB8B796-B55C-437F-BB13-D8311E2B2429}
HKEY_CLASSES_ROOT\Interface\{850C7C97-F5BE-454B-8528-11FE5877C4AB}
HKEY_CLASSES_ROOT\San.sae
HKEY_CLASSES_ROOT\San.sae.1    
HKEY_CLASSES_ROOT\NCTbar.CBNTbar  
HKEY_CLASSES_ROOT\NCTbar.CBNTbar.1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\searchtemp
HKEY_*_*\SOFTWARE\Microsoft\Windows\CurrentVersion\Run searchtemp
°æ·Î´Â ¾Æ·¡¸¦ ÂüÁ¶ ÇÑ´Ù.
%windows%
c:\windows
%program%
C:\Documents and Settings\(username)\½ÃÀÛ ¸Þ´º\ÇÁ·Î±×·¥
%system%
C:\windows\system32
%prog%
C:\Program Files
%currentuser%
C:\Documents and Settings\(username)
%startmenu%
C:\Documents and Settings\(username)\½ÃÀÛ ¸Þ´º
»ç¿ëÀÚ µ¿ÀǾøÀÌ BHO·Î ¼³Ä¡µÇ¾î »ç¿ëÀÚ Å°¿öµå¸¦ °¨½ÃÇÏ´Â ¾Öµå¿þ¾îÀÌ´Ù. |
|
|