|
Adware/Dialer.Egaccess´Â ´Ù¸¥ Downloader ÇÁ·Î±×·¥ÀÌ ÀÚµ¿À¸·Î ´Ù¿î ¹Þ´Â Çü½ÄÀ¸·Î ¼³Ä¡ À¯Æ÷ µÇ¸ç,
¼³Ä¡ °úÁ¤¿¡¼µµ ¼³Ä¡°úÁ¤À» Ç¥½Ã ÇÏÁö ¾Ê´Â µî ÀºÆóÀûÀ¸·Î ¼³Ä¡µÇ´Â ¾Ç¼ºÄÚµåÀÌ´Ù.
¼³Ä¡ ÀÌÈÄ, ¹«´Ü Æ˾÷»ý¼º, ¹× ±¤°í¼º ÇàÀ§¸¦ Çϸç, ´Ù¸¥ ¹ÙÀÌ·¯½ºÀÇ °¨¿°¿¡ ³ëÃâ ½ÃŲ´Ù.
ÀÌ´Â
4) ´Ù¸¥ ÇÁ·Î±×·¥À» ´Ù¿î·ÎµåÇÏ¿© ¼³Ä¡ ÇÏ°Ô ÇÏ´Â ÇàÀ§
5) ÀÌ¿ëÀÚ°¡ ÇÁ·Î±×·¥À» Á¦°ÅÇϰųª Á¾·á½ÃÄѵµ ´çÇØ ÇÁ·Î±×·¥
(´çÇØ ÇÁ·Î±×·¥ÀÇ º¯Á¾ ÇÁ·Î±×·¥µµ Æ÷ÇÔ)ÀÌ Á¦°Å µÇ°Å³ª Á¾·á µÇÁö ¾Ê´Â ÇàÀ§
¿¡ ¼ÓÇÑ´Ù.
[»ý¼º ÆÄÀÏ]
%dpf%\\EGDACCESS.inf
%system%\\EGDACCESS?????.dll
[»ý¼º ·¹Áö]
HKEY_CLASSES_ROOT\CLSID\{04CCFF26-7D52-4E42-BF6A-F8ECE0896EB7}
HKEY_CLASSES_ROOT\CLSID\{07C9CFC7-DE33-4A0C-9FFB-CDFBA843B157}
HKEY_CLASSES_ROOT\CLSID\{3DAD912E-D2B9-4323-B7C9-7F2C5CC0C57B}
HKEY_CLASSES_ROOT\CLSID\{8D8BAF56-B581-4B90-A549-C4AC6B03F1BB}
HKEY_CLASSES_ROOT\CLSID\{95460ABD-946A-46FF-9F56-268718323EEE}
HKEY_CLASSES_ROOT\CLSID\{BA749BC1-143E-430D-B1DA-1D2AF67A3658}
HKEY_CLASSES_ROOT\CLSID\{C2481ED1-9896-4D49-AE90-69858DFDE446}
HKEY_CLASSES_ROOT\CLSID\{87C1805D-C5AE-4455-AB39-E245BB516136}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8D8BAF56-B581-4B90-A549-C4AC6B03F1BB}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{C2481ED1-9896-4D49-AE90-69858DFDE446}
dpf%\\EGDACCESS?????.dll
HKEY_*_*\SOFTWARE\Microsoft\Windows\CurrentVersion\Run Instant Access
[´Ù¿î·Îµå À§Ä¡]
http://scripts.downloadv3.com/binaries/EGDAccess/EGDACCESS_1073_XP.cab
°æ·Î´Â ¾Æ·¡¸¦ ÂüÁ¶ ÇÑ´Ù.
%windows%
c:\windows
%program%
C:\Documents and Settings\(username)\½ÃÀÛ ¸Þ´º\ÇÁ·Î±×·¥
%system%
C:\windows\system32
%prog%
C:\Program Files
%currentuser%
C:\Documents and Settings\(username)
%startmenu%
C:\Documents and Settings\(username)\½ÃÀÛ ¸Þ´º
»ç¿ëÀÚ µ¿ÀǾøÀÌ BHO·Î ¼³Ä¡µÇ¾î »ç¿ëÀÚ Å°¿öµå¸¦ °¨½ÃÇÏ´Â ¾Öµå¿þ¾îÀÌ´Ù.
|
|
|