|
Adware/ErWindow´Â ActiveX Çü½Ä ¹× °í°´ÀÇ µ¿ÀÇ ÀºÆÐÀûÀÎ ÇൿÀ¸·Î ´Ù¿î ¼³Ä¡ µÇ¸ç,
¼³Ä¡ °úÁ¤¿¡¼µµ ¼³Ä¡°úÁ¤À» Ç¥½Ã ÇÏÁö ¾Ê´Â ¾Ç¼ºÄÚµåÀÌ´Ù.
¼³Ä¡ ÀÌÈÄ, ÃÖ¼ÒÇÑÀÇ Ç¥½Ã ÀÌ¿Ü¿¡´Â ÇÁ·Î±×·¥ ¼³Ä¡¸¦ ¾Ë¾Æº¼¼ö ¾øµµ·Ï Çϸç,
»ç¿ëÀÚ µ¿ÀÇ ¾øÀÌ À¥»çÀÌÆ®ÀÇ ¼³Á¤¹× ±âº» ±â´ÉÀ» º¯°æ ÈÄ °í°´ÀÇ ÀԷ¸¦ °¡·Îä¾î,
ƯÁ¤ ½ÎÀÌÆ®¸¦ Ãß°¡·Î ºÒ·¯ µå¸®´Â ¿ªÈ°¸¦ ÇÑ´Ù.
¶ÇÇÑ »ç¿ëÀÚ µ¿ÀÇ ¾øÀÌ ´Ù¸¥ ÇÁ·Î±×·¥À» ´Ù¿î ¹Þ¾Æ ¼³Ä¡ ÇÑ´Ù.
ÀÌ´Â
1. À¥ ºê¶ó¿ìÀúÀÇ È¨ÆäÀÌÁö ¼³Á¤À̳ª °Ë»ö ¼³Á¤À» º¯°æ ¶Ç´Â ½Ã½ºÅÛ ¼³Á¤À» º¯°æÇÏ´Â ÇàÀ§
4. ´Ù¸¥ ÇÁ·Î±×·¥À» ´Ù¿î·Îµå ÇÏ¿© ¼³Ä¡ÇÏ°Ô ÇÏ´Â ÇàÀ§
¿¡ ÇØ´çÇÏ¿© ¾Ç¼ºÄÚµå·Î °£ÁÖ ÇÑ´Ù.
[»ý¼º ÆÄÀÏ]
%prog%\ErWindow\ErWindow.exe
%prog%\ErWindow\ErSQL.dll
%prog%\ErWindow\ErUtf.dll
%prog%\ErWindow\dvsetup_honey.exe
%prog%\ErWindow\ErData.dll
%prog%\ErWindow\ErWindow.dll
%prog%\ErWindow
%system%\ErWindow.dll
[»ý¼º ·¹Áö]
HKEY_CURRENT_USER\software\ErWindow
HKEY_CLASSES_ROOT\CLSID\{CA17B789-D21A-49cf-81F5-F7E01DE2C452}
HKEY_CLASSES_ROOT\CLSID\{D12D2157-33E5-45f0-8E58-4D65035D2983}
HKEY_CLASSES_ROOT\TypeLib\{CCDCD9AE-871D-498E-AAC3-75BF7FC7C23C}
HKEY_CLASSES_ROOT\Interface\{EEE92C96-B749-4BCF-A08F-72BFF2352D7F}
HKEY_CLASSES_ROOT\Windows.ErWindow
HKEY_CLASSES_ROOT\Windows.ErWindow.1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ErWindow
HKEY_*_*\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ErWindow
°æ·Î´Â ¾Æ·¡¸¦ ÂüÁ¶ ÇÑ´Ù.
%windows%
c:\windows
%program%
C:\Documents and Settings\(username)\½ÃÀÛ ¸Þ´º\ÇÁ·Î±×·¥
%system%
C:\windows\system32
%prog%
C:\Program Files
%currentuser%
C:\Documents and Settings\(username)
%startmenu%
C:\Documents and Settings\(username)\½ÃÀÛ ¸Þ´º |
|
|