º¸¾ÈIT´º½º º¸¾È±Ç°í¹® º¸¾ÈTip º¸¾Èó¹æ º¸¾ÈÅë½Å º¸¾È¿ë¾î º¸¾È¹é½Å¸ÞÀÏ º¸¾ÈĶ¸°´õ º¸¾ÈÀ§ÇùDB ã±â
º¸¾ÈÄ®·³
¿¡ºê¸®Á¸ Zip¿¡ºê¸®Á¸ See¿¡ºê¸®Á¸ FTP

  º¸¾ÈIT´º½º
  º¸¾È±Ç°í¹®
  º¸¾ÈTip
  º¸¾Èó¹æ
  º¸¾ÈÅë½Å
  º¸¾È¿ë¾î
  º¸¾È¹é½Å¸ÞÀÏ
  º¸¾ÈĶ¸°´õ
  º¸¾ÈÀ§ÇùDBã±â
  º¸¾ÈÄ®·³

   º¸¾ÈÄ®·³
   
 ¸ñ·Ï |  À­±Û |  ¾Æ·§±Û
 ÀÎÅÍ³Ý Ä§ÇØ»ç°í 2009³â 03¿ù ¿¡ºê¸®Á¸ Åë°è
   snslab 2009-04-16       Á¶È¸  32017 





> 3¿ù º¸¾È Åë°è

¼øÀ§

Áø´Ü¸í

1

Trojan-W32/Autorun

2

Adware-W32/Shop114t

3

W32/Virut.A

4

Trojan-W32/Krap

5

Adware-W32/Cinmus


2009³â 3¿ù ÇÑ ´Þ°£ °¡Àå ¸¹Àº ¿ø°ÝÁ¦¾î ¹®ÀÇ°¡ µé¾î¿Â ¹ÙÀÌ·¯½º´Â Trojan-W32/Autorun ¹ÙÀÌ·¯½º ÀÔ´Ï´Ù. 

Autorun °ü·Ã DB ¹× ³»¿ëÀº ¾Æ·¡ ¸µÅ©¸¦ ÂüÁ¶ÇØ ÁÖ¼¼¿ä

http://www.everyzone.com/info/e_virus_db/list.asp?gotopage=1

¡Ü Áø´Ü¸í : W32/Virut.A

[Áõ»ó]

È®ÀåÀÚ°¡ exe , scrÀÎ ¸ðµç ÆÄÀÏÀÌ °¨¿°µÇ¾î ÇÁ·Î±×·¥ µîÀÇ ½ÇÇàÀ» ¹æÇØÇÏ°í,
°¨¿°µµ°¡ ½ÉÇÒ °æ¿ì ÄÄÇ»ÅÍ ºÎÆÃÀÌ µÇÁö ¾Ê±âµµ ÇÑ´Ù .
http://www.everyzone.com/info/e_virus_db/content.asp?seq=513&GotoPage=1

[Ä¡·á ¹æ¹ý]

¾ÈÀü¸ðµå »óÅ¿¡¼­ Åͺ¸¹é½Å Á¦Ç°±º (Åͺ¸¹é½Å Ai ¹× Åͺ¸¹é½Å IS) À¸·Î
¹Ýº¹ÀûÀ¸·Î °Ë»ç ¹× Ä¡·á¸¦ ¹Þ´Â´Ù .

[ÁÖÀÇ »çÇ×]

½ÇÇà ÆÄÀÏÀÎ EXE . SRC ÆÄÀÏÀ» °è¼ÓÀûÀ¸·Î °¨¿° ½ÃÅ°±â ¶§¹®¿¡,
Á¤»ó¸ðµå¿¡¼­ Ä¡·á°¡ ¾î·Á¿ï »Ó´õ·¯, ¹é½Å ÇÁ·Î±×·¥µµ °¨¿°ÀÌ µÉ ¼ö ÀÖ½À´Ï´Ù.
Ä¡·á ÈÄ ºÎÆÃÀÌ ¾ÈµÇ°Å³ª ÀͽºÇ÷η¯ ½ÇÇàÀÌ ¾ÈµÇ´Â ¹®Á¦°¡ »ý±æ ¼ö ÀÖÀ¸¹Ç·Î,
Áß¿ä ¹®¼­³ª ±×¸² , »çÁø µîÀÇ ÆÄÀÏÀº ¹Ýµå½Ã ¹é¾÷À» ¹Þ¾Æ µÎ½Ã±â ¹Ù¶ø´Ï´Ù!





2009-03
¿ù ¿¡ºê¸®Á¸ ¹ÙÀÌ·¯½º, ¾Ç¼ºÄÚµå ½Å°í Åë°è


¹ÙÀÌ·¯½º

¾Ç¼ºÄÚµå

±âŸ

°³¼ö

87

1575

13






• 2009-01
¿ù ¿¡ºê¸®Á¸ ¹ÙÀÌ·¯½º, ¾Ç¼ºÄÚµå DB Ãß°¡ Åë°è

¹ÙÀÌ·¯½º

¾Ç¼ºÄÚµå

DBÃß°¡

3990

498



 

[ ÀÌ´ÞÀÇ À̽´]


> ÀÌ ´ÞÀÇ ¹ÙÀÌ·¯½º À̽´

Kido (Confiker/Downadup)

- ÃÖ±Ù À©µµ¿ì º¸¾È Ãë¾àÁ¡ÀÎ MS08-067À» ¾Ç¿ëÇÏ´Â Kido (Confiker/Downadup) ÀÇ °¨¿°ÀÌ Áõ°¡ÇÏ°í ÀÖ´Ù. ÇØ´ç Ãë¾àÁ¡Àº ÀÌ¹Ì ÆÐÄ¡ µÇ¾úÁö¸¸ ÆÐÄ¡¸¦ ¼³Ä¡ÇÏÁö ¾ÊÀº PC ¿¡¼­´Â ¾ÆÁ÷µµ °¨¿°µÈ´Ù. °¨¿°µÇ¸é  MS »çÀÌÆ®¿Í ´Ù¼öÀÇ ¾ÈƼ¹ÙÀÌ·¯½º »çÀÌÆ®¸¦ Á¢¼ÓÀ» Â÷´ÜÇÑ´Ù.


> ÀÌ ´ÞÀÇ °¡Àå À̽´


Adware/OnlineGames.º¯Çü, Adware/Rogue.AdwareRemover

¡Ü Adware/OnlineGames.º¯Çü (»ç¿ëÀÚÀÇ Á¤º¸¸¦ À¯Ãâ ÇÏ´Â ¾Ç¼ºÄÚµå ÆÄÀÏ)

[ÆÄÀÏ]
%system%\tdfhex.dll
%system%\fsrgeb.dll
%system%\zsdgff.dll
%system%\ddserh.dll
%system%\dntggf.dll
%system%\mttwfh.dll
%system%\mjgfth.dll

[·¹Áö½ºÆ®¸®]
HKEY_CLASSES_ROOT\CLSID\{0B846B26-BFE6-4E8E-A948-1DB17B77B483}
HKEY_CLASSES_ROOT\CLSID\{EA5D4B0E-B8CE-4761-8C7E-5D26369F0EC6}
HKEY_CLASSES_ROOT\CLSID\{53D44DB6-E22B-4B17-97D3-572C96CCA6E1}
HKEY_CLASSES_ROOT\CLSID\{A9895933-6636-4281-BC58-EE6DE2AF96E3}
HKEY_CLASSES_ROOT\CLSID\{259BF3CF-194D-4FE6-9ADB-DE6544B098B6}
HKEY_CLASSES_ROOT\CLSID\{021F087F-4378-545F-74FA-37D345AD7A8C}
À§¿¡ ³ª¿­µÈ Ç׸ñÀº ÀϺΠ³»¿ëÀÌ¸ç ´Ù¾çÇÑ ·£´ý ÆÄÀÏ°ú Å° °ªÀ¸·Î »ý¼ºµÇ´Â Ư¡ÀÌ ÀÖ´Ù.

¡Ü Adware/Rogue.AdwareRemover (ÇãÀ§ º¸¾È Á¦Ç°À¸·Î »ç¿ëÀÚ µ¿ÀÇ ¾øÀÌ ¼³Ä¡ ¹× ÇãÀ§ Á¤º¸ À¯Æ÷)

[ÆÄÀÏ]
%prog%\Adware Remover\SpyWares\TopMoxie(WebSavings)\*.*
%prog%\Adware Remover\SpyWares\TopMoxie(WebSavings)
%prog%\Adware Remover\SpyWares\TV Media\*.*
%prog%\Adware Remover\SpyWares\TV Media
%prog%\Adware Remover\SpyWares\Twain-Tech\*.*
%prog%\Adware Remover\SpyWares\Twain-Tech
%prog%\Adware Remover\SpyWares\VX2\*.*
%prog%\Adware Remover\SpyWares\VX2
%prog%\Adware Remover\SpyWares\WebHancer\*.*
%prog%\Adware Remover\SpyWares\WebHancer
%prog%\Adware Remover\SpyWares\WebSearchToolbar\*.*
%prog%\Adware Remover\SpyWares\WebSearchToolbar
%prog%\Adware Remover\SpyWares\GAIN\*.*
%prog%\Adware Remover\SpyWares\GAIN
%prog%\Adware Remover\SpyWares\HuntBar\*.*
%prog%\Adware Remover\SpyWares\HuntBar
%prog%\Adware Remover\SpyWares\IBIS Toolbar\*.*
%prog%\Adware Remover\SpyWares\IBIS Toolbar
%prog%\Adware Remover\SpyWares\KeenValue.PerfectNav\*.*
%prog%\Adware Remover\SpyWares\KeenValue.PerfectNav
%prog%\Adware Remover\SpyWares\MarketScore\*.*
%prog%\Adware Remover\SpyWares\MarketScore
%prog%\Adware Remover\SpyWares\New.Net\*.*
%prog%\Adware Remover\SpyWares\New.Net
%prog%\Adware Remover\SpyWares\StartNow.HyperBar\*.*
%prog%\Adware Remover\SpyWares\StartNow.HyperBar
%prog%\Adware Remover\SpyWares\AdRoar\*.*
%prog%\Adware Remover\SpyWares\AdRoar
%prog%\Adware Remover\SpyWares\Alexa Related\*.*
%prog%\Adware Remover\SpyWares\Alexa Related
%prog%\Adware Remover\SpyWares\BroadcastPC\*.*
%prog%\Adware Remover\SpyWares\BroadcastPC
%prog%\Adware Remover\SpyWares\Browser Hijack\*.*
%prog%\Adware Remover\SpyWares\Browser Hijack
%prog%\Adware Remover\SpyWares\Cookies\*.*
%prog%\Adware Remover\SpyWares\Cookies
%prog%\Adware Remover\SpyWares\Cydoor\*.*
%prog%\Adware Remover\SpyWares\Cydoor
%prog%\Adware Remover\SpyWares\eAcceleration\*.*
%prog%\Adware Remover\SpyWares\eAcceleration
%prog%\Adware Remover\SpyWares\eUniverse\*.*
%prog%\Adware Remover\SpyWares\eUniverse
%prog%\Adware Remover\SpyWares\FSG\*.*
%prog%\Adware Remover\SpyWares\FSG
%prog%\Adware Remover\SpyWares\*.*
%prog%\Adware Remover\SpyWares
%prog%\Adware Remover\Sound\*.*
%prog%\Adware Remover\Sound
%prog%\Adware Remover\Logs\*.*
%prog%\Adware Remover\Logs
%prog%\Adware Remover\*.*
%prog%\Adware Remover
%program%\Adware Remover\*.*
%program%\Adware Remover
%system%\filekiller.dll

[·¹Áö½ºÆ®¸®]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Adware Remover
HKEY_*_*\SOFTWARE\Microsoft\Windows\CurrentVersion\Run AdwareRemover

 

     


 ¸ñ·Ï