|
|
|
|
¾Ç¼ºÄÚµå À̸§ |
Adware/IERCash |
¾Ç¼ºÄÚµå Á¾·ù |
adware |
½ÇÇà
ȯ°æ |
ActiveX |
Á¦ÀÛÁö |
|
¹ß°ßÀÏ |
|
¾Ç¼ºÄÚµå
Å©±â |
|
¸ÞÀÏ
Á¦¸ñ |
|
÷ºÎÆÄÀÏ |
|
Áõ»ó |
Adware/IERCash´Â ActiveX Çü½ÄÀ» ÃëÇØ »ç¿ëÀÚ¿¡°Ô ¼³Ä¡¸¦ À¯µµÇÏ°í,
¼³Ä¡ °úÁ¤¿¡¼µµ ¼³Ä¡°úÁ¤À» Ç¥½Ã ÇÏÁö ¾Ê´Â µî ÀºÆóÀûÀ¸·Î ¼³Ä¡µÈ ÈÄ ¹ÙÀÌ·¯½º¸¦ ´Ù¿î ÇÏ´Â ¾Ç¼ºÄÚµåÀÌ´Ù.
¼³Ä¡ ÀÌÈÄ, ÃÖ¼ÒÇÑÀÇ Ç¥½Ã ÀÌ¿Ü¿¡´Â ÇÁ·Î±×·¥ ¼³Ä¡¸¦ ¾Ë¾Æº¼¼ö ¾øµµ·Ï Çϸç,
»ç¿ëÀÚ µ¿ÀÇ ¾øÀÌ À¥»çÀÌÆ®ÀÇ ¼³Á¤¹× ±âº» ±â´ÉÀ» º¯°æ ÇÏ´Â ¾Ç¼ºÄÚµåÀÌ´Ù.
ÀÌ´Â
- À¥ ºê¶ó¿ìÀúÀÇ È¨ÆäÀÌÁö ¼³Á¤À̳ª °Ë»ö ¼³Á¤À» º¯°æ ¶Ç´Â ½Ã½ºÅÛ ¼³Á¤À» º¯°æÇÏ´Â ÇàÀ§
- Á¤»ó ÇÁ·Î±×·¥ÀÇ ¿î¿µÀ» ¹æÇØ, ÁßÁö ¶Ç´Â »èÁ¦ ÇÏ´Â ÇàÀ§
- Á¤»ó ÇÁ·Î±×·¥ÀÇ ¼³Ä¡¸¦ ¹æÇØÇÏ´Â ÇàÀ§
- ´Ù¸¥ ÇÁ·Î±×·¥À» ´Ù¿î·Îµå ÇÏ¿© ¼³Ä¡ÇÏ°Ô ÇÏ´Â ÇàÀ§
- ¿î¿µÃ¼°è ¶Ç´Â Ÿ ÇÁ·Î±×·¥ÀÇ º¸¾È¼³Á¤À» Á¦°ÅÇϰųª ³·°Ô º¯°æÇÏ´Â ÇàÀ§
- ÀÌ¿ëÀÚ°¡ ÇÁ·Î±×·¥À» Á¦°ÅÇϰųª Á¾·á½ÃÄѵµ ÇÁ·Î±×·¥(´çÇØ ÇÁ·Î±×·¥ÀÇ º¯Á¾ ÇÁ·Î±×·¥µµ Æ÷ÇÔ)ÀÌ Á¦°Å µÇ°Å³ª Á¾·áµÇÁö ¾Ê´Â ÇàÀ§
- »ç¿ëÀÚÀÇ Àǵµ¿Í »ó°ü¾ø´Â ±¤°í È¿°ú¸¦ ¹ß»ý½ÃÅ°´Â °æ¿ì
[»ý¼º ÆÄÀÏ]
%prog%\????", "IEexeRCash.exe (ÀÓÀÇÀÇ Æú´õ¸í)
%prog%\????", "IEBhoRCash.dll
%prog%\????", "rcash.exe
%windows%\\????", "IEexeRCash.exe (ÀÓÀÇÀÇ Æú´õ¸í)
%windows%\\????", "IEBhoRCash.dll
%windows%", "RCashV2.exe
%system%", "RCashUserData.dll
%system%", "????.EXE (ÀÓÀÇÀÇ Æú´õ°ú µ¿ÀÏ)
[»ý¼º ·¹Áö]
HKEY_CURRENT_USER\software\Rcash v1.0
HKEY_CLASSES_ROOT\CLSID\{0CD26485-A4D9-4cf2-80B6-F0B02E8B7A2B}
HKEY_CLASSES_ROOT\TypeLib\{BF1631E6-98EE-4AFC-8519-0B4AE6FAB6F6}
HKEY_CLASSES_ROOT\Interface\{0DE73186-CEB2-4C3A-BA2B-2EBC0306F47F}
HKEY_CLASSES_ROOT\IERCash.BHO
HKEY_CLASSES_ROOT\IERCash.BHO.1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\R-cash v1.0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Rcash v2.0
HKEY_*_*\SOFTWARE\Microsoft\Windows\CurrentVersion\Run Rcash v1.0
HKEY_*_*\SOFTWARE\Microsoft\Windows\CurrentVersion\Run Rcash v2.0
HKEY_*_*\SOFTWARE\Microsoft\Windows\CurrentVersion\???? (ÀÓÀÇÀÇ Æú´õ°ú µ¿ÀÏ)
°æ·Î´Â ¾Æ·¡¸¦ ÂüÁ¶ ÇÑ´Ù.
%windows%
c:\windows
%program%
C:\Documents and Settings\(username)\½ÃÀÛ ¸Þ´º\ÇÁ·Î±×·¥
%system%
C:\windows\system32
%prog%
C:\Program Files
%currentuser%
C:\Documents and Settings\(username)
%startmenu%
C:\Documents and Settings\(username)\½ÃÀÛ ¸Þ´º
»ç¿ëÀÚ µ¿ÀǾøÀÌ BHO·Î ¼³Ä¡µÇ¾î »ç¿ëÀÚ Å°¿öµå¸¦ °¨½ÃÇÏ´Â ¾Öµå¿þ¾îÀÌ´Ù. |
Ä¡·á ¹æ¹ý |
|
Á÷Á¢Ä¡·á¹æ¹ý |
|
|
|
|
|