º¸¾ÈIT´º½º º¸¾È±Ç°í¹® º¸¾ÈTip º¸¾Èó¹æ º¸¾ÈÅë½Å º¸¾È¿ë¾î º¸¾È¹é½Å¸ÞÀÏ º¸¾ÈĶ¸°´õ
º¸¾ÈÀ§ÇùDB ã±â
º¸¾ÈÄ®·³
¿¡ºê¸®Á¸ Zip¿¡ºê¸®Á¸ See¿¡ºê¸®Á¸ FTP

  º¸¾ÈIT´º½º
  º¸¾È±Ç°í¹®
  º¸¾ÈTip
  º¸¾Èó¹æ
  º¸¾ÈÅë½Å
  º¸¾È¿ë¾î
  º¸¾È¹é½Å¸ÞÀÏ
  º¸¾ÈĶ¸°´õ
  º¸¾ÈÀ§ÇùDBã±â
  º¸¾ÈÄ®·³

   º¸¾ÈÀ§ÇùDBã±â
   
  
 ¸ñ·Ï |  À­±Û |  ¾Æ·§±Û  
W32/Swen.106496@mm
 ¹ÙÀÌ·¯½º Á¾·ù
Worm
 ½ÇÇàȯ°æ
Win9x, Win2000, NT
 ¹ß°ßÀÏ
2003³â09¿ù18ÀÏ
 Á¦ÀÛÁö
ºÒºÐ¸í
 À§Çèµî±Þ
 È®»ê¹æ¹ý
 ¹ÙÀÌ·¯½º Å©±â
106,496 Bytes
 Ã·ºÎÆÄÀÏ
clly.exe ¿Ü ´Ù¼ö
 ¸ÞÀÏÁ¦¸ñ
  Newest Security Upgrade ¿Ü ´Ù¼ö
 Áõ»ó¿ä¾à
  
 Ä¡·á¹æ¹ý

Åͺ¸¹é½Å Ai, Åͺ¸¹é½Å 2001 ¶Ç´Â Åͺ¸¹é½Å OnlineÀ¸·Î Ä¡·á
°¡´É ÇÕ´Ï´Ù.

¹ÙÀÌ·¯½º Ä¡·áÈÄ ÀÎÅÍ³Ý ÀͽºÇ÷η¯ 6.0 À¸·Î ¾÷±×·¡À̵å Çϰųª
´ÙÀ½ÀÇ url ¿¡¼­ ¾Æ¿ô·è ÆÐÄ¡¸¦ ¹Þ¾Æ¾ß ÇÑ´Ù.

http://www.microsoft.com/korea/technet/security/bulletin/MS01-020.asp



  
 
»ó¼¼¼³¸í
ºñÁÖ¾ó C++·Î ÀÛ¼ºµÇ¾úÀ¸¸ç, P2P ÀÀ¿ë ÇÁ·Î±×·¥ÀÎ KaZaA ±×¸®°í
mIRC µîÀ¸·Î ÀüÆĵȴÙ.

ÇØ´ç ¿úÀº ¸¶ÀÌÅ©·Î¼ÒÇÁÆ®°¡ º¸³½ Çü½ÄÀÇ ÆÐÄ¡ÆÄÀÏ ÇÁ·Î±×·¥°ú
·£´ýÇÑ Á¦¸ñÀ» °¡Áö´Â ÀÏ¹Ý ÅؽºÆ® ¸ÞÀÏÇü½ÄÀ» °¡Áö°í ÀÖ´Ù.

·£´ýÇÑ Á¦¸ñÀ» °¡Áö´Â ÀÏ¹Ý ÅؽºÆ® Çü½ÄÀÇ ¸ÞÀÏÀº º¸¾ÈÆÐÄ¡°¡ ¾ÈµÈ
¾Æ¿ô·è¿¡¼­ ¸ÞÀÏÀ» Àб⸸ Çصµ ÀÚµ¿ ½ÇÇàµÇ´Â º¸¾È¹ö±×¸¦ ÀÌ¿ëÇϱ⵵ ÇÑ´Ù.

±×¸®°í ÀÌ ¿úÀº À©µµ¿ì º¸¾ÈÆÐÄ¡ Çü½Ä°ú ÀÏ¹Ý ÅؽºÆ® Çü½ÄÀÇ ¸ÞÀÏÀÌ
¦À» ÀÌ·ç¾î µ¿½Ã¿¡ º¸³»Áø´Ù.

¿úÀº *.dbx, *.mbx, *.eml,*.wab, *.asp, *.ht*  ÆÄÀÏ¿¡¼­ ¸ÞÀÏ ÁÖ¼Ò¸¦ ÃßÃâ
ÇÏ¿© ÀÚü smpt¸¦ ÀÌ¿ë °¨¿°µÈ ÆÄÀÏ°ú ÇÔ²² ¸ÞÀÏÀ» ¹ß¼ÛÇϸç,³×Æ®¿öÅ©
°øÀ¯Æú´õ¸¦ ÅëÇØ ÀüÆĵDZ⵵ ÇÑ´Ù.

¿úÀÌ ½ÇÇà µÇ¸é À©µµ¿ì Æú´õ(win9x, xp : c:\windows, win2000 : c:\winnt)¿¡
º¹»çº»À» ·£´ýÇÑ ÆÄÀÏÀ̸§À¸·Î »ý¼ºÇÑ´Ù.
±×¸®°íSwen1.datÆÄÀÏÀ» »ý¼ºÇϴµ¥ ´º½º±×·ìÀÇ ¼­¹ö ÁÖ¼Ò°¡ ÀúÀåµÇ ÀÖ´Ù.

ƯÈ÷ *.reg Çü½ÄÀÇ È®ÀåÀÚ¸¦ ½ÇÇàÇÒ¶§ÀÇ ·¹Áö½ºÆ®¸®¸¦ º¯°æÇϱ⠶§¹®¿¡

reg ÆÄÀÏÀ» ½ÇÇàÇÏ·Á ÇÒ °æ¿ì ´ÙÀ½°ú °°Àº ¿¡·¯ ¸Þ½ÃÁö¸¦ ³ªÅ¸³½´Ù.

''Memory access violation in module kernel32 at xxxx''( xxxx : ·£´ýÇÑ ¼ýÀÚ)


¶ÇÇÑ ÀÚ½ÅÀ» ½ÇÇàÇÒ¼ö ÀÖ°Ô ¾Æ·¡ÀÇ ³»¿ëÀÌ ·¹Áö½ºÆ®¸®¿¡ Ãß°¡ µÈ´Ù.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Ç׸ñ¿¡

·£´ýÇÑ µ¥ÀÌÅÍ °ª = (·£´ýÇÑÆÄÀϸí).exe autorun

HKEY_CLASSES_ROOT\batfile\shell\open\command
Ç׸ñ¿¡

(Default) = (·£´ýÇÑÆÄÀϸí).exe "%1" %*

HKEY_CLASSES_ROOT\comfile\shell\open\command
Ç׸ñ¿¡

(Default) = (·£´ýÇÑÆÄÀϸí).exe "%1" %*

HKEY_CLASSES_ROOT\exefile\shell\open\command
Ç׸ñ¿¡

(Default) = (·£´ýÇÑÆÄÀϸí).exe "%1" %*

HKEY_CLASSES_ROOT\piffile\shell\open\command
Ç׸ñ¿¡

(Default) = (·£´ýÇÑÆÄÀϸí).exe "%1" %*

HKEY_CLASSES_ROOT\regfile\shell\open\command
Ç׸ñ¿¡

(Default) = (·£´ýÇÑÆÄÀϸí).exe showerror

HKEY_CLASSES_ROOT\scrfile\shell\open\command
Ç׸ñ¿¡

(Default) = (·£´ýÇÑÆÄÀϸí).exe "%1" /S

HKEY_CLASSES_ROOT\scrfile\shell\config\command
Ç׸ñ¿¡

(Default) = (·£´ýÇÑÆÄÀϸí).exe "%1"

±×¸®°í ´ÙÀ½°ú °°Àº ÇÁ·Î¼¼½º°¡ ¹ß°ßµÇ¸é ÇØ´ç ÇÁ·Î±×·¥À» °­Á¦ Á¾·á ½ÃŲ´Ù.

_avp        
ackwin32  
anti-trojan  
aplica32  
apvxdwin    
autodown  
avconsol    
ave32
avgcc32    
avgctrl  
avkserv      
avsched32    
avwin95    
avwupd32  
blackd      
blackice    
bootwarn    
ccapp    
ccshtdwn    
cfiadmin    
cfiaudit    
cfind    
cfinet      
claw95      
ecengine    
efinet32  
esafe        
espwatch    
f-agnt95    
f-prot    
f-prot95    
f-stopw      
findviru    
fp-win    
fprot        
fprot95      
iamapp      
iamserv  
ibmasn      
ibmavsp      
icload95    
icloadnt  
icmon        
icmoon      
icssuppnt  
icsupp    
iface        
iomon98      
kpfw32      
lookout  
luall        
lockdown2000
moolive    
mpftray  
msconfig    
nai_vs_stat  
navapw32    
navlu32  
navnt        
navsched    
nisum      
nmain    
normist    
nupdate      
nupgrade    
nvc95    
outpost      
padmin      
pavcl      
pavsched  
pcciomon    
pccmain      
pccwin98    
persfw    
pop3trap    
pview        
pcfwallicon
regedit  
rescue      
safeweb      
serv95      
sphinx    
sweep        
vcleaner    
vcontrol    
vet32    
vet95        
vet98        
vettray    
vscan    
vsecomr      
vshwin32    
vsstat      
webtrap  
wfindv32    
zapro        
zonealarm


*¸¶ÀÌÅ©·Î ¼ÒÇÁÆ® ÆÐÄ¡Çü½Ä

º¸³½»ç¶÷ : ´ÙÀ½¿¡¼­ ¼±ÅõȴÙ.

MS Corporation Security Center
Microsoft Corporation Security Bulletin
Microsoft Corporation Security Department

¸ÞÀÏÁ¦¸ñ : ´ÙÀ½¿¡¼­ ¼±ÅõȴÙ.

Latest Pathch
Newest Security Upgrade
Internet Security Upgrade

¹Þ´Â »ç¶÷ : ´ÙÀ½¿¡¼­ ¼±ÅõȴÙ.

Consumer
Client
Microsoft Coporation Consumer



*ÀÏ¹Ý ¸ÞÀÏ Çü½Ä

º¸³½»ç¶÷ : ´ÙÀ½¿¡¼­ ¼±ÅõȴÙ.

MS Mail Delivery System
MS Net Message Storage System
network email storage system

¸ÞÀÏÁ¦¸ñ : ´ÙÀ½¿¡¼­ ¼±ÅõȴÙ.

advice
(Á¦¸ñ¾øÀ½)
report


¹Þ´Â»ç¶÷ : ´ÙÀ½¿¡¼­ ¼±ÅõȴÙ.

Mail Receiver
internet recipient
Email Recipient
 
¿¹¹æ ¹× ¼öµ¿Á¶Ä¡¹æ¹ý
¹«´ÜÀüÀç¤ý¹èÆ÷±ÝÁö
¿¡ºê¸®Á¸¿¡¼­ Á¦°øÇÏ´Â ¸ðµç ÄÁÅÙÃ÷ Á¤º¸¿¡ ´ëÇÑ ÀúÀÛ±ÇÀº ¿¡ºê¸®Á¸ÀÇ ¼ÒÀ¯ÀÌ¸ç °ü·Ã¹ýÀÇ º¸È£¸¦ ¹Þ½À´Ï´Ù.
¿¡ºê¸®Á¸ÀÇ »çÀü Çã°¡ ¾øÀÌ ¿¡ºê¸®Á¸ ÄÁÅÙÃ÷¸¦ ¹«´ÜÀ¸·Î ÀüÀç, ¹èÆ÷¸¦ ±ÝÁöµÇ¾î ÀÖ½À´Ï´Ù.
À̸¦ À§¹ÝÇÏ´Â °æ¿ì ¼ÕÇعè»óÀÇ ´ë»ó ¶Ç´Â ¹Î.Çü»ç»óÀÇ ¹ýÀû ¼Ò¼Û ´ë»óÀÌ µÉ ¼ö ÀÖ½À´Ï´Ù.
* ¿¡ºê¸®Á¸ Á¤º¸ ÀÌ¿ë ¹®ÀÇ : greenking@everyzone.com
 ¸ñ·Ï