TROJ_DLOADR.BXD
プラットフォーム:
Windows 2000, Windows XP, Windows Server 2003
危険度:
ダメージ度:
感染力:
感染確認数:
マルウェアタイプ:
トロイの木馬型
破壊活動の有無:
なし
暗号化:
感染報告の有無 :
はい
概要
マルウェアは、他のマルウェアに作成されるか、悪意あるWebサイトからユーザが誤ってダウンロードすることによりコンピュータに侵入します。
詳細
ファイルサイズ 65,024 bytes
タイプ EXE
メモリ常駐 はい
発見日 2014年1月3日
侵入方法
マルウェアは、他のマルウェアに作成されるか、悪意あるWebサイトからユーザが誤ってダウンロードすることによりコンピュータに侵入します。
自動実行方法
マルウェアは、自身のコピーがWindows起動時に自動実行されるよう以下のレジストリ値を追加します。
HKEY_CURRENT_USER\Software\Microsoft\
Windows\CurrentVersion\Run
TcpIpCfg = "Rundll32 %User Profile%\Application Data\dhjhxlq.dll MainThread"
作成活動
マルウェアは、以下のファイルを作成します。
- lib.exe
- %User Profile%\Application Data\dhjhxlq.dll
- %User Profile%\Application Data\$$Delme1$$.bat
- %User Profile%\Application Data\ini.ini
- %User Profile%\Application Data\HTMLDATA
(註:%User Profile% フォルダは、Windows 2000、XP および Server 2003 の場合、通常、"C:\Documents and Settings\<ユーザ名>"、Windows Vista および 7 の場合、"C:\Users\<ユーザ名>" です。)
その他
マルウェアは、以下の不正なWebサイトにアクセスします。
- http://www.{BLOCKED}d.com/lib.txt?sjcrubr
- http://www.{BLOCKED}d.com/html.txt?fdqfghu
- http://www.{BLOCKED}d.com/lib.txt?dttpopi
- http://www.{BLOCKED}d.com/html.txt?lndleit
- http://www.{BLOCKED}d.com/lib.txt?udvlrpd
- http://www.{BLOCKED}d.com/html.txt?rbwlyby
- http://www.{BLOCKED}d.com/lib.txt?ilkeadh
- http://www.{BLOCKED}d.com/html.txt?becxdqe
- http://www.{BLOCKED}d.com/lib.txt?xpjmllr
- http://www.{BLOCKED}d.com/html.txt?jtcnemu
- http://www.{BLOCKED}d.com/lib.txt?noewxgf
- http://www.{BLOCKED}d.com/html.txt?bajovny
- http://www.{BLOCKED}d.com/lib.txt?shgpwkt
- http://www.{BLOCKED}d.com/html.txt?tbsggeh
- http://www.{BLOCKED}d.com/lib.txt?kigflsc
- http://www.{BLOCKED}d.com/html.txt?omihyqj
- http://www.{BLOCKED}d.com/lib.txt?sbhaykv
- http://www.{BLOCKED}d.com/html.txt?jkjyhvp
- http://www.{BLOCKED}d.com/lib.txt?dytkbbx
- http://www.{BLOCKED}d.com/html.txt?yptvqbu
- http://www.{BLOCKED}d.com/lib.txt?ccoxpnt
- http://www.{BLOCKED}d.com/html.txt?qsqnjhj
- http://www.{BLOCKED}d.com/lib.txt?ekslwkq
- http://www.{BLOCKED}d.com/html.txt?yytmedc
- http://www.{BLOCKED}d.com/lib.txt?kgdvgri
- http://www.{BLOCKED}d.com/html.txt?xgnybio
- http://www.{BLOCKED}d.com/lib.txt?mxhdqql
- http://www.{BLOCKED}d.com/html.txt?vofuvjt
- http://www.{BLOCKED}d.com/lib.txt?uhxnnpr
- http://www.{BLOCKED}d.com/html.txt?wsxsxac
- http://www.{BLOCKED}d.com/lib.txt?ryvxogo
- http://www.{BLOCKED}d.com/html.txt?xwuuevl
- http://www.{BLOCKED}d.com/lib.txt?ykxfini
- http://www.{BLOCKED}d.com/html.txt?krppnsn
- http://www.{BLOCKED}d.com/lib.txt?lejaxly
- http://www.{BLOCKED}d.com/html.txt?kayfcmk
- http://www.{BLOCKED}d.com/lib.txt?oswjjuw
- http://www.{BLOCKED}d.com/html.txt?ewkpsnw
- http://www.{BLOCKED}d.com/lib.txt?rcmsnuc
- http://www.{BLOCKED}d.com/html.txt?hjymyue
- http://www.{BLOCKED}d.com/lib.txt?kograig
- http://www.{BLOCKED}d.com/html.txt?wgxqyem
- http://www.{BLOCKED}d.com/lib.txt?qutmiak
- http://www.{BLOCKED}d.com/html.txt?mphdglr
- http://www.{BLOCKED}d.com/lib.txt?ricjhxt
- http://www.{BLOCKED}d.com/html.txt?junpywt
- http://www.{BLOCKED}d.com/lib.txt?wxndjrx
- http://www.{BLOCKED}d.com/html.txt?vdgxsul
- http://www.{BLOCKED}d.com/lib.txt?sossidf
- http://www.{BLOCKED}d.com/html.txt?fhluymm
- http://www.{BLOCKED}d.com/lib.txt?anruipb
- http://www.{BLOCKED}d.com/html.txt?jeavdqo
- http://www.{BLOCKED}d.com/lib.txt?etvdefg
- http://www.{BLOCKED}d.com/html.txt?vikxhkp
- http://www.{BLOCKED}d.com/lib.txt?tkpduab
- http://www.{BLOCKED}d.com/html.txt?udvcchy
- http://www.{BLOCKED}d.com/lib.txt?kyubnhb
- http://www.{BLOCKED}d.com/html.txt?wlwfpww
- http://www.{BLOCKED}d.com/lib.txt?ytsvfap
- http://www.{BLOCKED}d.com/html.txt?qfteudi
- http://www.{BLOCKED}d.com/lib.txt?slfiaks
- http://www.{BLOCKED}d.com/html.txt?pqgbjmn
- http://www.{BLOCKED}d.com/lib.txt?pmwmlww
- http://www.{BLOCKED}d.com/html.txt?inyuumo
- http://www.{BLOCKED}d.com/lib.txt?hlejrde
- http://www.{BLOCKED}d.com/html.txt?yvewmng
- http://www.{BLOCKED}d.com/lib.txt?bfryhcd
- http://www.{BLOCKED}d.com/html.txt?bulbbse
- http://www.{BLOCKED}d.com/lib.txt?hfbwdia
- http://www.{BLOCKED}d.com/html.txt?qfqbghd
- http://www.{BLOCKED}d.com/lib.txt?cohwjnq
- http://www.{BLOCKED}d.com/html.txt?tqlednr
- http://www.{BLOCKED}d.com/lib.txt?hyfbsug
- http://www.{BLOCKED}d.com/html.txt?fkqmaht
- http://www.{BLOCKED}d.com/lib.txt?owhgjjt
- http://www.{BLOCKED}d.com/html.txt?uyhhwdv
- http://www.{BLOCKED}d.com/lib.txt?lnlmdiw
- http://www.{BLOCKED}d.com/html.txt?wdjmakg
- http://www.{BLOCKED}d.com/lib.txt?whohnww
- http://www.{BLOCKED}d.com/html.txt?dugwcnr
- http://www.{BLOCKED}d.com/lib.txt?ghrcvjt
- http://www.{BLOCKED}d.com/html.txt?cawovof
- http://www.{BLOCKED}d.com/lib.txt?qexnyxv
- http://www.{BLOCKED}d.com/html.txt?rauxevf
- http://www.{BLOCKED}d.com/lib.txt?fjderja
- http://www.{BLOCKED}d.com/html.txt?hkcaubx
- http://www.{BLOCKED}d.com/lib.txt?ppbypxd
- http://www.{BLOCKED}d.com/html.txt?aqbyhps
- http://www.{BLOCKED}d.com/lib.txt?kokjfcg
- http://www.{BLOCKED}d.com/html.txt?snvpcrr
- http://www.{BLOCKED}d.com/lib.txt?cqsleco
- http://www.{BLOCKED}d.com/html.txt?oofgcwk
- http://www.{BLOCKED}d.com/lib.txt?sylvgcx
- http://www.{BLOCKED}d.com/html.txt?uedoyrn
- http://www.{BLOCKED}d.com/lib.txt?rmjikhi
- http://www.{BLOCKED}d.com/html.txt?nukwemm
- http://www.{BLOCKED}d.com/lib.txt?amrjipo
- http://www.{BLOCKED}d.com/html.txt?dljhjqm
- http://www.{BLOCKED}d.com/lib.txt?xalrclq
- http://www.{BLOCKED}d.com/html.txt?tsjwcae
- http://www.{BLOCKED}d.com/lib.txt?wmdmsmd
- http://www.{BLOCKED}d.com/html.txt?roqoryo
- http://www.{BLOCKED}d.com/lib.txt?ddqqbgq
- http://www.{BLOCKED}d.com/html.txt?ipbnhod
- http://www.{BLOCKED}d.com/lib.txt?yaajeqy
- http://www.{BLOCKED}d.com/html.txt?qmnhsnt
- http://www.{BLOCKED}d.com/lib.txt?qnpojpe
- http://www.{BLOCKED}d.com/html.txt?armtnae
- http://www.{BLOCKED}d.com/lib.txt?lkskuum
- http://www.{BLOCKED}d.com/html.txt?hlrtrys
- http://www.{BLOCKED}d.com/lib.txt?aarageo
- http://www.{BLOCKED}d.com/html.txt?reoptsq
- http://www.{BLOCKED}d.com/lib.txt?ugftvqp
- http://www.{BLOCKED}d.com/html.txt?kelytfa
- http://www.{BLOCKED}d.com/lib.txt?bjceero
- http://www.{BLOCKED}d.com/html.txt?dnyjqmb
- http://www.{BLOCKED}d.com/lib.txt?lrwmsmf
- http://www.{BLOCKED}d.com/html.txt?enstekd
- http://www.{BLOCKED}d.com/lib.txt?tcdtxth
- http://www.{BLOCKED}d.com/html.txt?yokbatd
- http://www.{BLOCKED}d.com/lib.txt?ghkpkcq
- http://www.{BLOCKED}d.com/html.txt?fblqtmv
- http://www.{BLOCKED}d.com/lib.txt?kbfejum
- http://www.{BLOCKED}d.com/html.txt?mjrvrhr
- http://www.{BLOCKED}d.com/lib.txt?ynywlfw
- http://www.{BLOCKED}d.com/html.txt?lwjvqku
- http://www.{BLOCKED}d.com/lib.txt?satsswo
- http://www.{BLOCKED}d.com/html.txt?uilatyr
- http://www.{BLOCKED}d.com/lib.txt?hmyrrut
- http://www.{BLOCKED}d.com/html.txt?ohxwlpo
- http://www.{BLOCKED}d.com/lib.txt?pfhsumy
- http://www.{BLOCKED}d.com/html.txt?hyylkwn
- http://www.{BLOCKED}d.com/lib.txt?pmndcwa
- http://www.{BLOCKED}d.com/html.txt?jbyruge
- http://www.{BLOCKED}d.com/lib.txt?tbuwymw
- http://www.{BLOCKED}d.com/html.txt?sbsojbw
- http://www.{BLOCKED}d.com/lib.txt?gimudcc
- http://www.{BLOCKED}d.com/html.txt?vqpqnhl
- http://www.{BLOCKED}d.com/lib.txt?vsyhrev
- http://www.{BLOCKED}d.com/html.txt?dukvooo
- http://www.{BLOCKED}d.com/lib.txt?fmqnjdp
- http://www.{BLOCKED}d.com/html.txt?mojkthu
- http://www.{BLOCKED}d.com/lib.txt?gigbrlr
- http://www.{BLOCKED}d.com/html.txt?ypkwpjw
- http://www.{BLOCKED}d.com/lib.txt?dpofsoa
- http://www.{BLOCKED}d.com/html.txt?xagdcrc
- http://www.{BLOCKED}d.com/lib.txt?qgspgqu
- http://www.{BLOCKED}d.com/html.txt?bdyggyw
- http://www.{BLOCKED}d.com/lib.txt?vddldlm
- http://www.{BLOCKED}d.com/html.txt?xxrjoke
- http://www.{BLOCKED}d.com/lib.txt?vwyrfss
- http://www.{BLOCKED}d.com/html.txt?jnmortr
- http://www.{BLOCKED}d.com/lib.txt?sgebtvh
- http://www.{BLOCKED}d.com/html.txt?pdutbhs
- http://www.{BLOCKED}d.com/lib.txt?rgxiukx
- http://www.{BLOCKED}d.com/html.txt?mnlcxjb
- http://www.{BLOCKED}d.com/lib.txt?mjqwidn
- http://www.{BLOCKED}d.com/html.txt?oxvfmjy
- http://www.{BLOCKED}d.com/lib.txt?qxjmlxu
- http://www.{BLOCKED}d.com/html.txt?rrmssvy
- http://www.{BLOCKED}d.com/lib.txt?pimopog
- http://www.{BLOCKED}d.com/html.txt?gjlglst
- http://www.{BLOCKED}d.com/lib.txt?dcbrdbu
- http://www.{BLOCKED}d.com/html.txt?xjpdhem
- http://www.{BLOCKED}d.com/lib.txt?spymvmr
- http://www.{BLOCKED}d.com/html.txt?johgexk
- http://www.{BLOCKED}d.com/lib.txt?lcsrsna
- http://www.{BLOCKED}d.com/html.txt?fxakpmn
- http://www.{BLOCKED}d.com/lib.txt?etpnqhf
- http://www.{BLOCKED}d.com/html.txt?arwvqwk
- http://www.{BLOCKED}d.com/lib.txt?nypevrv
- http://www.{BLOCKED}d.com/html.txt?wnywyhs
- http://www.{BLOCKED}d.com/lib.txt?shkdfgd
- http://www.{BLOCKED}d.com/html.txt?ombbptj
- http://www.{BLOCKED}d.com/lib.txt?kvtckxx
- http://www.{BLOCKED}d.com/html.txt?fgqfueg
- http://www.{BLOCKED}d.com/lib.txt?jjraruq
- http://www.{BLOCKED}d.com/html.txt?wxcehni
- http://www.{BLOCKED}d.com/lib.txt?hdvdbtp
- http://www.{BLOCKED}d.com/html.txt?pvfmukr
- http://www.{BLOCKED}d.com/lib.txt?hjmnrhm
- http://www.{BLOCKED}d.com/html.txt?eufnmhn
- http://www.{BLOCKED}d.com/lib.txt?ooemlpq
- http://www.{BLOCKED}d.com/html.txt?tiqolxg
- http://www.{BLOCKED}d.com/lib.txt?xslhxlj
- http://www.{BLOCKED}d.com/html.txt?pvadqqa
- http://www.{BLOCKED}d.com/lib.txt?katoxim
- http://www.{BLOCKED}d.com/html.txt?cvuxhcn
- http://www.{BLOCKED}d.com/lib.txt?ipowoma
- http://www.{BLOCKED}d.com/html.txt?rnbcdqf
- http://www.{BLOCKED}d.com/lib.txt?yagwfxh
- http://www.{BLOCKED}d.com/html.txt?yydrwox
- http://www.{BLOCKED}d.com/lib.txt?wmntgcx
- http://www.{BLOCKED}d.com/html.txt?jycgwwy
- http://www.{BLOCKED}d.com/lib.txt?kavumkk
- http://www.{BLOCKED}d.com/html.txt?bgctxev
- http://www.{BLOCKED}d.com/lib.txt?ehygxhk
- http://www.{BLOCKED}d.com/html.txt?wwotvjw
- http://www.{BLOCKED}d.com/lib.txt?iotppbj
- http://www.{BLOCKED}d.com/html.txt?cacxwas
- http://www.{BLOCKED}d.com/lib.txt?oferqrg
- http://www.{BLOCKED}d.com/html.txt?hnkchhu
- http://www.{BLOCKED}d.com/lib.txt?erhbscq
- http://www.{BLOCKED}d.com/html.txt?bwuwqwy
- http://www.{BLOCKED}d.com/lib.txt?bcvfyji
- http://www.{BLOCKED}d.com/html.txt?dlxapdc
- http://www.{BLOCKED}d.com/lib.txt?cnrxklg
- http://www.{BLOCKED}d.com/html.txt?remllwv
- http://www.{BLOCKED}d.com/lib.txt?pkgggkt
- http://www.{BLOCKED}d.com/html.txt?vmwofml
- http://www.{BLOCKED}d.com/lib.txt?cyxrpxb
- http://www.{BLOCKED}d.com/html.txt?rhlqfjh
- http://www.{BLOCKED}d.com/lib.txt?jqfsbiv
- http://www.{BLOCKED}d.com/html.txt?tjtvpor
- http://www.{BLOCKED}d.com/lib.txt?rjwsmun
- http://www.{BLOCKED}d.com/html.txt?ivxwuhw
- http://www.{BLOCKED}d.com/lib.txt?donxtag
- http://www.{BLOCKED}d.com/html.txt?rrffplk
- http://www.{BLOCKED}d.com/lib.txt?nfpvduw
- http://www.{BLOCKED}d.com/html.txt?imulaga
- http://www.{BLOCKED}d.com/lib.txt?xtfmwkl
- http://www.{BLOCKED}d.com/html.txt?wssbluj
- http://www.{BLOCKED}d.com/lib.txt?grpemjd
- http://www.{BLOCKED}d.com/html.txt?ifjbmpo
- http://www.{BLOCKED}d.com/lib.txt?tjnegpy
- http://www.{BLOCKED}d.com/html.txt?qcsykqd
- http://www.{BLOCKED}d.com/lib.txt?uhacrqs
- http://www.{BLOCKED}d.com/html.txt?khvxogq
- http://www.{BLOCKED}d.com/lib.txt?yogqubn
- http://www.{BLOCKED}d.com/html.txt?kootxeq
- http://www.{BLOCKED}d.com/lib.txt?dshirrd
- http://www.{BLOCKED}d.com/html.txt?tjntwfe
- http://www.{BLOCKED}d.com/lib.txt?edqmkxa
- http://www.{BLOCKED}d.com/html.txt?nxspmnj
- http://www.{BLOCKED}d.com/lib.txt?qfesjdy
- http://www.{BLOCKED}d.com/html.txt?kbeynxn
- http://www.{BLOCKED}d.com/lib.txt?vydcdxp
- http://www.{BLOCKED}d.com/html.txt?muithyu
- http://www.{BLOCKED}d.com/lib.txt?embyomn
- http://www.{BLOCKED}d.com/html.txt?ndfrdsu
- http://www.{BLOCKED}d.com/lib.txt?ljgekou
- http://www.{BLOCKED}d.com/html.txt?tyteprj
- http://www.{BLOCKED}d.com/lib.txt?qxeyftx
- http://www.{BLOCKED}d.com/html.txt?ecwrpet
- http://www.{BLOCKED}d.com/lib.txt?lmsislg
- http://www.{BLOCKED}d.com/html.txt?cxkpcoi
- http://www.{BLOCKED}d.com/lib.txt?pgdksvs
- http://www.{BLOCKED}d.com/html.txt?jnokntp
- http://www.{BLOCKED}d.com/lib.txt?ewelwiu
- http://www.{BLOCKED}d.com/html.txt?rhucnfg
- http://www.{BLOCKED}d.com/lib.txt?ydrrxra
- http://www.{BLOCKED}d.com/html.txt?mefdhsy
- http://www.{BLOCKED}d.com/lib.txt?jmluiql
- http://www.{BLOCKED}d.com/html.txt?vtvwdhe
- http://www.{BLOCKED}d.com/lib.txt?jalktgg
- http://www.{BLOCKED}d.com/html.txt?emijjjr
- http://www.{BLOCKED}d.com/lib.txt?khcrvvc
- http://www.{BLOCKED}d.com/html.txt?rcnrimp
- http://www.{BLOCKED}d.com/lib.txt?vxlfoao
- http://www.{BLOCKED}d.com/html.txt?sjnyeoy
- http://www.{BLOCKED}d.com/lib.txt?obpjmhi
- http://www.{BLOCKED}d.com/html.txt?bncrynu
- http://www.{BLOCKED}d.com/lib.txt?bqlujua
- http://www.{BLOCKED}d.com/html.txt?qsisbjh
- http://www.{BLOCKED}d.com/lib.txt?wmvhoja
- http://www.{BLOCKED}d.com/html.txt?jpiwple
- http://www.{BLOCKED}d.com/lib.txt?vmsibpg
- http://www.{BLOCKED}d.com/html.txt?mdsoqfw
- http://www.{BLOCKED}d.com/lib.txt?uooefju
- http://www.{BLOCKED}d.com/html.txt?puvxdli
- http://www.{BLOCKED}d.com/lib.txt?unqnjds
- http://www.{BLOCKED}d.com/html.txt?ypeimhn
- http://www.{BLOCKED}d.com/lib.txt?phvcrqt
- http://www.{BLOCKED}d.com/html.txt?atstnmr
- http://www.{BLOCKED}d.com/lib.txt?njwoxih
- http://www.{BLOCKED}d.com/html.txt?xvrgdcg
- http://www.{BLOCKED}d.com/lib.txt?smqewum
- http://www.{BLOCKED}d.com/html.txt?fevngvp
- http://www.{BLOCKED}d.com/lib.txt?cueogoe
- http://www.{BLOCKED}d.com/html.txt?gyaeoke
- http://www.{BLOCKED}d.com/lib.txt?icdwkty
- http://www.{BLOCKED}d.com/html.txt?xnqmvob
- http://www.{BLOCKED}d.com/lib.txt?wxvqxew
- http://www.{BLOCKED}d.com/html.txt?uyvxaff
- http://www.{BLOCKED}d.com/lib.txt?xkionig
- http://www.{BLOCKED}d.com/html.txt?abdwymd
- http://www.{BLOCKED}d.com/lib.txt?cgvvhll
- http://www.{BLOCKED}d.com/html.txt?kcxrmia
- http://www.{BLOCKED}d.com/lib.txt?wxgthog
- http://www.{BLOCKED}d.com/html.txt?gbmrfie
- http://www.{BLOCKED}d.com/lib.txt?duxnauj
- http://www.{BLOCKED}d.com/html.txt?bnvmjlf
- http://www.{BLOCKED}d.com/lib.txt?yhwqbnw
- http://www.{BLOCKED}d.com/html.txt?suikair
- http://www.{BLOCKED}d.com/lib.txt?flygnmq
- http://www.{BLOCKED}d.com/html.txt?aheywpt
- http://www.{BLOCKED}d.com/lib.txt?jhplfmq
- http://www.{BLOCKED}d.com/html.txt?jppkmbs
- http://www.{BLOCKED}d.com/lib.txt?goprpmh
- http://www.{BLOCKED}d.com/html.txt?yjxurff
- http://www.{BLOCKED}d.com/lib.txt?rfpttyx
- http://www.{BLOCKED}d.com/html.txt?krcysdf
- http://www.{BLOCKED}d.com/lib.txt?cvggrkx
- http://www.{BLOCKED}d.com/html.txt?kpsnlcx
- http://www.{BLOCKED}d.com/lib.txt?kbfsgvh
- http://www.{BLOCKED}d.com/html.txt?vyldsnm
- http://www.{BLOCKED}d.com/lib.txt?feypnrb
- http://www.{BLOCKED}d.com/html.txt?sqyckhs
- http://www.{BLOCKED}d.com/lib.txt?pkkckek
- http://www.{BLOCKED}d.com/html.txt?klphhhv
- http://www.{BLOCKED}d.com/lib.txt?depvjuu
- http://www.{BLOCKED}d.com/html.txt?behcnqh
- http://www.{BLOCKED}d.com/lib.txt?upxqkrq
- http://www.{BLOCKED}d.com/html.txt?cpsrypq
- http://www.{BLOCKED}d.com/lib.txt?rbiovpb
- http://www.{BLOCKED}d.com/html.txt?krqnhuq
- http://www.{BLOCKED}d.com/lib.txt?ablvdns
- http://www.{BLOCKED}d.com/html.txt?kcayaqn
- http://www.{BLOCKED}d.com/lib.txt?whnlrbf
- http://www.{BLOCKED}d.com/html.txt?xlcvjre
- http://www.{BLOCKED}d.com/lib.txt?mjpynnk
- http://www.{BLOCKED}d.com/html.txt?jwgyvcr
- http://www.{BLOCKED}d.com/lib.txt?gsmtpwg
- http://www.{BLOCKED}d.com/html.txt?rxbmbux
- http://www.{BLOCKED}d.com/lib.txt?livtdtc
- http://www.{BLOCKED}d.com/html.txt?cfjyyyd
- http://www.{BLOCKED}d.com/lib.txt?niehevy
- http://www.{BLOCKED}d.com/html.txt?ibcober
- http://www.{BLOCKED}d.com/lib.txt?bejaxew
- http://www.{BLOCKED}d.com/html.txt?fuqjwol
- http://www.{BLOCKED}d.com/lib.txt?enfgebq
- http://www.{BLOCKED}d.com/html.txt?urxaqnp
- http://www.{BLOCKED}d.com/lib.txt?yvbepwx
- http://www.{BLOCKED}d.com/html.txt?xklvtka
- http://www.{BLOCKED}d.com/lib.txt?vtrkmci
- http://www.{BLOCKED}d.com/html.txt?ikbihrd
- http://www.{BLOCKED}d.com/lib.txt?nbywwvg
- http://www.{BLOCKED}d.com/html.txt?xyvbvyq
- http://www.{BLOCKED}d.com/lib.txt?tsuekbe
- http://www.{BLOCKED}d.com/html.txt?sflxbil
- http://www.{BLOCKED}d.com/lib.txt?ricuvsy
- http://www.{BLOCKED}d.com/html.txt?jnmbbcx
- http://www.{BLOCKED}d.com/lib.txt?dgdeotv
- http://www.{BLOCKED}d.com/html.txt?cjnksev
- http://www.{BLOCKED}d.com/lib.txt?yrjsmrs
- http://www.{BLOCKED}d.com/html.txt?wqxqcgd
- http://www.{BLOCKED}d.com/lib.txt?uqhxvau
- http://www.{BLOCKED}d.com/html.txt?yfohxuj
- http://www.{BLOCKED}d.com/lib.txt?xnjfwax
- http://www.{BLOCKED}d.com/html.txt?emaxsqw
- http://www.{BLOCKED}d.com/lib.txt?tgbkyvm
- http://www.{BLOCKED}d.com/html.txt?nmpwffe
- http://www.{BLOCKED}d.com/lib.txt?bolsbpd
- http://www.{BLOCKED}d.com/html.txt?ecnejjm
- http://www.{BLOCKED}d.com/lib.txt?gvvhquy
- http://www.{BLOCKED}d.com/html.txt?pckkxbs
- http://www.{BLOCKED}d.com/lib.txt?xstbgxi
- http://www.{BLOCKED}d.com/html.txt?qracjex
- http://www.{BLOCKED}d.com/lib.txt?rtusknp
- http://www.{BLOCKED}d.com/html.txt?fkfmqpq
- http://www.{BLOCKED}d.com/lib.txt?gxovnml
- http://www.{BLOCKED}d.com/html.txt?esavxcj
- http://www.{BLOCKED}d.com/lib.txt?wwhkcsb
- http://www.{BLOCKED}d.com/html.txt?hjbdugj
- http://www.{BLOCKED}d.com/lib.txt?gclvypv
- http://www.{BLOCKED}d.com/html.txt?nwpfunx
- http://www.{BLOCKED}d.com/lib.txt?dahvmki
- http://www.{BLOCKED}d.com/html.txt?ujyarmr
- http://www.{BLOCKED}d.com/lib.txt?vlpmoxn
- http://www.{BLOCKED}d.com/html.txt?nomunon
- http://www.{BLOCKED}d.com/lib.txt?woirhmy
- http://www.{BLOCKED}d.com/html.txt?ymeuuia
- http://www.{BLOCKED}d.com/lib.txt?csslbnw
- http://www.{BLOCKED}d.com/html.txt?dgcvyvw
- http://www.{BLOCKED}d.com/lib.txt?ccdnicm
- http://www.{BLOCKED}d.com/html.txt?bfnwgqw
- http://www.{BLOCKED}d.com/lib.txt?rufktqv
- http://www.{BLOCKED}d.com/html.txt?qjlxhml
- http://www.{BLOCKED}d.com/lib.txt?vbdiomg
- http://www.{BLOCKED}d.com/html.txt?iwbcvhn
- http://www.{BLOCKED}d.com/lib.txt?ghhfugd
- http://www.{BLOCKED}d.com/html.txt?kdphbck
- http://cinemarina.{BLOCKED}v.jp/x.jpg
このウイルス情報は、自動解析システムにより作成されました。
対応方法
対応検索エンジン: 9.300
手順 1
Windows XP、Windows Vista および Windows 7 のユーザは、コンピュータからマルウェアもしくはアドウェア等を完全に削除するために、ウイルス検索の実行前には必ず「システムの復元」を無効にしてください。
手順 2
Windowsをセーフモードで再起動します。
[ 詳細 ]
手順 3
このレジストリ値を削除します。
[ 詳細 ]
警告:レジストリはWindowsの構成情報が格納されているデータベースであり、レジストリの編集内容に問題があると、システムが正常に動作しなくなる場合があります。
レジストリの編集はお客様の責任で行っていただくようお願いいたします。弊社ではレジストリの編集による如何なる問題に対しても補償いたしかねます。
レジストリの編集前にこちらをご参照ください。
- In HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
- TcpIpCfg = "Rundll32 %User Profile%\Application Data\dhjhxlq.dll MainThread"
手順 4
以下のファイルを検索し削除します。
[ 詳細 ]
コンポーネントファイルが隠しファイル属性の場合があります。[詳細設定オプション]をクリックし、[隠しファイルとフォルダの検索]のチェックボックスをオンにし、検索結果に隠しファイルとフォルダが含まれるようにしてください。 - lib.exe
- %User Profile%\Application Data\dhjhxlq.dll
- %User Profile%\Application Data\Delme1.bat
- %User Profile%\Application Data\ini.ini
- %User Profile%\Application Data\HTMLDATA
- [スタート]をクリックします。
- [プログラムとファイルの検索]に、以下を入力します。
- lib.exe
- %User Profile%\Application Data\dhjhxlq.dll
- %User Profile%\Application Data\Delme1.bat
- %User Profile%\Application Data\ini.ini
- %User Profile%\Application Data\HTMLDATA
- 検索が終了したら、ファイルを選択し、SHIFT+DELETE を押します。これにより、ファイルが完全に削除されます。
- 残りのファイルに対して、マルウェアのコンポーネントファイルの削除の手順 2.)から 3.)を繰り返してください。
註:Windows 7 において上記の手順が正しく行われない場合、マイクロソフトのWebサイトをご確認ください。
手順 5
コンピュータを通常モードで再起動し、最新のバージョン(エンジン、パターンファイル)を導入したウイルス対策製品を用い、「TROJ_DLOADR.BXD」と検出したファイルの検索を実行してください。 検出されたファイルが、弊社ウイルス対策製品により既に駆除、隔離またはファイル削除の処理が実行された場合、ウイルスの処理は完了しており、他の削除手順は特にありません。
ご利用はいかがでしたか? アンケートにご協力ください