Yeni Trj/Trjdropper Siteleri

[SIZE="5"]BU SİTELERE KESİNLİKLE GİRMEYİNİZ BÜTÜN BU SİTELERDE VİRÜS BULUNMAKTADIR![/SIZE]

» Bu siteler sahte yazılım içermektedir, sizin izniniz olmadan gizlice bilgisayarınıza trojan indirir bu reklam yazılımıdır kendi programlarının reklamını yapar ve kendi programlarıda virüslüdür.
Norton,Mcafee,Antivir,Bitdefender, Microsoft gibi şirketlerin kullandığı bazı araçların (veya yazılımlarının) isimleriyle kendilerini yaymaktadırlar.


antivirus360remover. com //Norton 360
av360removaltool. com //Norton 360
malwarebot. org
malwaree. com
remove-a360. com //Norton 360
remove-antivirus-360. com //Norton 360
remove-av360. com //Norton 360
remove-ie-security. com // Windows Defender
remove-malware-defender. com // Windows Defender
remove-ms-antispyware. com // Bitdefender
remove-personal-defender. com //Windows Defender, Bitdefender
remove-spyware-guard. com
remove-spyware-protect. com
remove-spyware-protect-2009. com
remove-system-guard. com //Mcafee
remove-total-security. com //Bitdefender
remove-ultra-antivir-2009. com //Avira AntiVir
remove-ultra-antivirus-2009. com // Avira AntiVir
remove-virus-alarm. com //BitDefender
remove-virus-melt. com // Microsoft Malware Cleaner(kötü amaçlı yazılım temizleme)
remove-winpc-defender. com //Bitdefender
smitfraudfixtool. com //Norton
vundofixtool. com //Norton
http://www.antivirus360remover. com //Norton 360
http://www.av360removaltool. com //Norton 360
http://www.malwarebot. org
http://www.malwaree. com
http://www.remove-a360. com //Norton 360
http://www.remove-antivirus-360. com //Norton 360
http://www.remove-av360. com //Norton 360
http://www.remove-ie-security. com
http://www.remove-malware-defender. com //Bitdefender
http://www.remove-ms-antispyware. com //Microsoft Malware Cleaner
http://www.remove-personal-defender. com //Windows Defender
http://www.remove-spyware-guard. com
http://www.remove-spyware-protect. com
http://www.remove-spyware-protect-2009. com
http://www.remove-system-guard. com
http://www.remove-total-security. com
http://www.remove-ultra-antivir-2009. com
http://www.remove-ultra-antivirus-2009. com
http://www.remove-virus-alarm. com
http://www.remove-virus-melt. com
http://www.remove-winpc-defender. com //Windows Defender
http://www.vundofixtool. com //Norton
antivirus360remover. com
av360removaltool. com
malwarebot. org
malwaree. com
remove-a360. com
remove-antivirus-360. com
remove-av360. com
remove-ie-security. com
remove-malware-defender. com
remove-ms-antispyware. com
remove-personal-defender. com
remove-spyware-guard. com
remove-spyware-protect. com
remove-spyware-protect-2009. com
remove-system-guard. com
remove-total-security. com
remove-ultra-antivir-2009. com
remove-ultra-antivirus-2009. com
remove-virus-alarm. com
remove-virus-melt. com
remove-winpc-defender. com
vundofixtool. com
http://www.antivirus360remover. com
http://www.av360removaltool. com
http://www.malwarebot. org
http://www.malwaree. com
http://www.remove-a360. com
http://www.remove-antivirus-360. com
http://www.remove-av360. com
http://www.remove-ie-security. com
http://www.remove-malware-defender. com
http://www.remove-ms-antispyware. com
http://www.remove-personal-defender. com
http://www.remove-spyware-guard. com
http://www.remove-spyware-protect. com
http://www.remove-spyware-protect-2009. com
http://www.remove-system-guard. com
http://www.remove-total-security. com
http://www.remove-ultra-antivir-2009. com
http://www.remove-ultra-antivirus-2009. com
http://www.remove-virus-alarm. com
http://www.remove-virus-melt . com
http://www.remove-winpc-defender. com
http://www.vundofixtool. com


[B]SİTELERE KESİNLİKLE GİRMEYİN![/B]

Virüslerin izleri:

Kayıt Defteri Girdileri:
HKEY_CLASSES_ROOT\CLSID\{9d3cf193-58e5-40d5-ba60-233f4c216e37}
HKEY_CLASSES_ROOT\Installer\Features\
f284dd28157ebc94aae3eff9100a1adc
HKEY_CLASSES_ROOT\Installer\Products\
7f366b8b210207449ba43b6c2aa62267
HKEY_CLASSES_ROOT\Installer\Products\
f284dd28157ebc94aae3eff9100a1adc
HKEY_CLASSES_ROOT\Installer\UpgradeCodes\
e30ef325a397947459a1389deec03118
HKEY_CLASSES_ROOT\Installer\UpgradeCodes\
50e90ec4ec063d44bb935a0d02415732
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\
Installer\UpgradeCodes\e30ef325a397947459a1389deec03118
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\
Installer\UpgradeCodes\50e90ec4ec063d44bb935a0d02415732
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\
Explorer\ControlPanel\NameSpace\{999fd5ca-1031-4a9d-affa-a883a680b9b5}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\
Explorer\ControlPanel\NameSpace\{9d3cf193-58e5-40d5-ba60-233f4c216e37}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{b8b663f7-2012-4470-b94a-b3c6a26a2276} (Rogue.AntiVirus360Remover) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\
7f366b8b210207449ba43b6c2aa62267
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\f284dd28157ebc94aae3eff9100a1adc
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\f898caf690f3cf5429d6372bfb4ef661
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\f15e8893c87fb5a4282bae00788645e9
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6a38f305b3784444abb16213c075514e
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\477c1b608c0f73c4e9e5177e35cd3ada
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1f6841d7fd364e34191360085d1453b1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1f26a7a704abd8f4f8801f37167d691f
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\93de74a43267cfb4ca586db6f1f79964
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\aa02c0f5889834c42886c1a98ea53266
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\b575e3c1288dd9e4a83e9e064562cdc1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\d37f1f5d110c2ea4c85ec64e702394b9
HKEY_CURRENT_USER\SOFTWARE\AntiVirus360Remover
HKEY_CURRENT_USER\SOFTWARE\MalwareRemovalBot
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\c:\program files\malwareremovalbot\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\c:\documents and settings\all users\start menu\
programlar\malwareremovalbot\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\c:\windows\installer\{82dd482f-e751-49cb-aa3e-fe9f01a0a1cd}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\AntiVirus360Remover
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\c:\program files\antivirus360remover\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\c:\documents and settings\all users\start menu\programlar\antivirus360remover
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\c:\windows\installer\{b8b663f7-2012-4470-b94a-b3c6a26a2276}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MalwareRemovalBot
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0)

Klasörler:
C:\Program Files\MalwareRemovalBot
C:\Documents and Settings\Administrator\Application Data\
MalwareRemovalBot
C:\Documents and Settings\Administrator\Application Data\
MalwareRemovalBot\Log
C:\Documents and Settings\Administrator\Application Data\MalwareRemovalBot\Settings
C:\Program Files\\AntiVirus360Remover
C:\Documents and Settings\Administrator\Application Data\\AntiVirus360Remover
C:\Documents and Settings\Administrator\Application Data\\AntiVirus360Remover\Log
C:\Documents and Settings\Administrator\Application Data\\AntiVirus360Remover\Settings
C:\WINDOWS\Installer\{B8B663F7-2012-4470-B94A-B3C6A26A2276}

Dosyalar:
C:\Program Files\AntiVirus360Remover\SpyCleaner.dll
C:\Program Files\MalwareRemovalBot\SpyCleaner.dll
C:\Program Files\MalwareRemovalBot\DataBase.ref
C:\Program Files\MalwareRemovalBot\MalwareRemovalBot.exe
C:\Program Files\MalwareRemovalBot\MalwareRemovalBot.url
C:\Program Files\MalwareRemovalBot\TCL.dll
C:\Program Files\MalwareRemovalBot\vistaCPtasks.xml
C:\Program Files\MalwareRemovalBot\zlib.dll
C:\Program Files\\AntiVirus360Remover\AntiVirus360Remover.exe
C:\Program Files\\AntiVirus360Remover\AntiVirus360Remover.url
C:\Program Files\\AntiVirus360Remover\DataBase.ref
C:\Program Files\\AntiVirus360Remover\SpyCleaner.dll
C:\Program Files\\AntiVirus360Remover\TCL.dll
C:\Program Files\\AntiVirus360Remover\vistaCPtasks.xml
C:\Program Files\\AntiVirus360Remover\zlib.dll
C:\Documents and Settings\Administrator\Application Data\\AntiVirus360Remover\Log\2009 Apr 27 - 03_53_12 PM_624.log
C:\WINDOWS\Installer\{B8B663F7-2012-4470-B94A-B3C6A26A2276}\Icon.exe
C:\WINDOWS\Tasks\AntiVirus360Remover Scheduled Scan.job
C:\Documents and Settings\All Users\Desktop\AntiVirus360Remover.lnk
C:\Documents and Settings\All Users\Desktop\MalwareRemovalBot.lnk
C:\WINDOWS\Tasks\MalwareRemovalBot Scheduled Scan.job