Yeni Trj/Trjdropper Siteleri

**x3uqm4** · 28-04-2009 16:27

BU SİTELERE KESİNLİKLE GİRMEYİNİZ BÜTÜN BU SİTELERDE VİRÜS BULUNMAKTADIR!

» Bu siteler sahte yazılım içermektedir, sizin izniniz olmadan gizlice bilgisayarınıza trojan indirir bu reklam yazılımıdır kendi programlarının reklamını yapar ve kendi programlarıda virüslüdür.
Norton,Mcafee,Antivir,Bitdefender, Microsoft gibi şirketlerin kullandığı bazı araçların (veya yazılımlarının) isimleriyle kendilerini yaymaktadırlar.

antivirus360remover. com //Norton 360
av360removaltool. com //Norton 360
malwarebot. org
malwaree. com
remove-a360. com //Norton 360
remove-antivirus-360. com //Norton 360
remove-av360. com //Norton 360
remove-ie-security. com // Windows Defender
remove-malware-defender. com // Windows Defender
remove-ms-antispyware. com // Bitdefender
remove-personal-defender. com //Windows Defender, Bitdefender
remove-spyware-guard. com
remove-spyware-protect. com
remove-spyware-protect-2009. com
remove-system-guard. com //Mcafee
remove-total-security. com //Bitdefender
remove-ultra-antivir-2009. com //Avira AntiVir
remove-ultra-antivirus-2009. com // Avira AntiVir
remove-virus-alarm. com //BitDefender
remove-virus-melt. com // Microsoft Malware Cleaner(kötü amaçlı yazılım temizleme)
remove-winpc-defender. com //Bitdefender
smitfraudfixtool. com //Norton
vundofixtool. com //Norton
www.antivirus360remover. com //Norton 360
www.av360removaltool. com //Norton 360
www.malwarebot. org
www.malwaree. com
www.remove-a360. com //Norton 360
www.remove-antivirus-360. com //Norton 360
www.remove-av360. com //Norton 360
www.remove-ie-security. com
www.remove-malware-defender. com //Bitdefender
www.remove-ms-antispyware. com //Microsoft Malware Cleaner
www.remove-personal-defender. com //Windows Defender
www.remove-spyware-guard. com
www.remove-spyware-protect. com
www.remove-spyware-protect-2009. com
www.remove-system-guard. com
www.remove-total-security. com
www.remove-ultra-antivir-2009. com
www.remove-ultra-antivirus-2009. com
www.remove-virus-alarm. com
www.remove-virus-melt. com
www.remove-winpc-defender. com //Windows Defender
www.vundofixtool. com //Norton
antivirus360remover. com
av360removaltool. com
malwarebot. org
malwaree. com
remove-a360. com
remove-antivirus-360. com
remove-av360. com
remove-ie-security. com
remove-malware-defender. com
remove-ms-antispyware. com
remove-personal-defender. com
remove-spyware-guard. com
remove-spyware-protect. com
remove-spyware-protect-2009. com
remove-system-guard. com
remove-total-security. com
remove-ultra-antivir-2009. com
remove-ultra-antivirus-2009. com
remove-virus-alarm. com
remove-virus-melt. com
remove-winpc-defender. com
vundofixtool. com
www.antivirus360remover. com
www.av360removaltool. com
www.malwarebot. org
www.malwaree. com
www.remove-a360. com
www.remove-antivirus-360. com
www.remove-av360. com
www.remove-ie-security. com
www.remove-malware-defender. com
www.remove-ms-antispyware. com
www.remove-personal-defender. com
www.remove-spyware-guard. com
www.remove-spyware-protect. com
www.remove-spyware-protect-2009. com
www.remove-system-guard. com
www.remove-total-security. com
www.remove-ultra-antivir-2009. com
www.remove-ultra-antivirus-2009. com
www.remove-virus-alarm. com
www.remove-virus-melt . com
www.remove-winpc-defender. com
www.vundofixtool. com

SİTELERE KESİNLİKLE GİRMEYİN!

**x3uqm4** · 28-04-2009 16:30

Virüslerin izleri:

Kayıt Defteri Girdileri:
HKEY_CLASSES_ROOT\CLSID\{9d3cf193-58e5-40d5-ba60-233f4c216e37}
HKEY_CLASSES_ROOT\Installer\Features\
f284dd28157ebc94aae3eff9100a1adc
HKEY_CLASSES_ROOT\Installer\Products\
7f366b8b210207449ba43b6c2aa62267
HKEY_CLASSES_ROOT\Installer\Products\
f284dd28157ebc94aae3eff9100a1adc
HKEY_CLASSES_ROOT\Installer\UpgradeCodes\
e30ef325a397947459a1389deec03118
HKEY_CLASSES_ROOT\Installer\UpgradeCodes\
50e90ec4ec063d44bb935a0d02415732
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\
Installer\UpgradeCodes\e30ef325a397947459a1389deec 03118
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\
Installer\UpgradeCodes\50e90ec4ec063d44bb935a0d024 15732
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\
Explorer\ControlPanel\NameSpace\{999fd5ca-1031-4a9d-affa-a883a680b9b5}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\
Explorer\ControlPanel\NameSpace\{9d3cf193-58e5-40d5-ba60-233f4c216e37}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Uninstall\{b8b663f7-2012-4470-b94a-b3c6a26a2276} (Rogue.AntiVirus360Remover) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\UserData\S-1-5-18\Products\
7f366b8b210207449ba43b6c2aa62267
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\UserData\S-1-5-18\Products\f284dd28157ebc94aae3eff9100a1adc
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\UserData\S-1-5-18\Components\f898caf690f3cf5429d6372bfb4ef661
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\UserData\S-1-5-18\Components\f15e8893c87fb5a4282bae00788645e9
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\UserData\S-1-5-18\Components\6a38f305b3784444abb16213c075514e
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\UserData\S-1-5-18\Components\477c1b608c0f73c4e9e5177e35cd3ada
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\UserData\S-1-5-18\Components\1f6841d7fd364e34191360085d1453b1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\UserData\S-1-5-18\Components\1f26a7a704abd8f4f8801f37167d691f
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\UserData\S-1-5-18\Components\93de74a43267cfb4ca586db6f1f79964
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\UserData\S-1-5-18\Components\aa02c0f5889834c42886c1a98ea53266
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\UserData\S-1-5-18\Components\b575e3c1288dd9e4a83e9e064562cdc1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\UserData\S-1-5-18\Components\d37f1f5d110c2ea4c85ec64e702394b9
HKEY_CURRENT_USER\SOFTWARE\AntiVirus360Remover
HKEY_CURRENT_USER\SOFTWARE\MalwareRemovalBot
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\Folders\c:\program files\malwareremovalbot\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\Folders\c:\documents and settings\all users\start menu\
programlar\malwareremovalbot\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\Folders\c:\windows\installer\ {82dd482f-e751-49cb-aa3e-fe9f01a0a1cd}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run\AntiVirus360Remover
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\Folders\c:\program files\antivirus360remover\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\Folders\c:\documents and settings\all users\start menu\programlar\antivirus360remover
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Installer\Folders\c:\windows\installer\ {b8b663f7-2012-4470-b94a-b3c6a26a2276}
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run\MalwareRemovalBot
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0)

Klasörler:
C:\Program Files\MalwareRemovalBot
C:\Documents and Settings\Administrator\Application Data\
MalwareRemovalBot
C:\Documents and Settings\Administrator\Application Data\
MalwareRemovalBot\Log
C:\Documents and Settings\Administrator\Application Data\MalwareRemovalBot\Settings
C:\Program Files\\AntiVirus360Remover
C:\Documents and Settings\Administrator\Application Data\\AntiVirus360Remover
C:\Documents and Settings\Administrator\Application Data\\AntiVirus360Remover\Log
C:\Documents and Settings\Administrator\Application Data\\AntiVirus360Remover\Settings
C:\WINDOWS\Installer\{B8B663F7-2012-4470-B94A-B3C6A26A2276}

Dosyalar:
C:\Program Files\AntiVirus360Remover\SpyCleaner.dll
C:\Program Files\MalwareRemovalBot\SpyCleaner.dll
C:\Program Files\MalwareRemovalBot\DataBase.ref
C:\Program Files\MalwareRemovalBot\MalwareRemovalBot.exe
C:\Program Files\MalwareRemovalBot\MalwareRemovalBot.url
C:\Program Files\MalwareRemovalBot\TCL.dll
C:\Program Files\MalwareRemovalBot\vistaCPtasks.xml
C:\Program Files\MalwareRemovalBot\zlib.dll
C:\Program Files\\AntiVirus360Remover\AntiVirus360Remover.exe
C:\Program Files\\AntiVirus360Remover\AntiVirus360Remover.url
C:\Program Files\\AntiVirus360Remover\DataBase.ref
C:\Program Files\\AntiVirus360Remover\SpyCleaner.dll
C:\Program Files\\AntiVirus360Remover\TCL.dll
C:\Program Files\\AntiVirus360Remover\vistaCPtasks.xml
C:\Program Files\\AntiVirus360Remover\zlib.dll
C:\Documents and Settings\Administrator\Application Data\\AntiVirus360Remover\Log\2009 Apr 27 - 03_53_12 PM_624.log
C:\WINDOWS\Installer\{B8B663F7-2012-4470-B94A-B3C6A26A2276}\Icon.exe
C:\WINDOWS\Tasks\AntiVirus360Remover Scheduled Scan.job
C:\Documents and Settings\All Users\Desktop\AntiVirus360Remover.lnk
C:\Documents and Settings\All Users\Desktop\MalwareRemovalBot.lnk
C:\WINDOWS\Tasks\MalwareRemovalBot Scheduled Scan.job

LinkBack

Seçenekler

Görüntü

Yeni Trj/Trjdropper Siteleri

Konu Bilgileri

Users Browsing this Thread

Benzer Konular

Yeni nesil fotoğraf siteleri yüz tanıma sistemlerini kullanıyor

f1 pilotları ve siteleri

ToptList siteleri

FX siteleri

Flash Siteleri

Yer imleri

Yer imleri

Yetkileriniz