ANVIR.EXE

AnVir Task Manager Free No Comments

ANVIR.EXE

The file AnVir.exe has the internal name: AnVir.exe. The file AnVir.exe description is: AnVir Task Manager Free. The file AnVir.exe is related to the AnVir Software. The version of the file AnVir.exe: 7.0.4.0. The AnVir.exe is a part of software product: AnVir Task Manager Free LegalCopyright: Copyright (c) 2000-2012. AnVir Software. Comments: Advanced processes and startup manager with anti-trojan and anti-spyware functions..
The file AnVir.exe size is: 3 018 872 bytes.
Default location: %Program Files%\AnVir Task Manager Free\AnVir.exe
AnVir.exe MD5: FBC8A0CA3E05D7121D63FF7F6301A47D
AnVir.exe SHA1: 501D8A51 247DF83D AC4538F6 15A6C66A 896D34DB

Registry strings in the AnVir.exe:

MACHINE\SYSTEM\CurrentControlSet\Services\
O4 – HKCU\..\Run:
O4 – HKLM\..\Run:
Software\AnVir
Software\AnVir\ResizeWindow
SOFTWARE\AnVir\RunAsService
Software\Classes\
Software\Classes\.bat
Software\Classes\.cmd
Software\Classes\.com
Software\Classes\.exe
Software\Classes\.pif
Software\Classes\batfile\Shell\Open\Command
Software\Classes\CLSID\
Software\Classes\cmdfile\Shell\Open\Command
Software\Classes\comfile\Shell\Open\Command
Software\Classes\exefile\Shell\Open\Command
Software\Classes\Filter
Software\Classes\piffile\Shell\Open\Command
Software\Classes\Protocols\Filter
Software\Classes\Protocols\Handler
Software\Classes\Wow6432Node\CLSID\
Software\Ghisler\Total Commander
Software\Microsoft\
Software\Microsoft\Active Setup\Installed Components
Software\Microsoft\Command Processor
Software\Microsoft\Ctf\LangBarAddin
Software\Microsoft\Internet Explorer\Desktop\Components
Software\Microsoft\Internet Explorer\Explorer Bars\
Software\Microsoft\Internet Explorer\Extensions\
Software\Microsoft\Internet Explorer\Main
Software\Microsoft\Internet Explorer\Settings
Software\Microsoft\Internet Explorer\Toolbar
Software\Microsoft\Internet Explorer\URLSearchHooks\
Software\Microsoft\Rpc\Extensions
Software\Microsoft\Windows CE Services\AutoStartOnConnect
Software\Microsoft\Windows CE Services\AutoStartOnDisconnect
Software\Microsoft\Windows NT\CurrentVersion\
Software\Microsoft\Windows NT\CurrentVersion\AeDebug
Software\Microsoft\Windows NT\CurrentVersion\Drivers32
Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options
Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\taskmgr.exe
software\microsoft\windows nt\currentversion\perflib\009
Software\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\Software\Microsoft\Windows\CurrentVersion\Run
Software\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\Software\Microsoft\Windows\CurrentVersion\RunOnce
Software\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\Software\Microsoft\Windows\CurrentVersion\RunOnceEx
Software\Microsoft\Windows NT\CurrentVersion\Windows
Software\Microsoft\Windows NT\CurrentVersion\Winlogon
Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify
Software\Microsoft\Windows\CurrentVersion\
Software\Microsoft\Windows\CurrentVersion\Authentication\Credential Provider Filters
Software\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers
Software\Microsoft\Windows\CurrentVersion\Authentication\PLAP Providers
Software\Microsoft\Windows\CurrentVersion\BITS
Software\Microsoft\Windows\CurrentVersion\Explorer\
Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers
Software\Microsoft\Windows\CurrentVersion\Group Policy\Scripts\
Software\Microsoft\Windows\CurrentVersion\Group Policy\State\Machine\Scripts\
Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
Software\Microsoft\Windows\CurrentVersion\policies\system
Software\Microsoft\Windows\CurrentVersion\Run
Software\Microsoft\Windows\CurrentVersion\RunOnce
Software\Microsoft\Windows\CurrentVersion\RunOnceEx
Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Software\Microsoft\Windows\CurrentVersion\Uninstall
Software\Policies\Microsoft\Windows\Control Panel\Desktop
Software\Policies\Microsoft\Windows\System\Scripts\
Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers
Software\Wow6432Node\Classes\*\ShellEx\PropertySheetHandlers
Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers
Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\DragDropHandlers
Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\PropertySheetHandlers
Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers
Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers
Software\Wow6432Node\Classes\Directory\ShellEx\CopyHookHandlers
Software\Wow6432Node\Classes\Directory\ShellEx\DragDropHandlers
Software\Wow6432Node\Classes\Directory\ShellEx\PropertySheetHandlers
Software\Wow6432Node\Classes\Folder\ShellEx\ColumnHandlers
Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers
Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers
Software\Wow6432Node\Classes\Folder\ShellEx\ExtShellFolderViews
Software\Wow6432Node\Classes\Folder\ShellEx\PropertySheetHandlers
Software\Wow6432Node\Microsoft\
System\CurrentControlSet\Control
System\CurrentControlSet\Control\BootVerificationProgram
System\CurrentControlSet\Control\Lsa
SYSTEM\CurrentControlSet\Control\Network\
System\CurrentControlSet\Control\NetworkProvider\Order
System\CurrentControlSet\Control\Print\Monitors
System\CurrentControlSet\Control\SafeBoot
System\CurrentControlSet\Control\SecurityProviders
System\CurrentControlSet\Control\Session Manager
System\CurrentControlSet\Control\Session Manager\AppCertDlls
System\CurrentControlSet\Control\Session Manager\KnownDlls
System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd
System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp
System\CurrentControlSet\Control\WOW
SYSTEM\CurrentControlSet\Services
SYSTEM\CurrentControlSet\Services\
SYSTEM\CurrentControlSet\Services\PerfDisk\Performance
System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace
System\CurrentControlSet\Services\WinSock2\Parameters\Protocol

The ANVIR.EXE related files:
adsldpc.dll Advapi32.dll AnvirHook65.dll comctl32.dll COMDLG32.dll CRYPT32.dll dnsapi.dll GDI32.dll hnetcfg.dll hookdll.dll Iphlpapi.dll Kann Fehler mit dem Treiber tcpip.sys verursachen Kernel32.dll May cause errors in network driver tcpip.sys mdnsnsp.dll mfc71.dll msafd.dll mshtml.dll Msi.dll mswsock.dll ng tcpip.sys ntdll.dll ole32.dll OLEAUT32.dll psapi.dll rasadhlp.dll rasapi32.dll rasman.dll RICHED20.DLL RICHED32.DLL ROIntegration.dll shell32.dll shell32.dll,Control SHLWAPI.dll Tapi32.dll urlmon.dll user32.dll UxTheme.dll vdmdbg.dll VERSION.dll wininet.dll winotify.dll ws2help.dll wshtcpip.dll wsock32.dll

I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:

Download UnHackMe
Fully Functional 30-day Trial. No credit is required. Reviews. EULA. Privacy Policy.

Leave a Reply

Privacy Policy      Terms and Conditions

Thank you for theme by IdeaBox       Credits: Thank you to www.icons8.com for Icons and Images