Hilfe - Suche - Mitglieder - Kalender
Vollansicht: Was ist LanzarL 2007 oder BorraT2006TMP
Rokop Security > Security > HijackThis-Logs
ackermann
16.02.2007, 15:49
Spaßeshalber hab ich mal einen HiJackthis Log gemacht und sieheda ich weiß nicht, was es mit LanzarL2007 auf sich hat, im automatischen Auswertungstool von Hijackthis auf deren Onlinepage ist das auch unbekannt. Ebenso wie BorraT2006TMP
Voyager
16.02.2007, 15:56
Sieht aus wie win2000 ?
Bei den 2 bemängelten Einträgen ist die Wahrscheinlichkeit allerdings hoch das es sich um Malware handeln könnte.
ackermann
16.02.2007, 16:13
Danke.

Scheint allerdings geklärt. Hier die Textdatei, die in dem Bezeichnis bezüglich LANZARL2007 bemängelt wurde:

Ich habe Panda Antivirus als Testversion installiert und hatte schon gemerkt, dass ich vor der Panda Installation auf mein ClamWin hingewiesen wurde, das ich vorher gezwungen war, zu deinstallieren. Daher kommt schonnmal der Lanzar Eintrag.

Hier so sieht die bemängelte INI aus, die in meinem TEMP Ordner lag: Die ist von Panda Antivir und nachdem ich Panda deinstalliert hatte, wurde die nicht mit deinstalliert:

Die Datei heisst: AVDetect.ini

[General]
NumeroAntivirus = 116
Version = 2.08

[c]
**************************************************************************
* *
* 01-Familia Symantec *
* *
* Norton 360 *
* Symantec Corporate Edition 10.2.224 for Windows Vista 32 bits *
* Symantec Corporate Edition versiones 10,9,8.x,7.5(9x,NT),7.0(9x,NT) *
* Norton SystemWorks 2006 Premier *
* Norton SystemWorks 2006,2005,2004,2003,2002 *
* Norton Internet Security 2007,2006,2005,2004,2003,2002 *
* Norton Antivirus 2007,2006,2005,2004,2003,2002,2001,2000,5.x *
* *
**************************************************************************

[Antivirus1]
Nombre = Norton Antivirus

ChecksNumber = 2

Check1_Type = RegValue
Check1_Param1 =
HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\InstalledApps\N360;
HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec AntiVirus\Install\7.50\InstallDir;
HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\InstalledApps\NAV;
HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\InstalledApps\NAVNT;
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NAVAP\ImagePath;
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\VxD\NAVAP\StaticVxD;
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\VxD\SAVRT\StaticVxD
Check1_Param2 = REG_SZ
Check1_Param3 =

Check2_Type = RegValue
Check2_Param1 =
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetupTemp.{2D617065-1C52-4240-B5BC-C0AE12157777}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6C28BDA4-6D99-4DD0-9F22-6A90A445E982}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{5AA2CD16-706F-41f3-87C5-2B5A031F2B3B}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{830D8CBD-C668-49e2-A969-C2C2106332E0}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248E093-5288-4CA9-B3AB-11A675FEA1F9}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{848AC794-8B81-440A-81AE-6474337DB527}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0EFC6259-3AD8-4CD2-BC57-D4937AF5CC0E}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{BD12EB47-DBDF-11D3-BEEA-00A0CC272509}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Norton AntiVirus Corporate Edition 7.0 for Windows NT\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Norton AntiVirus Corporate Edition for Windows 7.0\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Norton AntiVirus Corporate Edition\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{71E7B3F5-CFAF-4C1E-B494-528E28707937}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{B9807C3D-B3DD-41b7-8321-53DDB3A3A888}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{43C3D832-AC96-463A-2003-1B8D1BFA252F}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{A93C9E60-29B6-49da-BA21-F70AC6AADE20}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{AED74EFF-83ED-4ed6-8413-285C24BCEB6E}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AFD2C5B5-BF78-47B6-9569-755448C0D0EE}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{AED74EFF-83ED-4ed6-8413-285C24BCEB6E}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B7C61755-DB48-4003-948F-3D34DB8EAF69}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E36E8951-3C0E-4615-A912-948C1609D659}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{91AA4B1F-B918-4e0b-A304-F8D4EC5D7726}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E47EE8FB-ACC0-4608-859C-4E2851B18A6A}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{71D03DD3-C6D9-4503-A1CC-FBA576F6CFE3}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{C6F5B6CF-609C-428E-876F-CA83176C021B}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{C6B28661-7910-442E-ADDD-72EAA8395380}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{47D5D869-FE57-4F2F-A358-83CFAA7B4968}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4CFD624C-B66C-42AA-A47E-21A78D91E06C}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{47D5D869-FE57-4F2F-A358-83CFAA7B4968}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{F4C9398F-B6C6-4A4B-8B6D-795CD86F915D}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{84555E03-F08E-4B9C-BE83-9D5E77190E89}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EDCD4CE3-DE92-49A9-87F9-FE09B2FBA16C}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{68AE158E-38F9-4027-A757-A82B00E45D5C}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3075C5C3-0807-4924-AF8F-FF27052C12AE}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Norton AntiVirus\UninstallString
Check2_Param2 = REG_SZ
Check2_Param3 =

RegVersion =
RegNombre =
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetupTemp.{2D617065-1C52-4240-B5BC-C0AE12157777}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6C28BDA4-6D99-4DD0-9F22-6A90A445E982}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{5AA2CD16-706F-41f3-87C5-2B5A031F2B3B}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{830D8CBD-C668-49e2-A969-C2C2106332E0}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248E093-5288-4CA9-B3AB-11A675FEA1F9}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{848AC794-8B81-440A-81AE-6474337DB527}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0EFC6259-3AD8-4CD2-BC57-D4937AF5CC0E}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{BD12EB47-DBDF-11D3-BEEA-00A0CC272509}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Norton AntiVirus Corporate Edition 7.0 for Windows NT\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Norton AntiVirus Corporate Edition for Windows 7.0\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Norton AntiVirus Corporate Edition\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{71E7B3F5-CFAF-4C1E-B494-528E28707937}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{B9807C3D-B3DD-41b7-8321-53DDB3A3A888}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{43C3D832-AC96-463A-2003-1B8D1BFA252F}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{A93C9E60-29B6-49da-BA21-F70AC6AADE20}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{AED74EFF-83ED-4ed6-8413-285C24BCEB6E}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AFD2C5B5-BF78-47B6-9569-755448C0D0EE}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{AED74EFF-83ED-4ed6-8413-285C24BCEB6E}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B7C61755-DB48-4003-948F-3D34DB8EAF69}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E36E8951-3C0E-4615-A912-948C1609D659}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{91AA4B1F-B918-4e0b-A304-F8D4EC5D7726}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E47EE8FB-ACC0-4608-859C-4E2851B18A6A}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{71D03DD3-C6D9-4503-A1CC-FBA576F6CFE3}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{C6F5B6CF-609C-428E-876F-CA83176C021B}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{C6B28661-7910-442E-ADDD-72EAA8395380}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{47D5D869-FE57-4F2F-A358-83CFAA7B4968}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4CFD624C-B66C-42AA-A47E-21A78D91E06C}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{47D5D869-FE57-4F2F-A358-83CFAA7B4968}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{F4C9398F-B6C6-4A4B-8B6D-795CD86F915D}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{84555E03-F08E-4B9C-BE83-9D5E77190E89}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EDCD4CE3-DE92-49A9-87F9-FE09B2FBA16C}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{68AE158E-38F9-4027-A757-A82B00E45D5C}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3075C5C3-0807-4924-AF8F-FF27052C12AE}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Norton AntiVirus\DisplayName
RegUninst =
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetupTemp.{2D617065-1C52-4240-B5BC-C0AE12157777}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{6C28BDA4-6D99-4DD0-9F22-6A90A445E982}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{5AA2CD16-706F-41f3-87C5-2B5A031F2B3B}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{830D8CBD-C668-49e2-A969-C2C2106332E0}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3248E093-5288-4CA9-B3AB-11A675FEA1F9}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{848AC794-8B81-440A-81AE-6474337DB527}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0EFC6259-3AD8-4CD2-BC57-D4937AF5CC0E}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{BD12EB47-DBDF-11D3-BEEA-00A0CC272509}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Norton AntiVirus Corporate Edition 7.0 for Windows NT\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Norton AntiVirus Corporate Edition for Windows 7.0\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Norton AntiVirus Corporate Edition\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{71E7B3F5-CFAF-4C1E-B494-528E28707937}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{B9807C3D-B3DD-41b7-8321-53DDB3A3A888}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{43C3D832-AC96-463A-2003-1B8D1BFA252F}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{A93C9E60-29B6-49da-BA21-F70AC6AADE20}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{AED74EFF-83ED-4ed6-8413-285C24BCEB6E}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AFD2C5B5-BF78-47B6-9569-755448C0D0EE}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{AED74EFF-83ED-4ed6-8413-285C24BCEB6E}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B7C61755-DB48-4003-948F-3D34DB8EAF69}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E36E8951-3C0E-4615-A912-948C1609D659}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{91AA4B1F-B918-4e0b-A304-F8D4EC5D7726}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E47EE8FB-ACC0-4608-859C-4E2851B18A6A}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{71D03DD3-C6D9-4503-A1CC-FBA576F6CFE3}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{C6F5B6CF-609C-428E-876F-CA83176C021B}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{C6B28661-7910-442E-ADDD-72EAA8395380}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SymSetup.{47D5D869-FE57-4F2F-A358-83CFAA7B4968}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4CFD624C-B66C-42AA-A47E-21A78D91E06C}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{47D5D869-FE57-4F2F-A358-83CFAA7B4968}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{F4C9398F-B6C6-4A4B-8B6D-795CD86F915D}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{84555E03-F08E-4B9C-BE83-9D5E77190E89}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{EDCD4CE3-DE92-49A9-87F9-FE09B2FBA16C}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{68AE158E-38F9-4027-A757-A82B00E45D5C}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3075C5C3-0807-4924-AF8F-FF27052C12AE}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Norton AntiVirus\UninstallString

[Antivirus2]

[Antivirus3]

[Antivirus4]

[Antivirus5]

[Antivirus6]

[Antivirus7]

[Antivirus8]

[Antivirus9]

[c]
**************************************************************************
* Fin Familia Symantec *
**************************************************************************


[C]
**************************************************************************
* *
* 02-Familia McAfee *
* *
* McAfee VirusScan 8.0i Enterprise Edition *
* McAfee VirusScan 7.X Enterprise Edition *
* *
* McAfee Managed VirusScan *
* *
* McAfee AntiSpyware v 2.x 2006 *
* McAfee Antispyware v 1.x 2005 *
* McAfee AntiSpam v 7.x 2006 *
* McAfee AntiSpam v 6.x 2005 *
* McAfee Personal Firewall Plus 2006 v.7.0 *
* McAfee Personal Firewall Plus 2005 v 6.x *
* McAfee SpamKiller 6.x 2005 *
* McAfee Quickclean 5.x 2005 *
* *
* McAfee Internet Security 2007 9.0 (por el McAfee Security Center) *
* McAfee Internet Security 2006 8.0 *
* McAfee Internet Security 2004 6.0 *
* McAfee Internet Security 2003 5.0 *
* McAfee Internet Security 2002 4.0 *
* *
* McAfee Security Center de McAfee Total Protection (Beta producto 2007)*
* McAfee VirusScan 11.X 2007 (por el McAfee Security Center) *
* McAfee VirusScan 10.X 2006 *
* McAfee VirusScan 9.X 2005 *
* McAfee VirusScan 8.X 2004 Home & Professional editions *
* McAfee VirusScan 7.X 2003 Home & Professional editions *
* McAfee VirusScan 6.X 2002 Home & Professional editions *
* McAfee VirusScan 5.2.0 *
* McAfee VirusScan 5.1.0 *
* McAfee VirusScan 5.0.0 *
* McAfee VirusScan 4.0.3 *
* McAfee VirusScan 4.0.2 *
* McAfee VirusScan 4.0.1 *
* McAfee VirusScan 4.5.1 *
* McAfee VirusScan 3.x *
* McAfee VirusScan for w98-95 version *
* McAfee NetShield v4.5.0 *
* McAfee NetShield v4.0.2 *
* McAfee NetShield v4.0.3 *
* Dr Solomon's NetShield v4.0.3 *
* Dr Solomon's Antivirus 8.5.0 *
* Dr Solomon's Antivirus 7.77.7 95,NT *
* Dr Solomon's Antivirus 4.0.3 NT *
* Dr Solomon´s Antivirus 4.0.2 *
* Dr Solomon´s Antivirus 4.0.1 *
* Dr Solomon's Anti-Virus Toolkit version 7.84 *
* Dr Solomon's Anti-Virus Toolkit version 7.94 *
* Dr Solomon's Anti-Virus Toolkit version 8.0.4 *
* *
* VirusProtect 1.8.1 de Content Watch *
* *
**************************************************************************

********************McAfee Virus Scan********************
[Antivirus10]
Nombre = McAfee Anti-Virus

ChecksNumber = 1

Check1_Type = RegValue
Check1_Param1 =
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\NetShield NT\DisplayName\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{DBDCAA19-597C-11D3-89BB-006008C7D0F2}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{63CB7620-B423-4BF1-A7E4-75BB8B64740E}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0E17F984-880D-11D3-82CA-00C04F656306}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\McAfee VirusScan\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VirusScan NT\UninstallString;
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\McAfee VirusScan\UninstallString;
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\VirusScan\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Dr Solomon's NetShield NT\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Dr Solomon's AVTK\UninstallString;
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dr Solomon's VirusScan NT\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Dr Solomon's Software\Anti-Virus\UninstallString;
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dr Solomon's VirusScan\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{63CB7620-B423-4BF1-A7E4-75BB8B64740E}\UninstallString
Check1_Param2 = REG_SZ
Check1_Param3 =

RegVersion =
RegNombre =
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\NetShield NT\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{DBDCAA19-597C-11D3-89BB-006008C7D0F2}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0E17F984-880D-11D3-82CA-00C04F656306}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\McAfee VirusScan\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VirusScan NT\DisplayName;
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\McAfee VirusScan\DisplayName;
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\VirusScan\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Dr Solomon's NetShield NT\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Dr Solomon's AVTK\DisplayName;
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dr Solomon's VirusScan NT\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Dr Solomon's Software\Anti-Virus\DisplayName;
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dr Solomon's VirusScan\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{63CB7620-B423-4BF1-A7E4-75BB8B64740E}\DisplayName
RegUninst =
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\NetShield NT\DisplayName\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{DBDCAA19-597C-11D3-89BB-006008C7D0F2}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{63CB7620-B423-4BF1-A7E4-75BB8B64740E}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0E17F984-880D-11D3-82CA-00C04F656306}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\McAfee VirusScan\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VirusScan NT\UninstallString;
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\McAfee VirusScan\UninstallString;
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\VirusScan\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Dr Solomon's NetShield NT\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Dr Solomon's AVTK\UninstallString;
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dr Solomon's VirusScan NT\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Dr Solomon's Software\Anti-Virus\UninstallString;
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dr Solomon's VirusScan\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{63CB7620-B423-4BF1-A7E4-75BB8B64740E}\UninstallString


[Antivirus11]
Nombre = McAfee VirusScan

ChecksNumber = 2

Check1_Type = RegValue
Check1_Param1 =
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NaiFiltr\ImagePath;
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NaiAvFilter1\ImagePath;
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\VxD\VshInit\StaticVxd;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\VirusScan Online;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices\McAfeeVirusScanService;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices\McShld9x;
HKEY_LOCAL_MACHINE\SOFTWARE\McAfee.com\Virusscan Online\Install Dir;
HKEY_LOCAL_MACHINE\SOFTWARE\McAfee\VirusScan\CurrentVersion\Location
Check1_Param2 = REG_SZ
Check1_Param3 =

Check2_Type = RegValue
Check2_Param1 =
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\McAfee Uninstall Utility\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{56D45213-8AD9-46C5-A393-EB21A760DD43}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99F690A2-158D-11D1-A116-444553540000}\UninstallString;
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5DF3D1BB-894E-4DCD-8275-159AC9829B43}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{59224777-298D-4E9C-9AEB-4A91BDA01B27}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{56D45213-8AD9-46C5-A393-EB21A760DD43}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{DCB2928E-61F6-11D6-B259-00C04FF4B435}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E4DC62CE-5F95-11D6-B254-00C04FF4B435}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{87AEFD84-BC0D-11D4-B885-00508B022A51}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{63CB7620-B423-4BF1-A7E4-75BB8B64740E}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5B01817B-53B2-420D-8EF8-FD5AB339E300}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1912F734-6580-4620-8AFD-ECCCEA19CDE2}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VirusScan Online\UninstallString
Check2_Param2 = REG_SZ
Check2_Param3 =

RegVersion =
RegNombre =
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{56D45213-8AD9-46C5-A393-EB21A760DD43}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99F690A2-158D-11D1-A116-444553540000}\DisplayName;
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5DF3D1BB-894E-4DCD-8275-159AC9829B43}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{59224777-298D-4E9C-9AEB-4A91BDA01B27}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{56D45213-8AD9-46C5-A393-EB21A760DD43}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{DCB2928E-61F6-11D6-B259-00C04FF4B435}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E4DC62CE-5F95-11D6-B254-00C04FF4B435}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{87AEFD84-BC0D-11D4-B885-00508B022A51}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{63CB7620-B423-4BF1-A7E4-75BB8B64740E}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5B01817B-53B2-420D-8EF8-FD5AB339E300}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1912F734-6580-4620-8AFD-ECCCEA19CDE2}\DisplayName;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VirusScan Online\DisplayName
RegUninst =
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\McAfee Uninstall Utility\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{56D45213-8AD9-46C5-A393-EB21A760DD43}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99F690A2-158D-11D1-A116-444553540000}\UninstallString;
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5DF3D1BB-894E-4DCD-8275-159AC9829B43}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{59224777-298D-4E9C-9AEB-4A91BDA01B27}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{56D45213-8AD9-46C5-A393-EB21A760DD43}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{DCB2928E-61F6-11D6-B259-00C04FF4B435}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{E4DC62CE-5F95-11D6-B254-00C04FF4B435}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{87AEFD84-BC0D-11D4-B885-00508B022A51}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{63CB7620-B423-4BF1-A7E4-75BB8B64740E}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5B01817B-53B2-420D-8EF8-FD5AB339E300}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1912F734-6580-4620-8AFD-ECCCEA19CDE2}\UninstallString;
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VirusScan Online\UninstallString


[Antivirus12]

[Antivirus13]


[c]
********************FIN McAfee Virus Scan*********************

...
...
...

und so weiter





Der andere Kram kam auch von PANDA - habe es zwar deinstalliert, aber scheint eine Menge Schrott im TEMP Verzeichnis hinterlassen zu haben.

Die andere Datei kam auch von Panda.

Voyager
16.02.2007, 16:13
Irgendwie verstehe ich dich nicht , der Lanzar Autorun-Eintrag soll irgendwas mit Norton zu tun haben !? Du hast doch da garkein Norton drauf , lösche/fixe doch einfach diese Einträge oder was willst du denn damit machen !?
Der Run Eintrag sieht nach einer offenen Installation aus , nur wenn du noch eine offene Installation ausstehen hättest würdest du hier deswegen nicht angerannt kommen .
ackermann
16.02.2007, 16:21
Nein, ich hatte Panda drauf.

Panda sucht aber nach Norton, McAfee, sogar nach Clamwin und zwingt vor Panda Installation, alles andere zu deinstallieren - was ja auch sinnvoll ist - also alle anderen möglichen Internetprogramme, man kann die Panda Installation garnicht weiter durchführen, wenn man vorher nicht alles deinstalliert.

ClamWin als reiner Demand scanner durfte auch nicht draufbleiben. Panda ist mittlerweile deinstalliert.


Installation ist natürlich keine offen.

Die Temp Ordner hab ich gelöscht, neu gestartet und mal gegoogled. Alle per google gefundenen hijackthis Logs, die sowas aufwiesen, hatten Panda installiert oder zuvor mal installiert. Scheint also daran zu hängen. Ich will mal schauen, ob ich das Phänomen nochmal erzeugen kann, wenn ich Panda nochmal installiere.

Vorher scanne ich nochmal mit Bitdefender durch
ackermann
16.02.2007, 16:31
Wie schon vermutet, hab ich umsonst eine Wolke veranstaltet. Kam alles von Panda - der ganze Müll.

Hatte ich vorher ein sauberes System ohne jegliche Hijackthis Fragezeichen kamen nach der Panda Installation auf einmal die ganzen Dinger auf.....fragt man sich tatsächlich ob man besser mit oder ohne bestellt ist.
Dieses ist eine vereinfachte Darstellung unseres Foreninhaltes. Um die detaillierte Vollansicht mit Formatierung und Bildern zu betrachten, bitte hier klicken.
Invision Power Board © 2001-2012 Invision Power Services, Inc.