VirusSchlacht

Description:	Rogue Security Program
Risk Level:	Medium
Date of First Occurence:	Thursday, April 24, 2008
Software Developer:	(unknown)
Brief Info:	Rogue/Suspect Anti-Spyware Product "Rogue/Suspect" means that these products are of unknown, questionable, or dubious value as anti-spyware protection.
Removal:	This threat can be removed using "Spyware Terminator"

RIMUOVI SPYWARE »

Geographical Distribution of Threat "VirusSchlacht"

Threat Info

View All

Detected Items

Detected Files: %PROGRAMFILES%\VirusSchlacht\Up\gup.exe MD5: 586D833478111A1F6D5492F2FDF1F4F4 Size:716800 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\UNPEPACK.DLL MD5: 1E6250CE35D1F6F3AA5456D02967C0E9 Size:69211 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\UNPACKS2.DLL MD5: 5ECBB6C3B335F05B857AE0C56484B279 Size:73091 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\UNPACKS.DLL MD5: E17370296861D8A15F9C6BDD4B2C2DF0 Size:373419 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\UNPACK.DLL MD5: 4ECBF71A0EE92AD5133FE38F2DA1EA57 Size:331275 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\UNMIME.DLL MD5: DD1F43DB6001736E5F35C99EDFE4066F Size:44202 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\unamscan.dll MD5: DF6958E9BA1D73E7AEF47EF6C46281DF Size:47616 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\UNADBX.DLL MD5: 3F742797F3A89980159019FEB17A424B Size:286720 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\UNACPU.DLL MD5: 46B810693C6DB63897949566248281FD Size:9728 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\SCANWIN1.DLL MD5: DF537DE9898F69F7A4D3305F9A179991 Size:836351 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\SCANTROJ.DLL MD5: 8171CD21864D286810BAC74950E18B0C Size:1045102 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\SCANTOOL.DLL MD5: A91DDAE3949F2D954B1E435A68D7624A Size:114320 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\SCANSCR.DLL MD5: AFBBDCB570928407BD8F8602BA54859B Size:276532 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\SCANOTHR.DLL MD5: 0D0ED5F72760C6A073B48417078B1368 Size:40707 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\SCANMCR1.DLL MD5: A652CF6D85403A8477DF041F35BE9023 Size:200849 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\SCANFUNC.DLL MD5: 636E5D27C3798E12A97F5D8B37620F98 Size:63004 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\SCANEMUL.DLL MD5: 8898D6F8672D55910871426B87A61A1A Size:28301 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\SCANDOS1.DLL MD5: 4E735D206C4041BCBBE31A9B50EA6F86 Size:1265683 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\SCANDLDR.DLL MD5: 84482D14152A9202C605D61D77809A7D Size:1123285 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\SCANBCDR.DLL MD5: 4001F8BD5D48EC30B61479BFAE91E157 Size:913355 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\SCANADWR.DLL MD5: F9C8302F2C505740820A88581D29EFAB Size:246310 %PROGRAMFILES%\VirusSchlacht\Engines\plugins\BORLNDMM.DLL MD5: 232966BF4E5F15491481AC3958131A21 Size:22528 %PROGRAMFILES%\VirusSchlacht\sqlite3.dll MD5: 55012ADD096C9E6928AC096AEFFF253E Size:247232 %PROGRAMFILES%\VirusSchlacht\reload.exe MD5: 799E30F5899BC7D2215B610F32FCE71E Size:53248 %PROGRAMFILES%\VirusSchlacht\ptask.exe MD5: E35E5BE4802B40F2BCA28BF6FBFF2C29 Size:28672 %PROGRAMFILES%\VirusSchlacht\dhlp.dll MD5: FF13F4141C13D2CE139A017132BC3751 Size:196608 %PROGRAMFILES%\VirusSchlacht\unins000.exe MD5: 3D72E71AA528FC9607F62324DBD7763A Size:671274 %PROGRAMFILES%\VirusSchlacht\Tools\pblock.dll MD5: 2546D9523D263887C19783E75E43EE47 Size:225792 %PROGRAMFILES%\VirusSchlacht\scnkrnl.dll MD5: 0EB39EB635EFC98056FCC0224D7EFC00 Size:569344 %PROGRAMFILES%\VirusSchlacht\pgs.exe MD5: F4F49DEED7AA76B93C48C772C4962CBB Size:2113536 %PROGRAMFILES%\VirusSchlacht\Activate.exe MD5: 1A9090C0798F89795D653F1065BE81F7 Size:152064
Detected Files with variable Filenames: MD5: B64B59ED9A56FAC43700B347CD86D8B5 Size: 2048 K:\Program Files\TrojansFilter\atf.exe %PROGRAMFILES%\TrustedProtection\atf.exe %PROGRAMFILES%\VirusAlarma\atf.exe %USERDOCUMENTS%\Ben's stuff\My DOCS\AntiWorm2008\atf.exe %PROGRAMFILES%\AVSYSTEMCARE\atf.exe %PROGRAMFILES%\AntivirusPCSuite\atf.exe %SystemDiskRoot%\System Volume Information\_restore{716B153C-DD14-4318-BB5B-DF2EC09C7150}\RP663\A0086278.exe MD5: 4D1C195791899BD7CD3C66440BA5D72E Size: 40960 %PROGRAMFILES%\AVSYSTEMCARE\Activate.exe %PROGRAMFILES%\TrustedProtection\Activate.exe %PROGRAMFILES%\VirusAlarma\Activate.exe %PROGRAMFILES%\AntivirusPCSuite\Activate.exe %SystemDiskRoot%\System Volume Information\_restore{716B153C-DD14-4318-BB5B-DF2EC09C7150}\RP663\A0086275.exe %SystemDiskRoot%\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP40\A0034925.exe MD5: E11E7E9D473B8825EFA0BBE06700384E Size: 53248 %PROGRAMFILES%\VirusAlarma\Restart.exe %PROGRAMFILES%\AVSYSTEMCARE\Restart.exe %PROGRAMFILES%\AntivirusPCSuite\Restart.exe %SystemDiskRoot%\System Volume Information\_restore{716B153C-DD14-4318-BB5B-DF2EC09C7150}\RP663\A0086268.exe

Detecting items list:

Files by Name %COMMONFILES%\VirusSchlacht\uga6pcw.exe %COMMONFILES%\VirusSchlacht\UGaChk.dll %PROGRAMFILES%\VirusSchlacht\Activate.exe %PROGRAMFILES%\VirusSchlacht\atf.exe %PROGRAMFILES%\VirusSchlacht\fopf.sys %PROGRAMFILES%\VirusSchlacht\fopnl.dll %PROGRAMFILES%\VirusSchlacht\pgs.exe %PROGRAMFILES%\VirusSchlacht\Restart.exe %PROGRAMFILES%\VirusSchlacht\Base\plugins\UNADBX.DLL %PROGRAMFILES%\VirusSchlacht\Base\plugins\unamscan.dll %PROGRAMFILES%\VirusSchlacht\Base\plugins\UNMIME.DLL %PROGRAMFILES%\VirusSchlacht\Base\plugins\UNPACK.DLL %PROGRAMFILES%\VirusSchlacht\Base\plugins\UNPACKS.DLL %PROGRAMFILES%\VirusSchlacht\Base\plugins\UNPACKS2.DLL %PROGRAMFILES%\VirusSchlacht\Base\plugins\UNPEPACK.DLL %PROGRAMFILES%\VirusSchlacht\Base\plugins\UpDate\UA27601.DLL %PROGRAMFILES%\VirusSchlacht\Base\plugins\UpDate\UA27602.DLL %PROGRAMFILES%\VirusSchlacht\Base\plugins\UpDate\UA27603.DLL %PROGRAMFILES%\VirusSchlacht\Base\plugins\UpDate\UA27604.DLL %PROGRAMFILES%\VirusSchlacht\Base\plugins\UpDate\UADAILY.DLL %PROGRAMFILES%\VirusSchlacht\Dat\HI.exe %PROGRAMFILES%\VirusSchlacht\Update\aviupd.exe
Files by MD5 MD5: 041E7D24C5075BABF03EA63BB7ADC69B Size: 131072 MD5: 4D1C195791899BD7CD3C66440BA5D72E Size: 40960 MD5: B64B59ED9A56FAC43700B347CD86D8B5 Size: 2048 MD5: ED5F700135A9A954C2E77031B375EE8A Size: 3022848
Files by Directories %PROGRAMFILES%\VirusSchlacht

« Go to Software Database

Cerca nel nostro database dei software

Sfoglia il database dei software

Ultimissime notizie sui Malware

23. settembre 2011

Among one of the most active spywares currently is without a doubt Trojan.MicroFake.ba. It attacks in conjunction with Rogue antispyware applications and forces users to purchase these fake applications. Using rootkit techniques is very typical of this Trojan to help it hide from users and the system, making it hard to trace. We recommend regular updating of our database and an active real-time protection with antivirus.

Notizie sui vecchi malware »