AT.Batalia3,Batalia Viruses Definition - Viruses Spywares, Adwares, Viruses Reviews and Info

Main Menu

Categories

Adware
Adware Bundler
AOL Exploit
Backdoor
Browser Hijacker
Browser Plug-in
Commercial Key Logger
Commercial Remote Control
Cookie
Dialer
E-Mail Flooder
Hostile ActiveX Control
ICQ Exploit
Joke Program
Key Logger
Loader
Low Risk Adware
Misc
Nuker
P2P
Password Hijacker
Potential Privacy Risk
Potentially Dangerous Tools
RAT
Search Hijacker
Security Disabler
Spyware
Stealth Notifier
Surveillance
Toolbar
Trojan
Trojan Downloader
Trojan FTP
Trojan Telnet
Viruses
Worm

AT.Batalia3,Batalia Viruses Information

Name:	AT.Batalia3,Batalia
Category:	Viruses
Description:	Details AT.Batalia3,Batalia4 These are harmless nonmemory resident parasitic BAT viruses. They search for BAT files in the current directory, then infect them. While infecting a file the viruses run the ARJ archiver to the pack necessary files. If there is no ARJ.EXE file in PATH, the viruses fail to replicate themselves. The viruses contain two parts of code and data. The first part (the header) contains DOS commands: "Batalia3": "Batalia4": @echo off @echo off rem YYY rem BAT4 arj x %0 -g""b�p� >nul arj x %0 >nul ren p Int call i call i del sg ren Int a.bat del i.bat echo on @call a @echo off del i.bat del a.bat del BATalia3 The second part (the rest) is an ARJ archive. This archive contains the I.BAT file that is the main virus code and the additional files: "Batalia3": P, BATALIA3 "Batalia4": SG The SG and BATALIA3 files contain several additional batch commands. The P file contains original code of infected BAT file (in case of "Batalia3" virus). So, any infected file contains the text strings (DOS commands) and the binary data (ARJ archive). When executed, the virus runs the ARJ archiver, extracts the files I.BAT and SG and runs I.BAT. This batch file searches for not infected BAT files in the current directory and infects them. While infecting, the "Batalia4" virus appends its code to the end of files and does not modify the original file contents. "Batalia3" saves original BAT file to ARJ archive (file P) and overwrites it. As a result the length of a file infected by "Batalia3" may be less than before infection.

Top Viruses Visited Pages:

Invader. - 239 visits
not-a-virus:RiskWare.Tool.RegPatch. - 72 visits
Worm.P2P.Harex. - 66 visits
not-a-virus:RemoteAdmin.Win32.RAdmin.2 - 60 visits
Small.58. - 56 visits
Coito.64 - 54 visits
I-Worm.Mapson. - 48 visits
Win16.Klon.1177 - 42 visits
Win32.Hidra - 42 visits
Marine.500 - 35 visits

Random Viruses Pages:

Zipper.277
I-Worm.Je
Horse.1154.
I-Worm.NetSky.
Carnivore.50
Win32.Chop.380
Samara.153
Windmil
I-Worm.Nave
Lapidario.76

� 2006-2008 spyware32.com - Privacy Policy