Contra Viro Is Just Another Rogue Application Clone

When dealing with rogue applications it is best to do everything you can to avoid them, but detecting ones like Contra viro can sometimes be difficult. On the surface Contra viro seems like any other virus protection program, but the fact is everything that it tells the user is a threat and needs to be removed, is in fact critical software for most computers running Windows operating systems. Users that remove any of the things that Contra viro says are threats will find that their computers will simply stop working. As with most new rogue applications coming out, Contra viro is just a clone. In this case it is a clone of Unvirex, which is a relatively new rogue application as well.

AKA:
Unvirex

Contra viro file contents:

c:\Program Files\Contraviro
c:\Program Files\Contraviro\Contraviro.exe
c:\Program Files\Contraviro\daily.cvd
c:\Program Files\Contraviro\Drvfltip.sys
c:\Program Files\Contraviro\hjengine.dll
c:\Program Files\Contraviro\IEAddon.dll
c:\Program Files\Contraviro\main.cvd
c:\Program Files\Contraviro\MFC71.dll
c:\Program Files\Contraviro\MFC71ENU.DLL
c:\Program Files\Contraviro\msvcp71.dll
c:\Program Files\Contraviro\msvcr71.dll
c:\Program Files\Contraviro\pthreadVC2.dll
c:\Program Files\Contraviro\shellext.dll
c:\Program Files\Contraviro\siglsp.dll
c:\Program Files\Contraviro\uninstall.exe
c:\Documents and Settings\All Users\Start Menu\Programs\Contraviro
c:\Documents and Settings\All Users\Desktop\Contraviro.lnk
c:\Documents and Settings\All Users\Start Menu\Programs\Contraviro.lnk
c:\Documents and Settings\All Users\Start Menu\Programs\Contraviro\Contraviro.lnk
c:\Documents and Settings\All Users\Start Menu\Programs\Contraviro\How to Register Contraviro.lnk
c:\Documents and Settings\All Users\Start Menu\Programs\Contraviro\Register Contraviro.lnk
%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch\Contraviro.lnk

Running Processes:
Contraviro.exe

Registry values:
HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\antivirus_contextscan
HKEY_CLASSES_ROOT\AppID\{C0E56AC2-9F72-436E-B6E7-AEC28AF9E4EB}
HKEY_CLASSES_ROOT\AppID\IEAddon.DLL
HKEY_CLASSES_ROOT\CLSID\{08EEC6AD-7486-487F-89B7-5A3716DDAE14}
HKEY_CLASSES_ROOT\CLSID\{CCB5551D-8594-4999-85F9-1E3EABCB95AC}
HKEY_CLASSES_ROOT\Drive\shellex\ContextMenuHandlers\antivirus_contextscan
HKEY_CLASSES_ROOT\Drives\shellex\ContextMenuHandlers\antivirus_contextscan
HKEY_CLASSES_ROOT\Folder\shellex\ContextMenuHandlers\antivirus_contextscan
HKEY_CLASSES_ROOT\Interface\{5B184B9D-B7BD-4FEA-8D1F-5E27182206A5}
HKEY_CLASSES_ROOT\TypeLib\{3ED0E410-5C8E-47B6-A75D-D10B886E903C}
HKEY_LOCAL_MACHINE\SOFTWARE\Contraviro
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CCB5551D-8594-4999-85F9-1E3EABCB95AC}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Contraviro
HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Winlogon “Shell”
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform “Contraviro”
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run “Contraviro”

Registered DLLs:
MFC71.dll
MFC71ENU.DLL
msvcp71.dll
msvcr71.dll
pthreadVC2.dll
shellext.dll
siglsp.dll
hjengine.dll
IEAddon.dll

Associated Websites:
contraviro.com


Recommended Action:  Immediate Removal

It is possible to get rid of Contra viro without the help of a malware removal program, but unless you are familiar with fighting trojans and registry editing, you will be better off installing a trusted program like Spyzooka. Only Spyzooka offers a 100% guarantee to clean up and remove all the threats associated with Contra viro. Do not take the chance of damaging the computers file systems, install Spyzooka and see why they are willing to offer a 100% guarantee.

Download Free Scan
ZookaWare runs on Windows Vista, 7, 8 and 10. It has no ads, popups or bundled software and fully uninstalls by clicking Start > All Programs > select ZookaWare and click Uninstall.

One Response

  1. Nancy Pole says:

    I don’t know since when Contra viro was in my computer. I guess my sister downloaded something without my knowledge… I was searching for a new antivirus program and I found this blog and your description made me choose it to protect my computer. SpyZooka found Contra viro at the first scan and removed it with no problem. You are really good!

Leave a Reply

Your email address will not be published. Required fields are marked *

css.php