Beware of Spoof File Downloads!
Two spoof P2P application installers, BitRoll-184.108.40.206 and Torrent101-220.127.116.11, are being used to install the Lop adware on users systems. These programs are used to exchange files between remote users and both these installers are available for download on the Internet, so any user could access them and become infected.
Other false applications are also being used by cyber-crooks to install malicious code, such as a program called wavesoftwarecreative.exe (which passes itself off as audio software) or another called bitdownloadsetup.exe .
The Lop adware is designed to display ads from various advertisers through pop-up windows, banners, etc. It also switches the Internet Explorer home page to its own search engine. When searches are made with this engine, the results returned will be advertising pages related to the search words.
To help prevent detection, this adware connects periodically to a Web page from which it downloads new files containing variants of the code and making it difficult to delete all active malicious files on the system.
If users try to use the program installed, they will be able to search for files but not download them.
Very often, users unwittingly consent to installing adware through clauses in the license agreements of other programs , explains Luis Corrons, technical director of PandaLabs. In this case however, there is no mention in the agreement about the installation of Lop.
PandaLabs: Thieving Worms on the Prowl
- Cyber attacks threat to global stability: WEF
- Biggest security threats in 2012 are cyber espionage, privacy violations
- Cyber espionage, privacy violations biggest security threat in 2012
- The malware created increases by 26% in first months of 2011: PandaLabs
- Half of computers worldwide were infected in January: Pandalabs
- One third of existing viruses were created and distributed in 2010: PandaLabs
- One third of existing computer viruses were created in Jan-Oct 2010: Panda
- Spam Mails Rocketed During Q1 09: Report
- YouTube Video Has Unpleasant Easter Surprise
- New Virus on the Prowl - Sality.AO