LimeWire Trojan: Spyware Gone Crazy!!!

Here is the link to the article. Written by Steve.

Shelagh sent me an email, an email about a Trojan named “DLDER.EXE” that Norton had detected. Upon researching it, I found that it is ostensibly only “spyware”, but it’s bad enough that F-Secure, Norton and AVP all list it as a “Trojan“. It makes hidden directories, phony copies of explorer.exe, and “constantly upgrades its main component that connects to 2001-007.com website and reports user’s ID, web browser a user is using and all URLs that a web browser and all its child windows open. The trojan violates user’s privacy and opens a security hole in a system by downloading and activating executable files”
According to that site above, “The exact way how this file is dropped is not yet known. The case is under investigation.”. Well I know where it comes from. Following up on some leads, I installed the lates Limewire v2.02. During the install, Limewire politely asked me if I wanted to opt out of the installs of “Gator”, “Offer Companion”, and “TopText”, already some of the worst known spyware (until now . I said “no” to everything. Nonetheless, limewire installed something called “adp.exe”, and added it to my start-up.

A while later, adp.exe attempted to contact the internet, and I allowed that out of curiosity. The next thing I know I had another program, “bargains.exe”, and it was also added to my startup. Furthermore, I now had a copy of the Trojan in question, “dlder.exe”, in my temp directory (so far that one has failed to “install” itself for some reason, maybe because Win2k doesn’t have a “windows” directory which is where it tries to go).

Needless to say, this entire series of events is, at best, extremely questionable. I would strongly recommend that no one lets LimeWire anywhere near their system.

Zeropaid Note It has come to Lime Wire’s attention over the past 24 hours that one of the bundled software installers included with LimeWire 2.0.2 for the PC is now considered a SpyWare/Trojan by various anti-virus software packages. We have received complaints from our users and we have worked quickly to resolve this issue by putting out a new beta immediately yesterday and rolling LimeWire 2.0.4 for the PC into production at 3:30PM EST today (Jan 1. Note that this did not affect LimeWire 2.0.2 P (LimeWire PRO) users.. We will be communicating further with LimeWire 2.0.2 PC users as information becomes available. LimeWire Email

Related Posts

1. LimeWire research uncovers unwanted Spyware in P2P
2. LimeWire 1.8, Now with SpyWare! Part 2
3. Trojan Update
4. LimeWire 1.8……Now with SpyWare!
5. Ask IE For Help, Get a Trojan