C2.LOP

LOP, or Live Online Portal, is malware that is installed on Microsoft Windows.[1]

Lop.com is a web site owned by C2Media LTD. It is a pay-per-click search portal where other websites will pay for each click to their sites via LOP. A method they used to get people to their site was to install a browser hijacker component on people's computers which would advertise their site through pop-ups. The installer could turn the user's web browser into a device with different links to lop.com.[2]

Older variants of LOP were quite predictable and installed Browser Helper Objects and startup entries with known names. Some later LOP variants used a string of pseudo-random words as their executable names[3] and have been placing these executables in the user's application data directory. For example, there are LOP variants which call their file "meal dog house bone.exe".

Known programs that bundle LOP

  • Patchou's MSN Messenger Plus[3]
  • Warez P2P Client

References

  1. "Counter Intelligence Brief". InfoWorld. 4 October 2004.
  2. "Lop.com". Spywareinfo. April 22, 2004. Archived from the original on May 20, 2005.
  3. "lop". DOXdesk. Archived from the original on April 3, 2005.


This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.