Trojan hijacks Google text ads
/v3-uk/news/1963260/trojan-hijacks-google-text-ads
19 Dec 2007, Guy Dixon , V3
A new Trojan that hijacks Google text ads and replaces them with ads from a different provider has been picked up by BitDefender.
The antivirus company has identified the threat as Trojan.Qhost.WU which modifies the infected computer's host file, a local storage for domain name/IP address mappings.
The infected machine's browser then reads advertisements from a server at the replacement address rather than from Google.
"This damages users and webmasters because it takes away viewers and thus a possible money source from their websites," said BitDefender virus analyst Attila-Mihaly Balazs.
Users are advised to let antivirus software delete the Trojan.
Do you agree?
HOSTS file
You forgot to mention whether AV software is likely to restore the HOSTS file to its pre-infection version. If it doesn't, the user will still get redirected to the alternative ad-server.
Posted by Chris, 19 Dec 2007
Idioma
agradezco su información en español
Posted by María Isabel, 20 Dec 2007
Worrysome .....
What is worrysome is that every anti-virus and anti-spyware program I know of, failed to detect the stealth loading of malicious BHO's and dll's onto the user's machines.
Posted by The Wizzard, 26 Dec 2007