Infected with CamGirlsLive ?
The CamGirlsLive program is a malware program that shows links to pornographic sites on the IE Toolbar.
Security program developers categorized the CamGirlsLive program as an adware application that embeds its functions directly onto the Internet Explorer interface. It was reported that this malware program has the ability to patch the iexplore.exe file of the browser to embed its codes directly into it. It was believed that the code is found in the end-of-file of the application.
This program may be acquired by the user when it is directly downloaded from unsolicited sites on the Web. There were reports of this malware being bundled and dropped by other malicious programs to promote the site www.camgirlslive.com.
This application reportedly has the ability to embed its own script directly onto the browser to load the file cglbar.exe. This file has the potential to enable the toolbar on Internet Explorer. It may be defined as an add-on toolbar that will automatically load when the infected application is executed by the user.
It was speculated that the file cglbar.dll is one of the components of this adware program. This malware may hold the instructions to hook it to the Internet Explorer interface.
User claimed that the toolbar enabled by this adware may show icons and links to random pornographic sites on the Web. This program was later dubbed as a malware due to its ability to redirect users to pornographic pages full of pop-ups and ad banners that might cause other malicious programs to be downloaded on the machine.
There were speculations that this malware program may have backdoor capabilities. It is said that the CamGirlsLive program opens up a port on the infected machine. This may possibly hold incoming and outgoing transmissions. This application may use the port to connect to a remote server to update its files and components or to download other malicious programs into the machine.
According to expert users, the malware program may install its files onto the machine without the user's permission. It is possible for the program to incorporate stealth/rootkit designs to allow it to initiate its functions in the background without any user interface or process in Windows Task Manager.
The CamGirlsLive program may be identified as:
* CamGirlsLive Toolbar;
* CrackedEarth Toolbar;
* and Adware.CamGirlsLive_Toolbar.
Its author is crackedearth.com, a part of Cyberzine Publishing, Ltd.
|Threat Level: High Risk|
|Records personal data / keystrokes|
|Hijacks internet browser|
|Allows remote influence|
|Downloads unsolicited files|
|Disables programs / system|
|Makes unauthorized phone calls|
|Exploits a security flaw|
|Floods internet connection|
|Tracks browsing activity with installed applications|
|Tracks browsing activity with cookies|
|Installs without user consent|
|Inadequate uninstall procedures|
|Insufficient privacy disclosure and consent|
|Uses excessive system resources|
|Makes fraudulent claims about spyware detection and removal|
|Performs Silent Updates|
Microsoft is a registered trademark of Microsoft Corporation in the United States and/or other countries.