AIP (Herbe) search recording software can actually inject the user program

Source: Internet
Author: User

Intermediary transaction http://www.aliyun.com/zixun/aggregation/6858.html ">seo diagnose Taobao guest cloud host technology Hall

Today, the idle egg pain, installed AIP (the investigation company) "Search Software", the results found that this search software (PanelApp.exe) actually will inject user program! Oh, my God, it's a rascal plus a Trojan horse!

The earned Friends of the AIP (HERBE) survey company have probably received questionnaires containing the following: "Please complete today's questionnaire." After answering all the questions, you will receive an immediate [10-200] bonus. You may then be invited to participate in a long-term study. We will ask you to download and install a software. This software automatically records the use of your computer and your network. ”

The so-called software is "search recording software", according to the AIP (HERBE): "Install the AIP software and maintain the installation 15 days, you will receive an additional 300 points." The bonus points will be automatically added to your account after we confirm that you have installed the software for 15 days. )

Since this is an ongoing study, please do not uninstall AIP software. If you maintain the AIP software to participate in this study, as a reward for you, each week we will be based on your past week to give you additional points.

30 minutes a day, you get up to 210 points a week. You can get up to 840 cents a month as a reward!

Please note that if you uninstall this software, you will not receive this bonus.

If you upgrade your operating system or replace your computer, you will need to reinstall our software. In addition to these points, you will have the opportunity to participate in the lucky draw every month (provided you must ensure that the AIP software is installed on your computer). Each month's prizes are different, at the end of today's questionnaire you can give us advice on the type of prizes. ”

These things look tempting, as long as the installation, you can get points, and a lot of points, compared to 91 ask the survey, such as 1 points a day much better. So I couldn't resist the temptation to download and install this AIP (HERBE) search log software.

After installing this "search recording software" I found that the program was not even a user interface, open Task Manager found only one process "PanelApp.exe". But then when the launch of QQ 360 security guards prompted a DLL file to inject my QQ program, I did not look at what dongdong, so conveniently prohibited.

After doing things at hand feel a bit uneasy, just that to inject my QQ drop that dongdong what is it? I opened 360 security guard log looked at, incredibly is just installed "AIP Search record Software" in the mischief! Cut a picture to see:

  

This is one of the logs:

Process: C:\Documents and Settings\Administrator\Local Settings\Application Data\asiainternetplaza\panelapp\pahelper_ 1500.2010.1020.2057.dll

Actions: Remote Thread injection

Path: D:\Program Files\tencent\qq\bin\qq.exe

Through the log visible, AIP's "Search log Software" to try to inject QQ, Notepad, browser, Ali and so on all my recently opened programs, oh, this is too terrible.

Regardless of Herbe's AIP search software for what purpose, to collect data or to facilitate their own investigation, it is not any reminders to users without any warning to inject the user's application process, this behavior and Trojan, hacker and what are the two?

Judging from the name of this tool, it seems to be the function of this software is to record the user's search content, if so, this is the red fruit to violate the privacy of users, but I did not analyze, casually to others to buckle a big hat of privacy does not seem to be improper, if there are interested in the cattle, You can analyze what the software does without the user's knowledge.

In addition, this "search recording software" After the installation, will automatically add the startup item "Panelapp" and the system service "PANELSVC", and these content in the process of installation completely did not inform the user, if the user himself not to pay attention to see, will not find. From this point of view, the software has the characteristics of some rogue software.

This article to this, can also end, other words I do not need to say, and finally remind all AIP members, if you want to install this so-called "search software", please think twice!

My net earn Diary-original net earns a blog (www.freeqian.org.ru) Start, reprint please specify, thank you!

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.