As posted some days ago, Grokster and LimeWare seemed to install some kind of trojan. Here's some more information on that...
PerfectPrintout used our newssubmit to tell us that users of popular file-sharing applications may unknowingly be sharing more than just their collections of audio files:
According to antiviral firm F-Secure, Dlder tracks URLs that users visit and posts them to a website. F-Secure reported that the Trojan also opens a security hole on infected systems by downloading and activating executable files.
"We were told that this installer just created the icons and shortcuts for the ClickTillUWin promotion," Greg Bildson, chief technical officer at Limewire, said in an e-mail.
The Trojan file Dlder is installed when users set up the file-sharing applications. After installation, the Trojan downloads a file named "Explorer.exe" from a website, 2001-007.com, and installs the program into a user's system folder.
Some affected users also reported that the Trojan changed their firewall settings to allow itself to access the Internet without permission.
Read the full story on Wired News...
Source: Wired News
