Malware-infected WinRAR distributed through Google AdWords

johngalt · 22 Jan 2009

January 20th, 2009

Malware-infected WinRAR distributed through Google AdWords

Posted by Dancho Danchev @ 10:15 am

Scammers are at it again - taking advantage of Google sponsored ads for acquiring traffic in order to redirect it to malware-infected copies of legitimate software. win.rar GmbH is warning users of an ongoing fraudulent AdWords campaign pushing a malware-infected copy of WinRAR, the popular archiving application. Starting from the basic fact that, both, legitimate and malicious users can purchase their visibility, the fake WinRAR release is only the tip of the iceberg.
Let’s take a peek at the campaign impersonating Download.com — impersonation is a form of flattery — and discuss a separate campaign promising to deliver free copies of the free in general, WinRAR and WinZip, managed by a Zango adware affiliate.

Read the rest @ Malware-infected WinRAR distributed through Google AdWords | Zero Day | ZDNet.com

smarteyeball · 22 Jan 2009

I'm glad i use 7-zip....

But i do download from cnet occasionally.... or as of now, used to

johngalt · 23 Jan 2009

I use WinRAR myself - I bought a license in 2002 and it is for life - they even allow me to use the license for Rar for Linux since I don't use *nix in a VM - or didn't

I do install 7-ZIP x86-64 builds, but I prefer WinRAR Cause it has some features 7 don't when making .RARs.

Romulinx2 · 23 Jan 2009

Thanks for the warning John. I used to use Download.com allot. I havent used it for a long time, so now after this I wont be using it again.

MrMephitis · 12 Jan 2010

Romulinx2 said:

Thanks for the warning John. I used to use Download.com allot. I havent used it for a long time, so now after this I wont be using it again.

Why? The article states quite clearly that the infected files come from a site impersonating download.com.

manhunter2826 · 12 Jan 2010

This is one reason I prefer to download directly - if at all possible - from the original source provider, for example ccleaner, 7zip etc. Yes, it's not full-proof I agree, but just something I've always preferred to do. And thanks for the notification john, very nice read.

jav · 12 Jan 2010

manhunter2826 said:

This is one reason I prefer to download directly - if at all possible - from the original source provider, for example ccleaner, 7zip etc. Yes, it's not full-proof I agree, but just something I've always preferred to do. And thanks for the notification john, very nice read.

Same.
I tend to download from publisher site rather then mega download sites.

Xing101 · 14 Jan 2010

Wow scammers copying download.com didnt see that comeing