Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.

Imagefap

 
Threat LevelHigh threat
DamageSevere
DistributionNot widespread
Common name:Imagefap
Technical name:Adware/Imagefap
Threat level:Medium
Type:Spyware
Subtype: Adware
Effects:   It collects information on Internet usage and the applications installed in the computer and uses it to display pop-up advertisements.
Affected platforms:

Windows 2003/XP/2000/NT/ME/98/95

First detected on:July 19, 2006
Detection updated on:Sept. 5, 2006
StatisticsNo
Proactive protection:
Yes, using TruPrevent Technologies

Brief Description 

    

Adware refers to programs that display advertising using any means: pop-ups, banners, changes to the browser home page or search page, etc. The advertisements could be associated with the products or services offered by the creator of the program or by third-parties.

Adware can be installed in a number of ways, on some occasions without users' consent, and either with or without users' knowledge of its function.

 

Imagefap prevents access from programs to websites of several companies related with security tools (antivirus programs, firewalls, etc.).

Imagefap redirects attempts to access web pages of certain banks to spoofed pages, with the aim of logging information entered by the user in these pages.

Imagefap redirects attempts to access several web pages to a specific IP address.

 

Imagefap uses the following propagation or distribution methods:

  • Exploiting vulnerabilities with the intervention of the user: exploiting vulnerabilities in file formats or applications. To exploit them successfully it needs the intervention of the user: opening files, viewing malicious web pages, reading emails, etc.
  • Via Internet, exploiting remote vulnerabilities: attacking random IP addresses, in which it tries to insert a copy of itself by exploiting one or more vulnerabilities.