Lollipop

Lollipop

Known Malware

by Lollipop Network, S.L.

What is Lollipop?

Lollipop is software application developed by Lollipop Network, S.L.. It is most commonly found on computers running Windows 7 with nearly 61.62% of installations running this operating system. Lollipop's installer is typically 1.00 MB in size and installs around 15 files.

Lollipop is most popular in Brazil with 24.99% of installations residing in this country.

About Lollipop?

Lollipop is a web browser plugin that delivers context-based marketing directly within the user's browser. This software system provides relevant advertising content by displaying advertising messages and other information from the provider or third parties with whom the provider has established agreements, directly on the user's screen. The software may also include ad support.

Multiple virus scanners have detected malware in Lollipop.

lolipop.exe (MD5: 46ccf227be9aa950b918159178dc531f) has been flagged by 10 scanners:
Scanner Software Result
Avira AntiVir Adware/Lollipop.DZ.9
Comodo Security Heur.Suspicious
Dr.Web Trojan.Wintrim.1197
ESET-NOD32 a variant of Win32/Kryptik.BEQH
McAfee Artemis!46CCF227BE9A
McAfee-GW-Edition Artemis!46CCF227BE9A
Sophos Generic PUA JG
The Hacker Trojan/Kryptik.beqh
TrendMicro-HouseCall TROJ_GEN.F47V0702
VIPRE Antivirus Lollipop (fs)
lollipop_04140836.exe (MD5: 90a637e747305d314021f94a7fb680f7) has been flagged by 18 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Variant.Adware.Graftor.138869
Avira AntiVir Adware/AgentCV.A.4754
avast! Win32:Adware-BMT [Adw]
AVG Win32/Cryptor
Baidu-International Adware.Win32.Lollipop.45
Bitdefender Gen:Variant.Adware.Graftor.138869
Comodo Security UnclassifiedMalware
Emsisoft Anti-Malware Gen:Variant.Adware.Graftor.138869 (B)
ESET-NOD32 a variant of Win32/Skintrim.ME
F-Secure Gen:Variant.Adware.Graftor.138869
G Data Gen:Variant.Adware.Graftor.138869
McAfee Artemis!90A637E74730
McAfee-GW-Edition Artemis!90A637E74730
MicroWorld-eScan Gen:Variant.Adware.Graftor.138869
Norman Skintrim.PCK
Qihoo-360 Malware.QVM10.Gen
Symantec WS.Reputation.1
VIPRE Antivirus Trojan.Win32.Generic!BT
lollipop_04140823.exe (MD5: a815a778e2e9547b622a01609fb49088) has been flagged by 14 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Variant.Adware.NaviPromo.5
Avira AntiVir Adware/AgentCV.A.3587
AVG Win32/Cryptor
Baidu-International Trojan.Win32.Skintrim.ME
Bitdefender Gen:Variant.Adware.NaviPromo.5
Emsisoft Anti-Malware Gen:Variant.Adware.NaviPromo.5 (B)
ESET-NOD32 a variant of Win32/Skintrim.ME
F-Secure Gen:Variant.Adware.NaviPromo.5
G Data Gen:Variant.Adware.NaviPromo.5
MicroWorld-eScan Gen:Variant.Adware.NaviPromo.5
Norman Skintrim.PCK
Qihoo-360 Win32/Virus.Adware.4f4
Symantec WS.Reputation.1
VIPRE Antivirus Trojan.Win32.Generic!BT
Lollipop.exe (MD5: cf0689252d0dfacbaeb2f9b0f78b7c98) has been flagged by 20 scanners:
Scanner Software Result
IKARUS anti.virus Trojan.Agent4
Kaspersky UDS:DangerousObject.Multi.Generic
Lavasoft Ad-Aware Gen:Variant.Adware.Graftor.138869
Avira AntiVir Adware/AgentCV.A.4754
avast! Win32:Adware-BMT [Adw]
AVG Win32/Cryptor
Baidu-International Adware.Win32.Lollipop.45
Bitdefender Gen:Variant.Adware.Graftor.138869
Comodo Security UnclassifiedMalware
Emsisoft Anti-Malware Gen:Variant.Adware.Graftor.138869 (B)
ESET-NOD32 a variant of Win32/Skintrim.ME
F-Secure Gen:Variant.Adware.Graftor.138869
G Data Gen:Variant.Adware.Graftor.138869
McAfee Artemis!90A637E74730
McAfee-GW-Edition Artemis!90A637E74730
MicroWorld-eScan Gen:Variant.Adware.Graftor.138869
Norman Skintrim.PCK
Qihoo-360 Malware.QVM10.Gen
Symantec WS.Reputation.1
VIPRE Antivirus Trojan.Win32.Generic!BT

Startup Entries

Registry entries:
  • Lollipop.exe is loaded in the current user (HKCU) registry as an auto-starting executable named 'lollipop' and executes as "C:\users\user\appdata\local\lollipop\lollipop.exe" lollipop.
  • lollipop_04140836.exe is loaded in the current user (HKCU) registry as an auto-starting executable named 'lollipop_04140836' and executes as "C:\users\user\appdata\local\lollipop\lollipop_04140836.exe" lollipop_04140836.
  • lollipop_04140823.exe is loaded in the current user (HKCU) registry as an auto-starting executable named 'lollipop_04140823' and executes as "C:\users\user\appdata\local\lollipop\lollipop_04140823.exe" lollipop_04140823.

Software Details

URL:
https://www.lollipop-network.com
Support:
–
Installation path:
C:\users\user\appdata\local\lollipop
Uninstaller:
C:\users\user\appdata\local\lollipop\lollipop.bat
Size:
1.00 MB
Language:
English

Lollipop Executable Details

Primary executable:
Lollipop.exe
Name:
Lollipop
Path:
C:\users\user\appdata\local\lollipop\Lollipop.exe
MD5:
cf0689252d0dfacbaeb2f9b0f78b7c98
SHA-1:
–
SHA-256:
–
Files installed by Lollipop
File Type Filename MD5
EXE
lolipop.exe
Malware
46ccf227be9aa950b918159178dc531f
EXE
lollipop_04140836.exe
Malware
90a637e747305d314021f94a7fb680f7
EXE
lollipop_04140823.exe
Malware
a815a778e2e9547b622a01609fb49088
EXE
Lollipop.exe
Malware
cf0689252d0dfacbaeb2f9b0f78b7c98
EXE
utsrf.exe
dac935314015c131af1b8d71b769d574
EXE
pktvhaj.exe
eb7415a25201723e38798cd943db49e6
EXE
khlqt.exe
2c41f61457b6807489974920f7a4b139
EXE
hbauohb.exe
18911d9e20aecca9b27339fe852cc238
EXE
haztbvoi.exe
93707ca7efc1214f7f6a1a5e3167089b
EXE
feovgg.exe
b5039f967bb959b8ae17f8337dcf4815