BitTorrent Manager
BitTorrent Manager is an adware bundler that installs several other adwares with itself like Adware-PurityScan, Generic Downloader.ab Trojan, Adware-RBlast.dldr etc. Adware.PurityScan is an adware program that downloads and displays advertisements
on a computer. Adware-RBlast.dldr can change the default Start page of Internet Explorer to www.Slotch.com. Generic Downloader.ab Trojan injected into Svchost.exe process to download the PWS Trojan.
General information:
| Malware Name: |
BitTorrent Manager |
| Malware Type: |
Adware Bundler |
| Company Name: |
BittorrentManager LLC |
| Company URL: |
http://www.bittorrentmanager.com
|
| Threat Level: |
High Risk |
| Operating System: |
WIN XP |
| Installation Type: |
Installed through EXE |
| Operation: |
Time of After Installation |
Company Description:
BittorrentManager LLC provides you the software BitTorrent Manager that is completely FREE and convenient tool for downloading and distributing very large files. It is based on BitTorrent technology, so if server receives many download requests for
a given file at once, it makes downloading users to automatically send pieces of file to each other thus relieving the central server s bandwidth burden and increasing download speed.
Spyware Description:
BitTorrent Manager is an adware bundler that installs several other adwares with itself like Adware-PurityScan, Generic Downloader.ab Trojan, Adware-RBlast.dldr etc. Adware.PurityScan is an adware program that downloads and displays advertisements
on a computer. Adware-RBlast.dldr can change the default Start page of Internet Explorer to www.Slotch.com. Generic Downloader.ab Trojan injected into Svchost.exe process to download the PWS Trojan.
Characteristics/Symptoms:
-> It installs several other adwares with itself like Adware-PurityScan, Generic Downloader.ab Trojan, Adware-RBlast.dldr etc. -> Adware.PurityScan is an adware program that downloads and displays advertisements on a computer.
Adware-RBlast.dldr can change the default Start page of Internet Explorer to www.Slotch.com. Generic Downloader.ab Trojan injected into Svchost.exe process to download the PWS Trojan.
Additional information might be found here:
Processes Running:
btdownloadgui.exe
File information Created after Installation:
| File Location |
Size (Bytes) |
Type |
| C:\Casino\EuroGrand Casino\data\lobby\gameicon\menu_exclusives.jpg |
11642 |
JPEG Image |
| C:\Casino\EuroGrand Casino\data\lobby\gameicon\menu_favorites.jpg |
11449 |
JPEG Image |
| C:\Casino\EuroGrand Casino\data\lobby\gameicon\menu_livegames.jpg |
9943 |
JPEG Image |
Folder information Created after Installation:
| Folder Location |
| C:\Program Files\BitTorrent Manager\share\themes\wimp\gtk-2. |
| C:\Program Files\EuroGrand Casin |
Registry information Created after Installation:
| Main Registry Key |
Sub Registry Key |
Key Value Name |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Run |
runner1 |
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitTorrent Manager_is1 |
|
| HKEY_LOCAL_MACHINE |
\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\EuroGrand Casino |
UninstallString |
