TROJ_PPDROP.EVL is a malicious PowerPoint file that’s distributed by spam e-mail message as part of a strategy for infecting PC users with a second PC threat, a backdoor Trojan. Because TROJ_PPDROP.EVL conceals this installation with Flash exploits and also drops a second (and non-malicious) PowerPoint file as a distraction, victims may be unaware of the initial attack. TROJ_PPDROP.EVL’s payload, like all backdoor Trojans, compromises your computer’s security by allowing a criminal-controlled server to issue commands, install other PC threats or receive stolen information. Since TROJ_PPDROP.EVL’s backdoor Trojan is a high-level PC threat with potentially long-lasting negative consequences, SpywareRemove.com malware analysts stand by removing TROJ_PPDROP.EVL and its fellow Trojan the very moment you can lay hands on a good anti-malware scanner – although avoiding TROJ_PPDROP.EVL is definitely a preferable course of action.
TROJ_PPDROP.EVL: Proudly Presenting a Distraction from Its Security Attacks
TROJ_PPDROP.EVL may appear to be a harmless PowerPoint file, but within its confines lurks an installation technique that deftly circumvents your computer’s security to create a backdoor exploit. A Flash file is embedded in TROJ_PPDROP.EVL that automatically exploits the vulnerability CVE-2011-0611, which affects outdated versions of Adobe AIR, Adobe Flash Player, Adobe Acrobat and Adobe Reader.BKDR_SIMBOT.EVL.
BKDR_SIMBOT.EVL is used for standard backdoor Trojan-esque attacks, including installing other forms of hostile software or allowing criminals to control your PC via a Command & Control server. Because BKDR_SIMBOT.EVL uses code-injection tactics to conceal itself, SpywareRemove.com malware researchers recommend that you delete TROJ_PPDROP.EVL and BKDR_SIMBOT.EVL with suitably adept anti-malware software if you find that your PC’s been infected.
Shutting TROJ_PPDROP.EVL Down Before Its Scam Starts
Since TROJ_PPDROP.EVL requires Flash exploits to complete its PC threat-installing attack, the easiest way to deflect a TROJ_PPDROP.EVL’s problem is to avoid keeping Flash-related software on your computer, as noted in the list of vulnerable applications earlier in this article. However, since Flash is widely-used for website and game design, SpywareRemove.com malware researchers also note that simply keeping Flash software updated will close outdated security flaws like the one that TROJ_PPDROP.EVL uses.
TROJ_PPDROP.EVL is also one of many Trojans that are distributed by way of e-mail spam. Recognizing and deleting such fraudulent messages as soon as they’re seen can prove to be a powerful defense against both TROJ_PPDROP.EVL and many other varieties of Trojans. Failing that, using anti-malware programs to scan file attachments before you download them can also help to catch TROJ_PPDROP.EVL before TROJ_PPDROP.EVL has a chance to do any harm to your PC.
Both TROJ_PPDROP.EVL and BKDR_SIMBOT.EVL have been confirmed to function in multiple versions of Windows, although other operating systems are, at the time of this writing, safe from this pair of Trojans.
TROJ_PPDROP.EVL Automatic Detection Tool (Recommended)
Is your PC infected with TROJ_PPDROP.EVL? To safely & quickly detect TROJ_PPDROP.EVL, we highly recommend you run the malware scanner listed below.
Download SpyHunter's* Malware Scanner to detect TROJ_PPDROP.EVL What happens if TROJ_PPDROP.EVL does not let you open SpyHunter or blocks the Internet?
File System Modifications
Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.
- The following files were created in the system:
# File Name 1 %User Temp%\Winword.tmp
Posted: June 5, 2012 | By SpywareRemove
Threat Level: 9/10
Rate this article:
Detection Count: 269