Adware:Win32/Lollipop

By GoldSparrow in Adware

Threat Scorecard

Ranking:	3,627
Threat Level:	20 % (Normal)
Infected Computers:	35,321

First Seen:	July 26, 2013
Last Seen:	September 20, 2023
OS(es) Affected:	Windows

Adware:Win32/Lollipop Image

Adware:Win32/Lollipop is often installed by a third party bundler. Some examples of threats designed to install Adware:Win32/Lollipop include SoftwareBundler:Win32/Lollipox and SoftwareBundler:Win32/Lollipos. It is important to note that it is usually possible to opt out of installing the Adware:Win32/Lollipop, meaning that being careful when installing new software is essential in order to avoid these kinds of threats. There are numerous installers bundled with popular freeware programs that are designed to install Adware:Win32/Lollipop and similar threats.

Table of Contents

The Adware:Win32/Lollipop Uses Three Different Attack Methods

Initially, Adware:Win32/Lollipop will drop its executable file on the victim's computer. Adware:Win32/Lollipop then creates various files, which are dropped on various local folders. Every time the victim's operating system starts up, the Adware:Win32/Lollipop executable file will start up automatically. One of the interesting aspects of Adware:Win32/Lollipop is that Adware:Win32/Lollipop will modify its approach depending on the victim's operating system and security software. Adware:Win32/Lollipop will typically use one of the following three methods to attack a computer:

Adware:Win32/Lollipop makes changes to the infected computer's registry, which allow Adware:Win32/Lollipop to start up automatically along with the operating system.
Adware:Win32/Lollipop may create a new Registry entry that ensures that Adware:Win32/Lollipop runs automatically.
Adware:Win32/Lollipop may also create a shortcut to its executable located in the Start-up folder, causing Adware:Win32/Lollipop to start up in the same manner as other programs designed to start up automatically upon start-up.

Adware:Win32/Lollipop is designed to force computer users to view online advertisements. An icon and pop-up windows may also appear on the victim's computer and Desktop without warning.

It is important to first uninstall Adware:Win32/Lollipop through normal means in order to ensure that all traces of this threat are gone from the targeted computer. Once Adware:Win32/Lollipop has been uninstalled, it is then necessary to use a reliable anti-malware program to scan the infected computer. This is due to the fact that pop-up advertisements and redirects associated with Adware:Win32/Lollipop may expose your Web browser to websites containing malicious content or promoting known online scams. It is usually then necessary to undo manually various changes that may have been made to your computer's and Web browser's settings.

SpyHunter Detects & Remove Adware:Win32/Lollipop

File System Details

Adware:Win32/Lollipop may create the following file(s):

Expand All | Collapse All

#	File Name	MD5	Detections Detections: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
1.	lollipop.exe	f784b22cae24132ab47e5cc9a418fb56	261
Name: lollipop.exe MD5: f784b22cae24132ab47e5cc9a418fb56 Size: 3.07 MB (3077632 bytes) Detections: 261 Type: Executable File Path: %USERPROFILE%\configuraci?n local\datos de programa\lollipop Group: Malware file Last Updated: August 20, 2016
2.	lollipop.exe	ce1aa59fc711c39a345f0770fc30da8d	163
Name: lollipop.exe MD5: ce1aa59fc711c39a345f0770fc30da8d Size: 5.17 MB (5172224 bytes) Detections: 163 Type: Executable File Path: %LOCALAPPDATA%\lollipop Group: Malware file Last Updated: March 26, 2016
3.	lollipop.exe	49e6cd136af22d388ab269433bd450e4	125
Name: lollipop.exe MD5: 49e6cd136af22d388ab269433bd450e4 Size: 3.2 MB (3202048 bytes) Detections: 125 Type: Executable File Path: %USERPROFILE%\ustawienia lokalne\dane aplikacji\lollipop Group: Malware file Last Updated: August 20, 2016
4.	lollipop.exe	a8603dad83a708d02fede9b5f955c936	122
Name: lollipop.exe MD5: a8603dad83a708d02fede9b5f955c936 Size: 3.36 MB (3368448 bytes) Detections: 122 Type: Executable File Path: %LOCALAPPDATA%\lollipop Group: Malware file Last Updated: March 26, 2016
5.	lollipop.exe	e6942689b4772ab1bcf4b2ea23bdf3e2	107
Name: lollipop.exe MD5: e6942689b4772ab1bcf4b2ea23bdf3e2 Size: 2.37 MB (2378752 bytes) Detections: 107 Type: Executable File Path: %LOCALAPPDATA%\lollipop Group: Malware file Last Updated: April 19, 2020
6.	lollipop_03301529.exe	1516bdc7a7e693b49a01bfdba91e01d3	90
Name: lollipop_03301529.exe MD5: 1516bdc7a7e693b49a01bfdba91e01d3 Size: 3.81 MB (3819520 bytes) Detections: 90 Type: Executable File Path: %LOCALAPPDATA%\lollipop Group: Malware file Last Updated: August 20, 2016
7.	lollipop.exe	ea3334f4564e40dcbd9b0d9d34552024	87
Name: lollipop.exe MD5: ea3334f4564e40dcbd9b0d9d34552024 Size: 3.71 MB (3714048 bytes) Detections: 87 Type: Executable File Path: %LOCALAPPDATA%\lollipop Group: Malware file Last Updated: March 26, 2016
8.	lollipop.exe	0042eeaa9638c47e5266ca48132ae913	84
Name: lollipop.exe MD5: 0042eeaa9638c47e5266ca48132ae913 Size: 3.37 MB (3375104 bytes) Detections: 84 Type: Executable File Path: %LOCALAPPDATA%\lollipop Group: Malware file Last Updated: March 26, 2016
9.	lollipop_04181622.exe	244dd30974fc4f829a13b8d1fac89ad3	80
Name: lollipop_04181622.exe MD5: 244dd30974fc4f829a13b8d1fac89ad3 Size: 2.86 MB (2868224 bytes) Detections: 80 Type: Executable File Path: %LOCALAPPDATA%\lollipop Group: Malware file Last Updated: August 20, 2016
10.	lollipop_01230933.exe	7d85fdea6827d949a7cc1344a80fe50c	71
Name: lollipop_01230933.exe MD5: 7d85fdea6827d949a7cc1344a80fe50c Size: 2.55 MB (2558976 bytes) Detections: 71 Type: Executable File Path: %USERPROFILE%\lokale einstellungen\anwendungsdaten\lollipop Group: Malware file Last Updated: August 20, 2016
11.	lollipop.exe	3f604b4404be7f51f04acb7b1dabce55	70
Name: lollipop.exe MD5: 3f604b4404be7f51f04acb7b1dabce55 Size: 3.59 MB (3593216 bytes) Detections: 70 Type: Executable File Path: %LOCALAPPDATA%\lollipop Group: Malware file Last Updated: March 26, 2016
12.	lollipop.exe	e8645db170e4abced4a268f97508c98a	62
Name: lollipop.exe MD5: e8645db170e4abced4a268f97508c98a Size: 2.46 MB (2469888 bytes) Detections: 62 Type: Executable File Path: %LOCALAPPDATA%\lollipop Group: Malware file Last Updated: March 26, 2016
13.	lollipop.exe	0f074dceb553c9e8ddb082192bd30772	57
Name: lollipop.exe MD5: 0f074dceb553c9e8ddb082192bd30772 Size: 4.14 MB (4147200 bytes) Detections: 57 Type: Executable File Path: %LOCALAPPDATA%\lollipop Group: Malware file Last Updated: March 26, 2016
14.	lollipop.exe	2c2684159c9b3a34b13ae5c08a7c062e	55
Name: lollipop.exe MD5: 2c2684159c9b3a34b13ae5c08a7c062e Size: 2.58 MB (2586112 bytes) Detections: 55 Type: Executable File Path: %APPDATA%\lollipop Group: Malware file Last Updated: August 20, 2016
15.	lollipop.exe	9f3ba5ca4b0fe8d69c1cb82727a5a50d	51
Name: lollipop.exe MD5: 9f3ba5ca4b0fe8d69c1cb82727a5a50d Size: 4.77 MB (4770816 bytes) Detections: 51 Type: Executable File Path: %LOCALAPPDATA%\lollipop Group: Malware file Last Updated: March 26, 2016
16.	lollipop_04292001.exe	efc8f8a5c58d6d85cd186460b193b0fd	47
Name: lollipop_04292001.exe MD5: efc8f8a5c58d6d85cd186460b193b0fd Size: 4.52 MB (4528640 bytes) Detections: 47 Type: Executable File Path: %USERPROFILE%\configura??es locais\dados de aplicativos\lollipop Group: Malware file Last Updated: August 20, 2016
17.	lollipop_05062010.exe	0af7c5be58a67ac3d098ce137fa43c73	35
Name: lollipop_05062010.exe MD5: 0af7c5be58a67ac3d098ce137fa43c73 Size: 3.31 MB (3314659 bytes) Detections: 35 Type: Executable File Path: %USERPROFILE%\configuraci?n local\datos de programa\lollipop Group: Malware file Last Updated: August 20, 2016
18.	723c2264d7ebe25354f2b1ba124e42b07ba14c30ca5d38fae27b76020f974bae	4346196036df6d4bb56d6f95114ef1a4	34
Name: 723c2264d7ebe25354f2b1ba124e42b07ba14c30ca5d38fae27b76020f974bae MD5: 4346196036df6d4bb56d6f95114ef1a4 Size: 1.32 MB (1320992 bytes) Detections: 34 Path: E:\4672510415241216\723c2264d7ebe25354f2b1ba124e42b07ba14c30ca5d38fae27b76020f974bae Group: Malware file Last Updated: August 9, 2021
19.	lollipop.exe	1cff4f77ad9e41693e0104f9e56f688c	34
Name: lollipop.exe MD5: 1cff4f77ad9e41693e0104f9e56f688c Size: 3.62 MB (3620864 bytes) Detections: 34 Type: Executable File Path: %WINDIR%\impostazioni locali\dati applicazioni\lollipop Group: Malware file Last Updated: August 20, 2016
20.	lollipop.exe	d04b6a8d3d8bad6f4633a8ddd09c85df	32
Name: lollipop.exe MD5: d04b6a8d3d8bad6f4633a8ddd09c85df Size: 3.97 MB (3971584 bytes) Detections: 32 Type: Executable File Path: %USERPROFILE%\local settings\application data\lollipop Group: Malware file Last Updated: August 20, 2016
21.	lollipop_03121320.exe	30b4343424ba93fed75f9f9b2195d0b4	31
Name: lollipop_03121320.exe MD5: 30b4343424ba93fed75f9f9b2195d0b4 Size: 2.61 MB (2613760 bytes) Detections: 31 Type: Executable File Path: %USERPROFILE%\impostazioni locali\dati applicazioni\lollipop Group: Malware file Last Updated: August 20, 2016
22.	lollipop.exe	06b1d77b281f1636ea21863967427ec9	28
Name: lollipop.exe MD5: 06b1d77b281f1636ea21863967427ec9 Size: 3.87 MB (3878912 bytes) Detections: 28 Type: Executable File Path: %LOCALAPPDATA%\lollipop Group: Malware file Last Updated: March 26, 2016
23.	Lollipop.exe	4bbad0a89d8526106ca6b7423e21e8c8	28
Name: Lollipop.exe MD5: 4bbad0a89d8526106ca6b7423e21e8c8 Size: 2.61 MB (2618368 bytes) Detections: 28 Type: Executable File Path: %USERPROFILE%\Configuraci?n local\Datos de programa\Lollipop Group: Malware file Last Updated: August 20, 2016
24.	lollipop.exe	a8c1bf27edb90bf21875f6bdbfa4f526	27
Name: lollipop.exe MD5: a8c1bf27edb90bf21875f6bdbfa4f526 Size: 3.33 MB (3331584 bytes) Detections: 27 Type: Executable File Path: %USERPROFILE%\configuraci?n local\datos de programa\lollipop Group: Malware file Last Updated: August 20, 2016
25.	lollipop_04231403.exe	a4f65a4be87844d554d2af2eec8a1635	25
Name: lollipop_04231403.exe MD5: a4f65a4be87844d554d2af2eec8a1635 Size: 4.09 MB (4098560 bytes) Detections: 25 Type: Executable File Path: %SystemDrive%\Users\<username>\AppData\Local\Lollipop Group: Malware file Last Updated: August 20, 2016
26.	lollipop_03261342.exe	6e092fe93f0cf96b36a0f975c135abb7	24
Name: lollipop_03261342.exe MD5: 6e092fe93f0cf96b36a0f975c135abb7 Size: 3.19 MB (3195392 bytes) Detections: 24 Type: Executable File Path: %SystemDrive%\Users\<username>\appdata\local\lollipop Group: Malware file Last Updated: August 20, 2016
27.	%LOCALAPPDATA%\Lollipop\lollipop.bat
Name: %LOCALAPPDATA%\Lollipop\lollipop.bat Type: Batch file Group: Malware file
28.	%LOCALAPPDATA%\Lollipop\logo.ico
Name: %LOCALAPPDATA%\Lollipop\logo.ico Group: Malware file
29.	%LOCALAPPDATA%\Lollipop\Lollipop.lpd
Name: %LOCALAPPDATA%\Lollipop\Lollipop.lpd Group: Malware file
30.	%LOCALAPPDATA%\Lollipop\Lollipop_ps.lpd
Name: %LOCALAPPDATA%\Lollipop\Lollipop_ps.lpd Group: Malware file
31.	LollipopInstaller.exe	78931038c829f9c9ab11af8447a72bd9	0
Name: LollipopInstaller.exe MD5: 78931038c829f9c9ab11af8447a72bd9 Size: 620.03 KB (620032 bytes) Detections: 0 Type: Executable File Group: Malware file Last Updated: July 4, 2014

More files

Registry Details

Adware:Win32/Lollipop may create the following registry entry or registry entries:

File name without path

Lollipop.lnk

HKEY..\..\..\..{RegistryKeys}

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce lollipop = "%LOCALAPPDATA%\Lollipop\lollipop.exe" lollipop

HKEY_LOCAL_MACHINE or HKEY_CURRENT_USER\Software\Wow6432Node\Google\Chrome\Extensions\nchpfiddbhbdnagofhkjlaiaejmkdcla path = "nchpfiddbhbdnagofhkjlaiaejmkdcla.crx"

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run lollipop = "%LOCALAPPDATA%\Lollipop\lollipop.exe" lollipop

HKEY_LOCAL_MACHINE or HKEY_CURRENT_USER\Software\Google\Chrome\Extensions\nchpfiddbhbdnagofhkjlaiaejmkdcla path = "nchpfiddbhbdnagofhkjlaiaejmkdcla.crx"

HKEY_LOCAL_MACHINE or HKEY_CURRENT_USER\Software\Mozilla\Extensions [ec8030f7-c20a-464f-9b0e-13a3a9e97384] = "[773F14E2-D643-4642-905E-1124C9A2170B].xpi"

Software\Classes\Applications\lollipop.exe

Software\lollipop

HKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}

Lollipop

Directories

Adware:Win32/Lollipop may create the following directory or directories:

%APPDATA%\lollipop

%LOCALAPPDATA%\Lollipop

%UserProfile%\Local Settings\Application Data\Lollipop

%WINDIR%\system32\config\systemprofile\appdata\local\lollipop

%WINDIR%\syswow64\config\systemprofile\appdata\local\lollipop

Enigma Software Group Prevails Over Malwarebytes at the Ninth Circuit

Search

Change Region

Adware:Win32/Lollipop

Threat Scorecard

EnigmaSoft Threat Scorecard

The Adware:Win32/Lollipop Uses Three Different Attack Methods

SpyHunter Detects & Remove Adware:Win32/Lollipop

File System Details

Registry Details

Directories

Submit Comment

Trending

Rzfu Ransomware

'YouPorn' Email Scam

Rzkd Ransomware

Most Viewed

Is Lookmovie.io Safe?

How To Fix 'Printer Driver is Unavailable' Error

Discord Shows Black Screen when Sharing Screen