PUP.Optional.ShoppingReport

ShoppingReport est un programme qui s’installe généralement à votre insu via le téléchargement de logiciels gratuits. Il prend des noms d’installation au format “ShopperReports”, “WindowShopper”,…

Caractéristiques :

– Il appartient à une famille de PUP Optionnels (Potentially Unwanted Program).
– Vendeur : PUP.Optional.

Actions principales :

– Il installe un programme d’extension pour le navigateur Mozilla Firefox (M2),
– Il s’installe en tant de Browser Helper Object de Navigateur internet (O2),
– Il s’installe en tant que Toolbar de Navigateur internet (O3),
– Il ajoute un boutons sur la barre d’outils principale d’Internet Explorer (O9),
– Il démarre une tâche planifiée en automatique (O39),
– Il s’installe en tant que programme (O42),
– Il crée des clés “Software” de Base de Registres.
– Il pollue la Base de Registres avec de nombreuses clés et valeurs de registre (O88 ),

Aperçu ZHPDiag :

—\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M2 – MFEP: prefs.js [fusion_builder_container hundred_percent=”yes” overflow=”visible”][fusion_builder_row][fusion_builder_column type=”1_1″ background_position=”left top” background_color=”” border_size=”” border_color=”” border_style=”solid” spacing=”yes” background_image=”” background_repeat=”no-repeat” padding=”” margin_top=”0px” margin_bottom=”0px” class=”” id=”” animation_type=”” animation_speed=”0.3″ animation_direction=”left” hide_on_mobile=”no” center_content=”no” min_height=”none”][Benjamin – uyvvos7r.default-1384142152815\sitefinder@sitefinder.com] [] Site Finder v (..)

—\\ Browser Helper Objects de navigateur (O2)
O2 – BHO: ShopperReports – {100EB1FD-D03E-47fd-81F3-EE91287F9465} . (.SmartShopper Inc. – ShopperReports.) — C:\Program Files\ShopperReports3\bin\3.0.497.0\ShopperReports.dll

—\\ Boutons situés sur la barre d’outils principale d’Internet Explorer (O9)
O9 – Extra button: ShopperReports – Compare product prices – {C5428486-50A0-4a02-9D20-520B59A9F9B2} . (.SmartShopper Inc. – ShopperReports.) — C:\Program Files\ShopperReports3\bin\3.0.497.0\ShopperReports.dll
O9 – Extra button: ShopperReports – Compare travel rates – {C5428486-50A0-4a02-9D20-520B59A9F9B3} . (.SmartShopper Inc. – ShopperReports.) — C:\Program Files\ShopperReports3\bin\3.0.497.0\ShopperReports.dll
O9 – Extra Button: Site Finder – {CCC7B152-1D8C-11E3-B2AD-F3EF3D58318D} . (.Site Finder.) — C:\Program Files (x86)\SiteFinder\SiteFinder.dll

—\\ Tâches planifiées en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [{D6D82D02-4A33-47FF-BAC1-6EEF76C440C5}] (…) — C:\Program Files (x86)\ShopperReports3\bin\3.0.517.0\ShopperReportsUninstaller.exe

—\\ Logiciels installés (O42)
O42 – Logiciel: ShopperReports – (.SmartShopper.) [HKLM] — ShopperReportsSA
O42 – Logiciel: WindowShopper – (…) [HKLM][64Bits] — WindowShopper

—\\ HKCU & HKLM Software Keys
[HKCU\Software\ShopperReports3]
[HKLM\Software\ShopperReports3]
[HKLM\Software\Wow6432Node\SiteFinder]
[HKCU\Software\AppDataLow\Software\WindowShopper]

—\\ Contenu des dossiers ProgramFiles/ProgramData (O43)
O43 – CFD:Common File Directory —-D- C:\Program Files\ShopperReports3
O43 – CFD: 13/04/2011 – 20:19:58 – [0,086] —-D- C:\Program Files (x86)\ShoppingReport2
O43 – CFD: 11/08/2013 – 17:18:25 – [1,260] —-D C:\Program Files (x86)\WindowShopper
O43 – CFD: 11/08/2013 – 17:18:25 – [0,001] —-D C:\Users\Véronique\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WindowShopper

—\\ Scan Additionnel (O88 )
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ShopperReportsSA]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{100EB1FD-D03E-47fd-81F3-EE91287F9465}]
[HKLM\SOFTWARE\Classes\ShopperReports.AsyncReporter]
[HKLM\SOFTWARE\Classes\ShopperReports.AsyncReporter.1]
[HKLM\SOFTWARE\Classes\ShopperReports.CntntDic]
[HKLM\SOFTWARE\Classes\ShopperReports.CntntDic.1]
[HKLM\SOFTWARE\Classes\ShopperReports.CntntDisp]
[HKLM\SOFTWARE\Classes\ShopperReports.CntntDisp.1]
[HKLM\SOFTWARE\Classes\ShopperReports.Dwnldr]
[HKLM\SOFTWARE\Classes\ShopperReports.Dwnldr.1]
[HKLM\SOFTWARE\Classes\ShopperReports.HbAx]
[HKLM\SOFTWARE\Classes\ShopperReports.HbAx.1]
[HKLM\SOFTWARE\Classes\ShopperReports.HbGuru]
[HKLM\SOFTWARE\Classes\ShopperReports.HbGuru.1]
[HKLM\SOFTWARE\Classes\ShopperReports.HbInfoBand]
[HKLM\SOFTWARE\Classes\ShopperReports.HbInfoBand.1]
[HKLM\SOFTWARE\Classes\ShopperReports.IEButton]
[HKLM\SOFTWARE\Classes\ShopperReports.IEButton.1]
[HKLM\SOFTWARE\Classes\ShopperReports.IEButtonA]
[HKLM\SOFTWARE\Classes\ShopperReports.IEButtonA.1]
[HKLM\SOFTWARE\Classes\ShopperReports.KOPFF]
[HKLM\SOFTWARE\Classes\ShopperReports.KOPFF.1]
[HKLM\SOFTWARE\Classes\ShopperReports.MozillaNvgtnTrpr]
[HKLM\SOFTWARE\Classes\ShopperReports.MozillaNvgtnTrpr.1]
[HKLM\SOFTWARE\Classes\ShopperReports.MozillaPSExecuter]
[HKLM\SOFTWARE\Classes\ShopperReports.MozillaPSExecuter.1]
[HKLM\SOFTWARE\Classes\ShopperReports.ReportData]
[HKLM\SOFTWARE\Classes\ShopperReports.ReportData.1]
[HKLM\SOFTWARE\Classes\ShopperReports.Reporter]
[HKLM\SOFTWARE\Classes\ShopperReports.Reporter.1]
[HKLM\SOFTWARE\Classes\ShopperReports.RprtCtrl]
[HKLM\SOFTWARE\Classes\ShopperReports.RprtCtrl.1]
[HKLM\SOFTWARE\Classes\ShopperReports.Scopes]
[HKLM\SOFTWARE\Classes\ShopperReports.Scopes.1]
[HKLM\SOFTWARE\Classes\ShopperReports.Stock]
[HKLM\SOFTWARE\Classes\ShopperReports.Stock.1]
[HKLM\SOFTWARE\Classes\ShopperReports.TriggerImmidiate]
[HKLM\SOFTWARE\Classes\ShopperReports.TriggerImmidiate.1]
[HKLM\SOFTWARE\Classes\ShopperReports.TriggerImmidiateOrRandomTS]
[HKLM\SOFTWARE\Classes\ShopperReports.TriggerImmidiateOrRandomTS.1]
[HKLM\SOFTWARE\Classes\ShopperReports.TriggerOnceInDay]
[HKLM\SOFTWARE\Classes\ShopperReports.TriggerOnceInDay.1]
[HKLM\SOFTWARE\Classes\Interface\{17BF1E05-C0E8-413C-BD1F-A481EEA3B8E9}]
[HKLM\SOFTWARE\Classes\TypeLib\{CDCA70D8-C6A6-49EE-9BED-7429D6C477A2}]
[HKLM\SOFTWARE\Classes\TypeLib\{D136987F-E1C4-4CCC-A220-893DF03EC5DF}]
[HKLM\SOFTWARE\Classes\TypeLib\{F1A1892C-2A6C-4817-98B4-FF81443CBA20}]
[HKLM\SOFTWARE\Classes\CLSID\{258C9770-1713-4021-8D7E-1F184A2BD754}]
[HKLM\SOFTWARE\Classes\CLSID\{3E2DFD6A-4E20-4D4C-AA8B-E1F9DBEF3C80}]
[HKLM\SOFTWARE\Classes\CLSID\{714E0876-FCEE-49CE-A429-B9AD8AEFCB56}]
[HKLM\SOFTWARE\Classes\CLSID\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939}]
[HKLM\SOFTWARE\Classes\CLSID\{DD15BCC0-5FE9-4690-A957-99FA60ED9D26}]
[HKLM\SOFTWARE\Classes\Interface\{030C9927-10FC-4169-97A2-55BECD5D88D8}]
[HKLM\SOFTWARE\Classes\Interface\{0EB3F101-224A-4B2B-9E5B-DF720857529C}]
[HKLM\SOFTWARE\Classes\Interface\{A1F1ECD3-4806-44C6-A869-F0DADF11C57C}]
[HKLM\SOFTWARE\Classes\TypeLib\{B035BA6B-57CD-4F72-B545-65BE465FCAF6}]
[HKLM\SOFTWARE\Classes\TypeLib\{D44FD6F0-9746-484E-B5C4-C66688393872}]
[HKLM\SOFTWARE\Classes\TypeLib\{F244A744-534D-4A46-855F-C0C7E9F27DAA}]
[HKLM\SOFTWARE\Classes\ShoppingReport2.HbAx]
[HKLM\SOFTWARE\Classes\ShoppingReport2.HbAx.1]
[HKLM\SOFTWARE\Classes\ShoppingReport2.HbInfoBand]
[HKLM\SOFTWARE\Classes\ShoppingReport2.HbInfoBand.1]
[HKLM\SOFTWARE\Classes\ShoppingReport2.IEButton]
[HKLM\SOFTWARE\Classes\ShoppingReport2.IEButton.1]
[HKLM\SOFTWARE\Classes\ShoppingReport2.IEButtonA]
[HKLM\SOFTWARE\Classes\ShoppingReport2.IEButtonA.1]
[HKLM\SOFTWARE\Classes\ShoppingReport2.RprtCtrl]
[HKLM\SOFTWARE\Classes\ShoppingReport2.RprtCtrl.1]
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{DB38E21A-0133-419d-92AD-ECDFD5244D6D}]
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EB620C54-E229-4942-87CE-E717109FC8C6}]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{258C9770-1713-4021-8D7E-1F184A2BD754}]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ShoppingReport2]
[HKLM\SOFTWARE\ShoppingReport2]
[HKCU\Software\Microsoft\Internet Explorer\Explorer Bars\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939}]
[HKCU\Software\ShoppingReport2]
[HKCU\Software\ShoppingReport2\InstallComplete]
C:\Users\Coolman\AppData\Roaming\Mozilla\Firefox\Profiles\uyvvos7r.default-1384142152815\Extensions\sitefinder@sitefinder.com
C:\Users\Coolman\AppData\LocalLow\ShoppingReport2
C:\Program Files\ShoppingReport2
C:\Program Files\ShoppingReport
C:\Program Files\shoppingreport\bin\2.0.21\shoppingreport.dll
C:\Program Files\shoppingreport\bin\2.0.22\shoppingreport.dll
C:\Program Files\shoppingreport\bin\2.0.24\shoppingreport.dll
C:\Program Files\shoppingreport\bin\2.0.25\shoppingreport.dll
C:\Program Files\shoppingreport\bin\2.5.0\shoppingreport.dll
C:\Program Files\shoppingreport\bin\2.6.56\shoppingreport.dll

 

Liens :

www.inforumatique.fr
www.exterminate-it.com
www.systemlookup.com

Alias :

Adware:Win32/ShopperReports [Microsoft]
Adware:Win32/ZangoShoppingreports [Microsoft]
Adware.Hotbar [Symantec][PC Tools]
Adware.Shopper.Q [PC Tools]
SmartShopper [McAfee]
Mal/Generic-A [Sophos]
not-a-virus:AdWare.Win32.Shopper (Kaspersky Lab) (Ikarus)

Supprimer (Remove) :

– Supprimer l’extension “ShoppingReport” de tous les navigateurs installés,
– Supprimer le plugin “ShoppingReport” de tous les navigateurs installés,
– Supprimer le logiciel “WindowShopper” via le panneau de configuration Windows,
– Supprimer le logiciel “ShoppingReport” via le panneau de configuration Windows,
– Modifier les pages de recherche et de démarrage de tous les navigateurs installés,
– Vider le cache des navigateurs
Nettoyer avec ZHPCleaner[/fusion_builder_column][/fusion_builder_row][/fusion_builder_container]

Laisser un commentaire

Votre adresse e-mail ne sera pas publiée. Les champs obligatoires sont indiqués avec *

Retour haut de page