Home Malware Programs Adware i-Shop Ads

i-Shop Ads

Posted: September 24, 2015

Threat Metric

Threat Level: 2/10
Infected PCs: 817
First Seen: September 24, 2015
Last Seen: February 26, 2023
OS(es) Affected: Windows

The online shopping is a flourishing business, and many people enjoy it for its convenience. You should know that some programs may promise you to help you find the best deals, but they may be useless and annoying. An example of such application is i-Shop. It is typical adware that inserts commercial materials in Google Chrome, Mozilla Firefox and Internet Explorer. Hardly anyone downloads i-Shop intentionally: in fact, it is not easy to find a platform that hosts this web extension. It most often travels in software bundles as an addition towards some third-party freeware. You may be tempted to keep it by the promise that it will show you the best deals out there, which in turn will save you money on your purchases. However, if you perform the setup process through the "Quick" guide, you may notice the presence of the adware only after it modifies your web clients. What you will see is a large amount of pop-ups, banners, sponsored video commercials and cleverly positioned in-text ads. It will not be too surprising if the displayed offers meet your current needs because they are all based on your surfing and searching histories. The ads may take you towards partner sites, some of which may indeed attempt to sell you some products. However, a part of the ads may be not so safe since they may lead to potentially dangerous parts of the web. In addition, the fact that the marketing elements come in such large quantities may result in a slower working speed of the web clients, and some occasional crashes are also possible. If you are dissatisfied with the ads, you should use a dedicated anti-malware tool to delete i-Shop.

Aliases

Generic36.CAEC [AVG]PossibleThreat.SB!tr [Fortinet]Adware:Win32/Bayads [Microsoft]Trojan/Win32.TSGeneric [Antiy-AVL]BehavesLike.Win32.Downloader.cc [McAfee-GW-Edition]TROJ_GEN.R00GC0DIL15 [TrendMicro]Adware.Searcher.2966 [DrWeb]Generic PUA LN (PUA) [Sophos]Win32:Adware-gen [Adw] [Avast]Artemis!AC811A87C8A9 [McAfee]

Technical Details

File System Modifications

Tutorials: If you wish to learn how to remove malware components manually, you can read the tutorials on how to find malware, kill unwanted processes, remove malicious DLLs and delete other harmful files. Always be sure to back up your PC before making any changes.

The following files were created in the system:



setup.exe File name: setup.exe
Size: 900.6 KB (900608 bytes)
MD5: ac811a87c8a9064b89c35ef43780c2d4
Detection count: 16
File type: Executable File
Mime Type: unknown/exe
Group: Malware file
Last Updated: August 17, 2022

Registry Modifications

The following newly produced Registry Values are:

Regexp file mask%WINDIR%\System32\Tasks\i-Shop UpdaterHKEY..\..\..\..{RegistryKeys}Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\ishop.exeSoftware\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\ishopup.exeSOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\i-Shop UpdaterSoftware\Microsoft\Windows\CurrentVersion\Run\i-ShopHKEY_LOCAL_MACHINE\Software\[APPLICATION]\Microsoft\Windows\CurrentVersion\Uninstall..{Uninstaller}ishop

Additional Information

The following directories were created:
%PROGRAMFILES%\ishop\ishop%PROGRAMFILES(x86)%\ishop\ishop
Loading...