» shopathomehelperps.dll
Overview
Analysis
File Details
Programs (1)

shopathomehelperps.dll

ShopAtHome.com (Belcaro Group, Inc)

The module shopathomehelperps.dll by ShopAtHome.com (Belcaro Group, Inc) has been detected as a potentially unwanted program by 13 anti-malware scanners. This file is typically installed with the program ShopAtHome.com Helper by Belcaro Group Inc. which is a potentially unwanted software program.

File name:

Publisher:

ShopAtHome.com (Belcaro Group, Inc) (signed and verified)

MD5:

2128687c93e8cc908e7e3d81301d24b5

SHA-1:

3c082f33758269a3e82a0cd3fdc6f6ab87ff4db5

SHA-256:

cfdc7833c887831620a7916120b285b7dfcfb5252632ab34ef481b08120a974c

Scanner detections:

13 / 68

Status:

Potentially unwanted

Analysis date:

5/14/2024 5:26:09 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Gen:Variant.Adware.ShopAtHome.1

774

Avira AntiVirus

TR/Trash.Gen

7.11.30.172

Bitdefender

Gen:Variant.Adware.ShopAtHome.1

1.0.20.1785

Dr.Web

Trojan.Damaged.1

9.0.1.0357

Emsisoft Anti-Malware

Gen:Variant.Adware.ShopAtHome

8.14.12.23.08

F-Secure

Gen:Variant.Adware.ShopAtHome.1

11.2014-23-12_3

G Data

Gen:Variant.Adware.ShopAtHome

14.12.22

Malwarebytes

PUP.Optional.ShopAtHome.A

v2014.12.23.08

MicroWorld eScan

Gen:Variant.Adware.ShopAtHome.1

15.0.0.1071

Reason Heuristics

PUP.ShopAtHomeBelcaroGroup.S

14.7.17.10

Sophos

SAHAgent

4.98

SUPERAntiSpyware

Trojan.Agent/Gen-Nullo[Short]

10160

VIPRE Antivirus

Threat.4729122

29708

File size:

48.6 KB (49,808 bytes)

File type:

Dynamic link library (Win32 DLL)

Common path:

C:\users\{user}\appdata\roaming\shopathome\shopathomehelper\shopathomehelperps.dll

Digital Signature

Signed by:

ShopAtHome.com (Belcaro Group, Inc)

Authority:

Symantec Corporation

Valid from:

5/22/2013 4:30:00 AM

Valid to:

6/7/2014 4:29:59 AM

Subject:

CN="ShopAtHome.com (Belcaro Group, Inc)", O="ShopAtHome.com (Belcaro Group, Inc)", L=Greenwood Village, S=Colorado, C=US, SERIALNUMBER=19871692567, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.2=Colorado, OID.1.3.6.1.4.1.311.60.2.1.3=US

Issuer:

CN=Symantec Class 3 Extended Validation Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:

05AACC1DBAF989DD6997926C9649BAEF

File PE Metadata

Compilation timestamp:

6/12/2013 9:36:29 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

768:WQR/75fcMXX4Z75QhoN0E/dMsrGnTEDM/7vy0NPWsY+7no6PMn:HDv4Z7CoNBdMsUNO0RWtvn

Entry address:

0x13D6

Entry point:

8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 13, 13, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 6A, 00, FF, 15, 5C, 70, 00, 10, C3, FF, 15, 60, 70, 00, 10, C2, 04, 00, 8B, FF, 56, FF, 35, 48, B7, 00, 10, FF, 15, 64, 70, 00, 10, 8B, F0, 85, F6, 75, 1B, FF, 35, 8C, C2, 00, 10, FF, 15, 54, 70, 00, 10, 8B, F0, 56, FF, 35, 48, B7, 00, 10, FF, 15, 68, 70, 00, 10, 8B, C6, 5E, C3, A1, 44, B7, 00, 10, 83, F8, FF, 74, 16, 50, FF, 35, 94, C2, 00, 10, FF, 15, 54, 70, 00, 10... 
[+]

Entropy:

6.0748

Code size:

18.5 KB (18,944 bytes)

The file shopathomehelperps.dll has been discovered within the following program.

ShopAtHome.com Helper by Belcaro Group Inc.

This is the helper application that is installed with the ShopAtHome Toolbar (Browser App).

www.shopathome.com

68% remove it

Remove shopathomehelperps.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.