Threat Scorecard

Threat Level: 50 % (Medium)
Infected Computers: 11
First Seen: July 24, 2009
Last Seen: May 6, 2019
OS(es) Affected: Windows

ShopNav is a browser hijacker that modifies web browser essential search settings. It changes default search and error pages, alters address bar search options and affects user Internet experience. The threat redirects a web browser to ShopNav controlling servers. It also collects information about performed web searches and user system accounts and sends it to a predetermined remote server. ShopNav may download and install arbitrary applications and can silently update itself via the Internet. The threat is bundled with some parasites and advertising-supported products such as Grokster file sharing program. It automatically runs on every Windows startup.


15 security vendors flagged this file as malicious.

Anti-Virus Software Detection
Sophos Troj/FakeVir-JX
Kaspersky not-a-virus:FraudTool.Win32.WinSpywareProtect.dw
Ikarus Trojan.Win32.FakeSpypro
Fortinet Misc/WinSpywareProtect
F-Secure FraudTool.Win32.WinSpywareProtect.dw
eTrust-Vet Win32/FakeAV.AAM
eSafe Win32.Downloader.mis
DrWeb Trojan.Fakealert.3907
CAT-QuickHeal FraudTool.WinSpywareProtect.d (Not a Virus)
BitDefender Trojan.Fakealert.AVK
Avast Win32:Adware-gen
Antiy-AVL FraudTool/Win32.WinSpywareProtect
Symantec Downloader.MisleadApp

SpyHunter Detects & Remove ShopNav

File System Details

ShopNav may create the following file(s):
# File Name MD5 Detections
1. iehelper.dll a21a523d60ac61dc26f882d4377966cb 0
2. iehelper.dll f57a0903af695d65f9f52b09f105fb9e 0
3. iehelper.dll 8467bad3682ed3ab68971181bf0fb174 0
4. enhtb.dll fe6e6a62a572e84e9eaee12eb3ee8a2b 0
5. extract.exe d1ed20d1438435b9bd8d28ab93ed4754 0

Related Posts


Most Viewed