Threat Information for "FullContext Pshope"

Removal Top

StopSign will automatically remove this infection with a paid membership.

Summary Top
  • Name: FullContext Pshope
  • Aliases:
  • Date Discovered: 2006-08-10
  • Protection Added: 2006-08-10
Description Top
-- Damage/Intrusion/Annoyance

1: Displays targeted popup advertisements [SPYWARE ONLY]
2: Autoruns at startup without an option to be disabled

-- Propagation/Saturation

1: Bundled with third-party applications [SPYWARE ONLY]
2: Significantly slows down the computer
3: Creates new files
Technical Details Top
  • Added Directory/File:
    FilePath: %CACHE%\ac2_0006*.exe
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Batty\Uninstall.exe
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\PSHope
  • Added Directory/File:
    FilePath: %CACHE%\echo*.exe
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Batty\datahtml.sdf
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\PSHope\PSHope.exe
  • Added Directory/File:
    FilePath: %TEMPDIR%\minisetup?.exe
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Batty\Batty.dll
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Batty2
  • Added Directory/File:
    FilePath: %TEMPDIR%\axsetup?.exe
  • Added Directory/File:
    FilePath: %CACHE%\setup*.exe
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Batty
  • Added Directory/File:
    FilePath: %SYSTEMDIR%\BattyRun.dll
  • Added Directory/File:
    FilePath: %CACHE%\minisetup*.exe
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Batty\datajava.sdf
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\PSHope\Uninstall.exe
  • Added Directory/File:
    FilePath: %TEMPDIR%\setup.exe
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Batty\Batty.exe
  • Added Directory/File:
    FilePath: %SYSTEMDIR%\BattyRun2.dll
  • Added Directory/File:
    FilePath: %TEMPDIR%\echo.exe
  • Added Directory/File:
    FilePath: %CACHE%\axsetup*.exe
  • Added Directory/File:
    FilePath: %PROGRAMFILESDIR%\Batty2\Batty2.dll
  • Added Directory/File:
    FilePath: %TEMPDIR%\ac2_0006.exe
  • Added Registry Key:
    Key: HKLM\SOFTWARE\Classes\TypeLib\{1B8B502E-455B-4022-BE27-736D9F808A18}
  • Added Registry Key:
    Key: HKCU\Software\PSHope
  • Added Registry Key:
    Key: HKCU\Software\Batty2
  • Added Registry Key:
    Key: HKLM\Software\CLASSES\CLSID\{994D478A-45D0-4DB4-AE27-738B1E346F99}
  • Added Registry Key:
    Key: HKLM\SOFTWARE\Classes\CLSID\{994D478A-45D0-4DB4-AE27-738B1E346E99}
  • Added Registry Key:
    Key: HKCU\Software\Batty
  • Added Registry Value:
    Key: HKLM\%CURRENTVERSIONREG% Value: Client
  • Added Registry Value:
    Key: HKCU\%CURRENTVERSIONREG%\Run Value: PSHope
  • Added Registry Data:
    Key: HKLM\SOFTWARE\Classes\PROTOCOLS\Filter\text/html Value: [RANDOM VALUE] Data: {994D478A-45D0-4DB4-AE27-738B1E346F99}
  • Added Registry Data:
    Key: HKLM\SOFTWARE\Classes\PROTOCOLS\Filter\text/html Value: [RANDOM VALUE] Data: {994D478A-45D0-4DB4-AE27-738B1E346E99}
  • Added Registry Data:
    Key: HKLM\SOFTWARE\Classes\PROTOCOLS\Filter\text/html Value: [RANDOM VALUE] Data: PortHope.Decoder
  • Added Registry Data:
    Key: HKLM\SOFTWARE\Classes\PROTOCOLS\Filter\text/html Value: [RANDOM VALUE] Data: Batty.Filter