shopathomewatcher.exe
By ShopAtHome.com (Signed)
| MD5: | 064f5aadef429c1a47bf9491203b67c7 |
| SHA1: | c34c6b3853687729f7241e54f21f71c36c7ba173 |
| SHA256: | 92afca5432f3e4ef91e8c87cf7135d1ed131f3dcbb5b7f449336b2317b5c4105 |
Warning 3 antivirus scanners has detected malware.
What is shopathomewatcher.exe?
shopathomewatcher.exe is part of the Shop at Home Toolbar. When loaded by IE, it will install a toolbar in the top of your Internet Explore web browser. By installing itself, the toolbar has full access to the a loaded web page's HTML content and knowledge of the URL the user is currently viewing; it can also manipuate these depending on the intended function of the toolbar.
About shopathomewatcher.exe (from ShopAtHome.com)
“ShopAtHome.com is one of the largest websites offering free online coupons, grocery coupons, cash back rewards, free samples, restaurant coupons and contests. The site is unique from other online dea”
Details
| File name: | shopathomewatcher.exe |
| Typical file path: | C:\users\user\appdata\roaming\shopathome\shopathomehelper\shopathomewatcher.exe |
| Size: | 101.43 KB (103,864 bytes) |
| Certificate |
| Issued to: | ShopAtHome.com |
| Authority (CA): | VeriSign |
| Expiration date: | Friday, June 21, 2013 |
| Digital DNA |
| File packed: | No |
| .NET CLR: | No |
More details
Programs
The following program will install this file
This is the helper application that is installed with the ShopAtHome Toolbar (Browser App). "When you visit a website, whether typing in the URL or clicking a link (including from a search engine results page), the Browser App recognizes whether the URL is that of an Affiliate Store, and, if so, may redirect you through the affiliate network site to the Affiliate Store's website, at which time, a tracking cookie will be placed in your b...
Behaviors
Startup files (all users) run
Runs under the registry key 'HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run'
- 'ShopAtHomeWatcher' → C:\users\user\appdata\Roaming\ShopAtHome\ShopAtHomeHelper\ShopAtHomeWatcher.exe
Malware detections
Based on 40+ industry antivirus scanners, 3 of them detected the following malware.
| Antivirus engine | Engine version | Detection |
| Norman |
6.08.06 |
W32/ShopAtHome.CR |
| Trend Micro HouseCall |
9.700.0.1001 |
TROJ_GEN.RCBH1KQ |
| Vba32 AntiVirus |
3.12.18.4 |
Signed-Adware.Sahat |
Resource utilization
(Note: statistics below are averages based on a minimum sample size of 200 unique participants)
Averages
| CPU |
| Total CPU: | 0.00159973% | |
| Kernel CPU: | 0.00083785% | |
| User CPU: | 0.00076188% | |
| Kernel CPU time: | 19,418 ms/min | |
| CPU cycles: | 2,815,809/sec | |
| Memory |
| Private memory: | 864 KB | |
| Private (maximum): | 536 KB | |
| Private (minimum): | 532 KB | |
| Non-paged memory: | 864 KB | |
| Virtual memory: | 33.86 MB | |
| Virtual memory (peak): | 37.23 MB | |
| Working set: | 556 KB | |
| Working set (peak): | 3.65 MB | |
| Page faults: | 5,194,666/min | |
| I/O |
| I/O other transfer: | 0 Bytes/sec | |
| I/O other operations: | 1/sec | |
| Resource allocations |
| Threads: | 3 | |
| Handles: | 59 | |
| GUI GDI count: | 9 | |
| GUI GDI peak: | 9 | |
| GUI USER count: | 2 | |
| GUI USER peak: | 3 | |
Process properties
| Integrety level: | Medium |
| Platform: | 32-bit |
| Command line: | C:\users\user\appdata\roaming\shopathome\\shopathomehelper\\shopathomewatcher.exe |
| Owner: | User |
Distribution by Windows OS
| OS version | distribution |
| Windows 7 Home Premium |
50.00% |
|
| Windows 7 Ultimate N |
50.00% |
|
Distribution by country
United States installs about 100.00% of shopathomewatcher.exe.
