Dmitry Sokolov recommends UnHackMe!
UnHackMe is a powerful tool against malware.
UnHackMe quickly removes rootkits/malware/adware/browser hijack issues!
(5 / 5)
a variant of Win32/PriceGong.A also known as Adware.Shopper.305.
Malware Analysis of a variant of Win32/PriceGong.A
Created files:
%Appdata%\Mozilla\Firefox\Profiles\profile.default\extensions\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}\install.rdf
%Appdata%\Mozilla\Firefox\Profiles\profile.default\extensions\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}\modules\pg_tab_wrapper.js
%Appdata%\Mozilla\Firefox\Profiles\profile.default\extensions\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}\plugins\npPriceGong_FF.dll
%Appdata%\Mozilla\Firefox\Profiles\profile.default\user.js
%Common Startmenu%\Programs\PriceGong\PriceGong Contact Us.lnk
Autostart registry keys:
HKLM\Software\Classes\CLSID\{1631550F-191D-4826-B069-D9439253D926}\InprocServer32\: “%Program Files%\PriceGong\2.6.8\PriceGongIE.dll”
HKLM\Software\Classes\CLSID\{D2A2595C-4FE4-4315-AA9B-19DBD6271B71}\InprocServer32\: “%Program Files%\PriceGong\2.6.8\PriceGongIE.dll”
HKLM\Software\Google\Chrome\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok\path: “%Program Files%\PriceGong\2.6.8\pricegong.crx”
HKLM\Software\Google\Chrome\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok\version: “5.6.8”
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong\DisplayName: “PriceGong 2.6.8”
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong\UninstallString: “%Program Files%\PriceGong\uninst.exe”
Detected by UnHackMe:
NPPRICEGONG_FF.DLL
Default location: %APPDATA%\MOZILLA\FIREFOX\PROFILES\PROFILE.DEFAULT\EXTENSIONS\{8A9386B4-E958-4C4C-ADF4-8F26DB3E4829}\PLUGINS\NPPRICEGONG_FF.DLL
Dropper hash(md5): 4bf726742c665ea654677c3dfd28e200
UnHackMe
removes malware invisible for your antivirus!
UnHackMe is 100% CLEAN, which means it does not contain any form of malware, including adware, spyware, viruses, trojans and backdoors. VirusTotal (0/56).
System Requirements: Windows 2000-Windows 8.1/10. UnHackMe uses minimum of computer resources.