Limited Time!
Totally FREE Web Design!
Click here!

Parasite: Httper

This record last updated Tue Sep 20 2005 00:34:15

PLEASE NOTE: Due to the overwhelming extent of this problem and the unbelievable volume of email we have received, we regret that we cannot respond to questions about browser parasites at this time. If you have attempted to contact us about this parasite please accept our apology for not responding. "Thank you's" are always appreciated ;-)

Description

Httper is a pop-up opener and error-page hijacker implemented as an Internet Explorer Browser Helper Object. When enabled by its controlling server config.url404.com, Httper will redirect any web server error page to a sponsor’s site.

Distribution

Installed by the InternetWasher parasite, along with Zipclix. Both programs are controlled by popupblockade.com.

What it does

Advertising

Yes. At the time of writing this feature is not in use, but the software can be directed by its controlling server to show periodic advertisements.

Privacy violation

No.

Security issues

Yes. Can be directed by its controlling server to download and execute arbitrary code as a self-updating feature.

Stability problems

No.

Removal

There should be an ‘Httper’ entry in the Control Panel’s Add/Remove Programs feature. This works correctly.

Manual removal

Open a DOS command prompt window (from Start->Programs->Accessories) and enter the following commands:

cd "%WinDir%\System"
regsvr32 /u "\Program Files\Httper\httper.dll"

After restarting the computer you should be able to delete the Httper folder inside Program Files.

You can also delete the key HKEY_CURRENT_USER\Software\Httper in the registry (Start->Run->regedit) to clean up if you like.