home

easyclickpg.dll

OCEAN INC Co.,Ltd.

The module easyclickpg.dll by OCEAN INC Co.,Ltd has been detected as adware by 23 anti-malware scanners.
Publisher:
easyclickpg  (signed by OCEAN INC Co.,Ltd.)

Product:
easyclickpg

Version:
1.00

MD5:
b44bdd5d6baf71a96b22edb8ae5d64b1

SHA-1:
b89a96fa315b2837a478b74ed46baf699e6d6118

Scanner detections:
23 / 68

Status:
Adware

Analysis date:
5/8/2024 9:21:53 PM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Trojan.GenericKD.1659176
699

Avira AntiVirus
TR/Msidebar.C.205
7.11.194.194

avast!
Win32:VB-ACAG [Trj]
2014.9-150307

Bitdefender
Trojan.GenericKD.1659176
1.0.20.330

Comodo Security
UnclassifiedMalware
20343

Emsisoft Anti-Malware
Trojan.GenericKD.1659176
8.15.03.07.10

ESET NOD32
Win32/Msidebar (variant)
9.10865

Fortinet FortiGate
W32/Msidebar.A
3/7/2015

F-Secure
Trojan.GenericKD.1659176
11.2015-07-03_7

G Data
Trojan.GenericKD.1659176
15.3.24

IKARUS anti.virus
Trojan.Win32.Msidebar
t3scan.1.8.5.0

Malwarebytes
Trojan.Msidebar
v2015.03.07.10

McAfee
Artemis!B44BDD5D6BAF
5600.6833

Microsoft Security Essentials
Trojan:Win32/Msidebar.C
1.11202

MicroWorld eScan
Trojan.GenericKD.1659176
16.0.0.198

NANO AntiVirus
Trojan.Win32.Msidebar.ctyqvn
0.28.6.63850

nProtect
Trojan.GenericKD.1659176
14.12.11.01

Qihoo 360 Security
Win32/Trojan.fec
1.0.0.1015

Reason Heuristics
PUP.DevineMedia
15.3.7.22

Sophos
Mal/Generic-S
4.98

Trend Micro House Call
TROJ_GEN.R031C0DH714
7.2.66

Trend Micro
TROJ_GEN.R031C0DH714
10.465.07

VIPRE Antivirus
Trojan.Win32.Generic
35648

File size:
95.9 KB (98,184 bytes)

Product version:
1.00

Copyright:
easyclickpg

Original file name:
easyclickpg.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\easyclick\easyclickpg.dll

Digital Signature
Signed by:
OCEAN INC Co.,Ltd.

Authority:
Thawte, Inc.

Valid from:
9/4/2013 9:00:00 AM

Valid to:
10/5/2014 8:59:59 AM

Subject:
CN="OCEAN INC Co.,Ltd.", OU=Dev Team, O="OCEAN INC Co.,Ltd.", L=Guro-gu, S=Seoul, C=KR

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
1594E13BEBF4FD90B0922EE4CE3369D8

File PE Metadata
Compilation timestamp:
10/15/2013 4:53:46 PM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

CTPH (ssdeep):
1536:FYzhp+u5AkKPZ+huZXze+xZcJ/dSi1nWa3x/RfCJ4Pc2AV6PMVUoriN0Ia:FwhprCev/dSiL/RfCJ4Pc2ZPMVoNm

Entry address:
0x1FB0

Entry point:
5A, 68, 5C, 47, 01, 11, 68, 60, 47, 01, 11, 52, E9, E9, FF, FF, FF, 00, 00, 00, 48, 00, 00, 00, 30, 00, 00, 00, 40, 00, 00, 00, 00, 00, 00, 00, 79, 49, 99, 97, 21, 6E, AC, 41, B6, DF, 8C, 1F, C3, 94, DF, A8, 00, 00, 00, 00, 00, 00, 2B, 00, 00, 00, 00, 00, 00, 00, 00, 00, 65, 61, 73, 79, 63, 6C, 69, 63, 6B, 63, 66, 67, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, C0, 00, 00, 00, 90, 00, 00, 00, 00, 00, 00, 00, 02, 00, 00, 00, 05, 00, 00, 00, 35, 45, 3A, F9, 76, 54, E1, 4E, BE, 37, E3, D1, ED, 62, 72, 96...
 
[+]

Entropy:
5.6663

Developed / compiled with:
Microsoft Visual Basic v6.0

Code size:
72 KB (73,728 bytes)

Remove easyclickpg.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.