» googlechromeremoteplugin.dll
Overview
Analysis
File Details
Programs (1)

googlechromeremoteplugin.dll

GoogleChromeRemotePlugin

PINWID LTD

The module googlechromeremoteplugin.dll by PINWID has been detected as adware by 19 anti-malware scanners. This file is typically installed with the program Muvic Smartbar by Pinwid Ltd. which is a potentially unwanted software program.

File name:

Publisher:

PINWID LTD (signed and verified)

Product:

GoogleChromeRemotePlugin

Description:

nprt

Version:

1, 0, 0, 1

MD5:

914dd0ff7e81942af10d3d19e564b1d7

SHA-1:

636ba41cf3cb715760671c7fd4e654811c9ecacd

SHA-256:

5e1d1d8b9d4f128b807f58a257a4e48e25eef382f983ab894966e44c9025a84f

Scanner detections:

19 / 68

Status:

Adware

Analysis date:

4/26/2024 12:39:15 PM UTC (today)

Scan engine

Detection

Engine version

Lavasoft Ad-Aware

Adware.Linkury.B

819

Agnitum Outpost

PUA.Toolbar.Linkury

7.1.1

Avira AntiVirus

Adware/Linkury.D

7.11.112.250

AVG

Pindi

2015.0.3297

Baidu Antivirus

Adware.Win32.Linkury

4.0.3.14117

Bitdefender

Adware.Linkury.B

1.0.20.1555

Emsisoft Anti-Malware

Adware.Linkury

8.14.11.07.01

ESET NOD32

Win32/Toolbar.Linkury

8.10378

G Data

Adware.Linkury

14.11.24

McAfee

Artemis!914DD0FF7E81

5600.6953

MicroWorld eScan

Adware.Linkury.B

15.0.0.933

NANO AntiVirus

Riskware.Win32.Linkury.ddpups

0.28.2.61942

nProtect

Adware.Linkury.B

14.08.06.01

Panda Antivirus

PUP/LinkUry

14.11.07.01

Reason Heuristics

PUP.PINWID.Y

14.11.7.13

Sophos

Generic PUA JF

4.98

Trend Micro House Call

TROJ_GEN.F47V0130

7.2.311

VIPRE Antivirus

Trojan.Win32.Generic

28346

XVirus List

Win.Detected

2.3.31

File size:

166 KB (170,016 bytes)

Product version:

1, 0, 0, 1

Original file name:

nprt.dll

File type:

Dynamic link library (Win32 DLL)

Language:

English (United States)

Common path:

C:\users\{user}\appdata\local\smartbar\application\amfclgbdpgndipgoegfpkkgobahigbcl\googlechromeremoteplugin.dll

Digital Signature

Signed by:

PINWID LTD

Authority:

COMODO CA Limited

Valid from:

2/4/2014 5:00:00 PM

Valid to:

2/5/2015 4:59:59 PM

Subject:

CN=PINWID LTD, O=PINWID LTD, STREET=14 Shenkar Arie, L=HERZLIYA, S=NA, PostalCode=46733, C=IL

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00D9AC9FC9A1B1E8FD63013E3CCE7B0578

File PE Metadata

Compilation timestamp:

2/27/2013 7:39:05 AM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

3072:ZHSpZO6SL37VU8PevV6fnwA9/Pnnhvfx4ZceAi6xz/WhF75WrgURzjAx6:cufnN9fsHAtxz/IydM

Entry address:

0xB42C

Entry point:

8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 3A, 7D, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 8B, 45, 08, 33, C9, 3B, 04, CD, 58, 54, 02, 10, 74, 13, 41, 83, F9, 2D, 72, F1, 8D, 48, ED, 83, F9, 11, 77, 0E, 6A, 0D, 58, 5D, C3, 8B, 04, CD, 5C, 54, 02, 10, 5D, C3, 05, 44, FF, FF, FF, 6A, 0E, 59, 3B, C8, 1B, C0, 23, C1, 83, C0, 08, 5D, C3, E8, 57, 57, 00, 00, 85, C0, 75, 06, B8, C0, 55, 02, 10, C3, 83, C0, 08, C3, E8, 44, 57, 00, 00, 85, C0, 75... 
[+]

Entropy:

6.4604

Code size:

115.5 KB (118,272 bytes)

The file googlechromeremoteplugin.dll has been discovered within the following program.

Muvic Smartbar by Pinwid Ltd.

This adware injects advertising in the user's Internet browser by running as an extension and/or add-on. Ads are delivered in the form of banners and text-links (roll-overs) as well as some popup ads.

www.browse-search.com/?

80% remove it

Remove googlechromeremoteplugin.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.