home

InfoAtomsClientIE.dll

InfoAtoms

InfoAtoms Inc.

This is part of the InfoAtoms browser extension which will display variopus forms of advertising in the web browser by injecting new ads such as banner, text-links and search results. The module InfoAtomsClientIE.dll by InfoAtoms has been detected as adware by 12 anti-malware scanners.
Publisher:
InfoAtoms Inc.  (signed and verified)

Product:
InfoAtoms

Version:
1.5.0.0

MD5:
6d1986ee7148cef01e91dd45708e220b

SHA-1:
cc036cb7a1b6b363701c41991b91f609d285148e

Scanner detections:
12 / 68

Status:
Adware

Analysis date:
4/23/2024 11:07:23 PM UTC  (a few moments ago)

Scan engine
Detection
Engine version

Avira AntiVirus
ADWARE/InfoAtoms.A
8.3.1.6

avast!
Win32:InfoAtoms-A [Adw]
2014.9-140310

Dr.Web
Adware.Plugin.70
9.0.1.069

Emsisoft Anti-Malware
Adware.InfoAtoms
8.15.08.22.12

ESET NOD32
Win32/AdWare.Vitruvian (variant)
9.12067

F-Secure
Adware.InfoAtoms.A
11.2015-22-08_7

IKARUS anti.virus
AdWare.Win32.InfoAtoms
t3scan.2.0.3.0

Malwarebytes
PUP.Optional.InfoAtoms.A
v2015.08.22.12

Microsoft Security Essentials
Adware:Win32/InfoAtoms
1.163.1557.0

Reason Heuristics
PUP.InfoAtoms.R
14.3.10.15

Sophos
Generic PUA EN (PUA)
4.98

VIPRE Antivirus
InfoAtoms
19452

File size:
140.6 KB (144,008 bytes)

Product version:
1.5.0.0

Copyright:
(C) 2012 InfoAtoms Inc., All rights reserved.

Original file name:
InfoAtomsClientIE.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\infoatoms\ie32\infoatomsclientie.dll

Digital Signature
Signed by:
InfoAtoms Inc.

Authority:
GoDaddy.com, Inc.

Valid from:
4/12/2012 2:06:59 PM

Valid to:
4/3/2013 4:35:07 PM

Subject:
CN=InfoAtoms Inc., O=InfoAtoms Inc., L=La Jolla, S=CA, C=US

Issuer:
SERIALNUMBER=07969287, CN=Go Daddy Secure Certification Authority, OU=http://certificates.godaddy.com/repository, O="GoDaddy.com, Inc.", L=Scottsdale, S=Arizona, C=US

Serial number:
04788136C18C1C

Registration
CLSID:
{103089DA-0F31-4A8B-843F-7D24A7FE8345}

COM registered:
Yes

File PE Metadata
Compilation timestamp:
12/22/2012 4:21:03 PM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
1536:mQnYxQ8x9/Gc9NhLS+bKXfcCUC9G/lns8P+ucd8+6oc5nOegLb38yNSckak97cyk:pGH9NUXEPlmv8+6jnxyNSckak9Jt0

Entry address:
0xC510

Entry point:
55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, F9, 3D, 00, 00, FF, 75, 10, FF, 75, 0C, FF, 75, 08, E8, 07, 00, 00, 00, 83, C4, 0C, 5D, C2, 0C, 00, 6A, 0C, 68, 08, C8, 01, 10, E8, 61, 03, 00, 00, 33, C0, 40, 8B, 75, 0C, 85, F6, 75, 0C, 39, 35, 80, FA, 01, 10, 0F, 84, E4, 00, 00, 00, 83, 65, FC, 00, 83, FE, 01, 74, 05, 83, FE, 02, 75, 35, 8B, 0D, 90, 7E, 01, 10, 85, C9, 74, 0C, FF, 75, 10, 56, FF, 75, 08, FF, D1, 89, 45, E4, 85, C0, 0F, 84, B1, 00, 00, 00, FF, 75, 10, 56, FF, 75, 08, E8, 11, FE, FF, FF, 89, 45, E4...
 
[+]

Entropy:
6.2362

Developed / compiled with:
Microsoft Visual C++

Code size:
74.5 KB (76,288 bytes)

Remove InfoAtomsClientIE.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.