home

regcodedll.dll

RegCodeD Dynamic Link Library

Ideakee Inc

The module regcodedll.dll by Ideakee Inc has been detected as adware by 1 anti-malware scanner with very strong indications that the file is a potential threat. This file is typically installed with the program Advanced Fix 2012 version 2.0.1.19 by Advanced Fix, Inc..
Publisher:
Ideakee Inc  (signed and verified)

Product:
RegCodeD Dynamic Link Library

Description:
Advanced Fix

Version:
1, 0, 0, 3

MD5:
9b25255b600a7b6477f1eea168d03faa

SHA-1:
0d2110cbc25f81154de24b364f8b6363b9879648

SHA-256:
33485ce35d8247ee151df3ce24f02e6ef06006b0a3224d88bf1273790eabf7ef

Scanner detections:
1 / 68

Status:
Adware

Note:
Our current pool of anti-malware engines have not currently detected this file, however based on our own detection heuristics we feel that this file is unwanted.

Analysis date:
4/19/2024 3:54:51 AM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP.Ideakee (M)
16.2.2.9

File size:
590.7 KB (604,832 bytes)

Product version:
1, 0, 0, 3

Copyright:
Copyright (C) 2012

Original file name:
RegCodeD.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\advanced fix 2012\regcodedll.dll

Digital Signature
Signed by:
Ideakee Inc

Authority:
COMODO CA Limited

Valid from:
9/26/2011 7:00:00 PM

Valid to:
9/26/2012 6:59:59 PM

Subject:
CN=Ideakee Inc, O=Ideakee Inc, STREET="1104# Asphodel Pavilion,Hengxiang Garden", STREET="18 LIjiangRoad, Qixing District", L=Guilin, S=Guangxi, PostalCode=541000, C=CN

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00F236A9C30C8BD77E404E7062DC938D47

File PE Metadata
Compilation timestamp:
4/23/2012 2:59:45 AM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
6144:UiduRiEBcKM4VYtXkKZv1twGVfgTv6yDxRTa8CRdB2+g6c5jyW/1K7AHLuy:45PzVwXZv1twGlgTCy7G8CFa6AjPNk2

Entry address:
0x38F8C

Entry point:
E9, EF, 9E, 00, 00, E9, 9A, 54, 00, 00, E9, 83, 4D, 06, 00, E9, D0, A1, 00, 00, E9, EB, CD, 06, 00, E9, 26, 2A, 06, 00, E9, F1, 5F, 00, 00, E9, 04, 4D, 06, 00, E9, F7, 0B, 06, 00, E9, 72, A1, 04, 00, E9, 5D, 8E, 01, 00, E9, A8, 1F, 06, 00, E9, 73, 74, 04, 00, E9, 5E, C0, 00, 00, E9, 29, 1D, 03, 00, E9, 84, EA, 04, 00, E9, FF, 88, 00, 00, E9, 4A, 4F, 06, 00, E9, 65, 42, 06, 00, E9, 26, E0, 01, 00, E9, 9B, 86, 06, 00, E9, B6, E4, 04, 00, E9, B1, 9B, 02, 00, E9, 9C, 63, 00, 00, E9, 57, B2, 06, 00, E9, F2, DD...
 
[+]

Entropy:
5.6878

Developed / compiled with:
Microsoft Visual C++ 8.0 (Debug)

Code size:
465 KB (476,160 bytes)

The file regcodedll.dll has been discovered within the following program.

Advanced Fix 2012 version 2.0.1.19  by Advanced Fix, Inc.
www.AdvancedFix.com
About 6% of users remove it
 
Powered by Should I Remove It?

Remove regcodedll.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.