Pokki

Publisher Information

Pokki is a software developer located in San Diego, California in the United States*. Thre are 2 additional code signing certificates issued to this publisher.
Remove Pokki Malware - Powered by Reason Core Security
Authority:
VeriSign, Inc.

Valid from:
4/25/2011 8:00:00 PM

Valid to:
4/25/2012 7:59:59 PM

Subject:
CN=Pokki, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Pokki, L=San Diego, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
1bcdd0bbe1c67f61e5879491ce2acb69

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Optional.Pokki.F, PUP.Optional.Pokki.U, PUP.Optional.Pokki.K, PUP.Optional.Pokki.J, PUP.Optional.Installer.W, PUP.Optional.Pokki.E, Win32.Generic.Installer.Meta, Win32.Generic.Pokki.Meta, Win32.Generic.Pokki.Installer.Meta, Win64.Generic.Pokki.Meta
100.00%

Jiangmin
TrojanSpy.Zbot.aphv, Trojan/Agent.ivyx
16.00%

Trend Micro House Call
TROJ_GEN.F47V0318
4.00%

Clam AntiVirus
Win.Trojan.Agent-209308
4.00%

Kingsoft AntiVirus
Win32.Troj.Agent.tf.(kcloud)
4.00%

Antiy Labs AVL
Trojan[Spy]/Win32.Zbot
2.00%

herdProtect (fuzzy)
a variant of fe165a43f4e2ec825e3940f1298bcee3dcad84ce
2.00%

Bkav FE
HW32.Inectrj
2.00%

1 / 68      (Malware)
pokki.exe (Pokki)  (62b4380acf9eaad44e7b4407f98f8748)

5 / 68      (Malware)
ocdeskband_0.dll (ocdeskband Dynamic Link Library)  (4ef8ff2ae77fa457791e8ca7f0c7091b)

1 / 68      (Malware)
ocdeskband.dll  (320ea7039b5e64dd031a11bfa66dddd9)

1 / 68      (Malware)
OcdmBootstrapper.exe (Pokki Download Helper by Pokki)  (1458e8cd2956e05290b43485066bec09)

1 / 68      (Malware)
ocexdll.dll (Pokki Explorer Hook DLL by Pokki)  (a626ac965ad137e6a98ee1408ea53e0f)

1 / 68      (Malware)

1 / 68      (Malware)
pokkiInstaller.exe (Pokki Installer by Pokki)  (6ebf53445076448c7304f8e8dcccc765)

1 / 68      (Malware)
version4ef291e9b54e4.exe (Pokki by SweetLabs,Inc)  (7e33febf1c6eda22a79c53ed26fe2039)

1 / 68      (Malware)
ocdeskband.dll (ocdeskband Dynamic Link Library)  (77e2db181428cae73f0c72b24c356a89)

1 / 68      (Malware)

1 / 68      (Malware)
pokkiInstaller.exe (Pokki Installer by Pokki)  (851992c12c5bb05d780839e26312fdd1)

1 / 68      (Malware)
PokkiDownloadHelper.exe (Pokki Download Helper by Pokki)  (1980fa1dbfc164b76fd3f85f0f37fb12)

2 / 68      (Malware)

1 / 68      (Malware)
___ocnsis64.dll (ocnsis Dynamic Link Library by Pokki)  (de76671d1e7d2c4bcf3ad2b80df43d2b)

1 / 68      (Malware)
pokki.exe (Pokki by SweetLabs,Inc)  (70f4269683e63ab4ae1878a526ab3d70)

1 / 68      (Malware)
ocnsis.dll (ocnsis Dynamic Link Library by Pokki)  (080aea07347b83a42068f98519d67b5f)

1 / 68      (Malware)
___ocnsis.dll (ocnsis Dynamic Link Library by Pokki)  (464ed1a9b68f93fa6a393b1fe2b954dc)

1 / 68      (Malware)
ocnsis.dll (ocnsis Dynamic Link Library by Pokki)  (8f3952704b6072f272ef45f543765338)

1 / 68      (Malware)
oct49a1.tmp.exe (Pokki by SweetLabs,Inc)  (7715e9606a9636c799b18f648dcad80a)

1 / 68      (Malware)
oct1174.tmp.exe (Pokki by SweetLabs,Inc)  (3cb249353c041d7cb5083c822a739e05)

1 / 68      (Malware)

1 / 68      (Malware)
pokkicleanup.exe (Pokki Cleanup Tool by SweetLabs,Inc)  (06876e8aafce286cc4179fee21cfaae3)

1 / 68      (Malware)
pokki.exe (Pokki)  (c40fb2f6ac7c7f5d6aaa793819fb5fa2)

1 / 68      (Malware)
pokki.exe (Pokki)  (57addb1ea095e07ecd3579c899a4878a)

1 / 68      (Malware)
pokki.exe (Pokki)  (1e4d7db2ec4c813c76a5d4d2f94486d2)

1 / 68      (Malware)
ocdeskband_2.dll (ocdeskband Dynamic Link Library)  (edae4d4ffe9cbed639d3ec8a7314809c)

1 / 68      (Malware)
ocdeskband_1.dll (ocdeskband Dynamic Link Library)  (3b058e7140b1bba79598c753abd651f2)

5 / 68      (Malware)
ocdeskband_0.dll (ocdeskband Dynamic Link Library)  (2320b548bc8c04fa1f9bd4236c27784d)

2 / 68      (Malware)

1 / 68      (Malware)
ocdeskband.dll (ocdeskband Dynamic Link Library)  (ec1b043f975e00c25192fcecff78fa2f)

 
Latest 30 of 66 files

Downloads URLs for files signed by Pokki.

3 / 68      (PUP)
http://cdn.pokki.com/.../Pokki_InstagrilleSetup.exe  (0ddf78a239bf5d97e53b6b34d7e7f3a3)

The following websites host and distribute files published by Pokki.

The certificates below are also signed by Pokki.

0895BFAF55A6DC53921FCDFF971124BD  (Apr 19, 2015 to May 19, 2017)

7F0C02A0B2F2B0727327296C8736183B  (Feb 27, 2012 to Apr 25, 2015)

Remove Pokki Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to Pokki by VeriSign, Inc. on April 25, 2011 with the serial number '1bcdd0bbe1c67f61e5879491ce2acb69'.