Pokki

Publisher Information

Pokki is a software developer located in San Diego, California in the United States*. Thre are 2 additional code signing certificates issued to this publisher.
Remove Pokki Malware - Powered by Reason Core Security
Authority:
VeriSign, Inc.

Valid from:
2/28/2012 8:00:00 AM

Valid to:
4/26/2015 7:59:59 AM

Subject:
CN=Pokki, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Pokki, L=San Diego, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
7f0c02a0b2f2b0727327296c8736183b

Scanner detections:
Malware distribution  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Win32.Generic, Win64.Generic
100.00%

AVG
Pokki
4.00%

Jiangmin
Trojan/Agent.ivyx, AdWare/DealKeeper.dg
4.00%

Dr.Web
Adware.Downware.394
2.00%

Avira AntiVirus
TR/Dropper.Gen
2.00%

Rising Antivirus
PE:Malware.XPACK-LNR/Heur!1.5594
2.00%

Trend Micro House Call
TROJ_GEN.F47V0318
2.00%

Clam AntiVirus
Win.Trojan.Agent-209308
2.00%

Kingsoft AntiVirus
Win32.Troj.Agent.tf.(kcloud)
2.00%

Qihoo 360 Security
HEUR/QVM42.0.Malware.Gen
2.00%

1 / 68      (Malware)
___ocnsis64.dll (Pokki by SweetLabs)  (995189dd6dc7a6ca89c1cafd2bd6c295)

1 / 68      (Malware)
dragonsofatlantis-btdlddragons3.exe  (36db479aa7ea27d22dc923fe61eb01ef)

1 / 68      (Malware)
206470.exe (SeaFight by SweetLabs, Inc)  (af0e948cdb51b022fdaac8bcb4a33af4)

1 / 68      (Malware)
oct5bc5.tmp.exe (Pokki by SweetLabs,Inc)  (6921a8f7a1afaa5c69a3c4c07d09ea72)

1 / 68      (Malware)
oct3d75.tmp (Pokki by SweetLabs,Inc)  (c063f13f331961a5b94f3b948eed1c7a)

1 / 68      (Malware)
oct3513.tmp.exe (Pokki by SweetLabs,Inc)  (d6d2c718e4b1277cdb161109253cc570)

1 / 68      (Malware)
pokkiplatform.exe (Pokki by SweetLabs,Inc)  (d522ff01c8335af00706be04c1e691cf)

4 / 68      (PUP)

1 / 68      (Malware)
octd79f.tmp.exe (Pokki by SweetLabs,Inc)  (8c25e740a0195da7780a40f46a098cf8)

1 / 68      (Malware)

1 / 68      (Malware)
Pokki_EtsySetup.exe (Etsy for Pokki by Pokki)  (0022d30cf888fb90f0646ec443e085f5)

1 / 68      (Malware)
oct35c9.tmp.exe (Pokki by SweetLabs,Inc)  (1ebee09db3f6d7ac3bbb97a87e17cefc)

5 / 68      (Malware)
ocdeskband_0.dll (ocdeskband Dynamic Link Library)  (13e3c5bd7068a25db82afae36df12098)

1 / 68      (Malware)

1 / 68      (Malware)
Pokki_AskfmSetup.exe (Ask.fm for Pokki by Pokki)  (8390d466b481f5e6b60ca7907b889021)

2 / 68      (Malware)
pokkiupdater.exe (Pokki by SweetLabs,Inc)  (42c0ed0b7f34a998534b85f4ca424a95)

1 / 68      (Malware)
___ocnsis64.dll (Pokki by SweetLabs)  (9e5d8ae516aef717012ce48b56e1f6a6)

1 / 68      (Malware)

2 / 68      (Malware)
HostAppService.exe (Host App Service by Pokki)  (852e28beca0d147e6ff41952cfbd63cf)

1 / 68      (Malware)
StartMenuIndexer.exe (Start Menu Service by Pokki)  (dd5b984ac705c66b798e3303ca1cca26)

1 / 68      (Malware)
oct4873.tmp.exe (Pokki by SweetLabs,Inc)  (fdd9a6e20f5a2ca7736fb50d3a2e75bc)

3 / 68      (PUP)

1 / 68      (Malware)
octc3aa.tmp (Pokki by SweetLabs,Inc)  (defe5316347ee372cbe831c388dc66e8)

1 / 68      (Malware)
___ocnsis64.dll (ocnsis Dynamic Link Library by Pokki)  (15741f0759587776b1e335803499c089)

1 / 68      (Malware)
octc4ab.tmp.exe (Pokki by SweetLabs,Inc)  (2ea7db4fb1e4e310ffe1030986bb536a)

1 / 68      (Malware)
octfa97.tmp.exe (Pokki by SweetLabs,Inc)  (5dc34806329b279ca6a36e1f3a507714)

1 / 68      (Malware)
seafight-btdldseafight1.exe (Seafight by SweetLabs, Inc)  (2467af88b78a9f62554857bbc6ed75d6)

1 / 68      (Malware)
goodgameempire.exe (Goodgame Empire by SweetLabs, Inc)  (7fd5071a9e4635cc6f167edc85948ebf)

1 / 68      (Malware)
___ocnsis.dll (Pokki by SweetLabs)  (f4235b7fb16e00c258d3552862b23bb7)

1 / 68      (Malware)
octcc73.tmp.exe (Pokki by SweetLabs,Inc)  (d742aa5284796b8c5c3ab0fd7fcc3915)

 
Latest 30 of 1,226 files

Downloads URLs for files signed by Pokki.

1 / 68      (Malware)
http://cdn.pokki.com/.../Pokki_EtsySetup.exe  (0022d30cf888fb90f0646ec443e085f5)

1 / 68      (Malware)
http://cdn.pokki.com/.../Pokki_AskfmSetup.exe  (8390d466b481f5e6b60ca7907b889021)

The certificates below are also signed by Pokki.

0895BFAF55A6DC53921FCDFF971124BD  (Apr 19, 2015 to May 19, 2017)

1BCDD0BBE1C67F61E5879491CE2ACB69  (Apr 25, 2011 to Apr 25, 2012)

Remove Pokki Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to Pokki by VeriSign, Inc. on February 28, 2012 with the serial number '7f0c02a0b2f2b0727327296c8736183b'.