home

SmartPop.dll

스마트팝

IPO Communications

The module SmartPop.dll by IPO Communications has been detected as a potentially unwanted program by 7 anti-malware scanners. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘SmartPop’.
Publisher:
IPO Communication  (signed by IPO Communications)

Product:
스마트팝

Version:
1.0.0.13

MD5:
6c435dc0596aab37eaecc4faeb145f49

SHA-1:
fbe7669b416168b16eee1fad8062254a0e2e8aa9

SHA-256:
bbdd724d05b22e22943129c0c50cb487f9072fedb6c32ef3af9f49b44ba73efb

Scanner detections:
7 / 68

Status:
Potentially unwanted

Analysis date:
4/20/2024 1:45:43 AM UTC  (today)

Scan engine
Detection
Engine version

AhnLab V3 Security
PUP/Win32.SmartPop
2013.08.01

Avira AntiVirus
Adware/SmartPop.A
7.11.94.92

Comodo Security
UnclassifiedMalware
16687

ESET NOD32
Win32/Adware.SmartPop (variant)
10.8634

Malwarebytes
Adware.SmartPops
v2016.02.10.07

MicroWorld eScan
Win32/Adware.SmartPop.A
17.0.0.123

Trend Micro House Call
TROJ_GEN.F47V0609
7.2.41

File size:
168.2 KB (172,248 bytes)

Product version:
1.0.0.13

Copyright:
(c) IPO Communication. All rights reserved.

Original file name:
SmartPop.dll

File type:
Dynamic link library (Win32 DLL)

Common path:
C:\Program Files\smartpop\smartpop.dll

Digital Signature
Signed by:
IPO Communications

Authority:
COMODO CA Limited

Valid from:
6/29/2012 9:00:00 AM

Valid to:
6/30/2013 8:59:59 AM

Subject:
CN=IPO Communications, O=IPO Communications, STREET="504 Freebero Officetel,15-14 Yeouido-dong", L=Yeongdeungpo-gu, S=Seoul, PostalCode=150010, C=KR

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
073D112E1D1FEE4840ABCE47AAB412AE

File PE Metadata
Compilation timestamp:
8/3/2012 1:24:00 PM

OS version:
5.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
9.0

CTPH (ssdeep):
3072:j7G5ssKoMRH+ciqA38BG65zGKZ7+JwofW:gLeIqi8YFKZ8lO

Entry address:
0x105D4

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, 4F, 5B, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 83, EC, 20, 53, 33, DB, 39, 5D, 14, 75, 20, E8, 4F, 1E, 00, 00, 53, 53, 53, 53, 53, C7, 00, 16, 00, 00, 00, E8, 85, F7, FF, FF, 83, C4, 14, 83, C8, FF, E9, 99, 00, 00, 00, 56, 8B, 75, 0C, 57, 8B, 7D, 10, 3B, FB, 74, 21, 3B, F3, 75, 1D, E8, 1F, 1E, 00, 00, 53, 53, 53, 53, 53, C7, 00, 16, 00, 00, 00, E8, 55, F7, FF, FF, 83, C4, 14, 83, C8, FF, EB, 6A...
 
[+]

Entropy:
6.5767

Code size:
115 KB (117,760 bytes)

Internet Explorer BHO
Display name:
SmartPop

CLSID:
{7AE8CE5B-53AE-4824-84EF-800A0EC46BB8}

CLSID name:
SmartPopBHO Class


Remove SmartPop.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.