How to remove ___ocnsis.dll

» File
File Details
Overview
Analysis

___ocnsis.dll

The module ___ocnsis.dll has been detected as PUP.Pokki

Remove ___ocnsis.dll

File Details

Main Info:

Product Name:	Pokki
Company Name:	SweetLabs, Inc.
MD5:	f1dcbc1a62903f016b9103573cf833fe
Size:	3 MB
First Published:	2017-05-27 12:03:44 (7 years ago)
Latest Published:	2023-09-23 23:34:39 (2 years ago)

Analysis:

Status:	PUP.Pokki (on last analysis)
Analysis Date:	2023-09-23 23:34:39 (2 years ago)

Overview

Digital Signature

Signed By:	Pokki
Status:	Valid

Common Places:

%temp%\nsh8c04.tmp

%temp%\nsn2ea.tmp

%temp%\nsqc80d.tmp

%temp%\nsm48fd.tmp

%temp%\nslfed0.tmp

%temp%\nsm212f.tmp

%temp%\nszc02.tmp

%temp%\nsu86e3.tmp

%temp%\nsl6758.tmp

%temp%\nsr2122.tmp

Geography:

Poland	17.5%
United States	9.7%
Russia	6.8%
Brazil	4.9%
Belgium	4.9%
United Kingdom	3.9%
Switzerland	3.9%
Guatemala	3.9%
Italy	3.9%
Taiwan	2.9%
Spain	2.9%
Netherlands	2.9%
Ukraine	2.9%
Nicaragua	2.9%
Sweden	1.9%
Nigeria	1.9%
Ecuador	1.9%
Colombia	1.9%
Indonesia	1.9%
France	1.9%
Uruguay	1.9%
Iran	1.9%
Kuwait	1.9%
Turkey	1.0%
Thailand	1.0%
Czech Republic	1.0%
Bolivia	1.0%
Singapore	1.0%
Mexico	1.0%
Malaysia	1.0%
Chile	1.0%
Germany	1.0%

OS Version:

Windows 8.1	78.6%
Windows 10	18.4%
Windows 8	2.9%

Analysis

PE Info:

Subsystem:	Windows GUI
PE Type:	pe
OS Bitness:	32
Image Base:	0x10000000
Entry Address:	0x0024e768

PE Sections:

Name	Size of data	MD5
.text	2872832	475ff193164aa481118573967357c963
.rdata	577024	38d49e7856e9f4c66744172390f38a15
.data	67584	456dc5a585b0737a67fbc71b5505ad69
.tls	512	bf619eac0cdf3f68d496ea9344137e8b
.shared	512	bf619eac0cdf3f68d496ea9344137e8b
.rsrc	424960	ad4436cb8f692284857d7ce7a54f2ef7
.reloc	183808	833cfcd24c5c230d652b816d94698823

More information:

Search on Virustotal

Download GridinSoft Anti-Malware - Removal tool for ___ocnsis.dll

copyright for information about ___ocnsis.dll