home

PGLog.exe

ProxyGate

GOLD CLICK LIMITED

The executable PGLog.exe, “PG Network Component” has been detected as malware by 1 anti-virus scanner.
Publisher:
Gold Click Ltd  (signed by GOLD CLICK LIMITED)

Product:
ProxyGate

Description:
PG Network Component

Version:
3.00.0095

MD5:
d71dbe7931687bf9a3e38ba2208e174e

SHA-1:
fefd023f435783f688a37e8361b89fb0512d6a03

SHA-256:
e10a14a0ddc2f8a541df48fabbcad109f697cdaf835a883f224a6ab3df69733c

Scanner detections:
1 / 68

Status:
Malware

Analysis date:
11/26/2024 10:04:21 PM UTC  (today)

Scan engine
Detection
Engine version

Reason Heuristics
PUP (M)
17.3.13.10

File size:
181.6 KB (185,952 bytes)

Product version:
3.00.0095

Copyright:
Gold Click Ltd

Original file name:
PGLog.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\users\{user}\appdata\roaming\proxygate\pglog.exe

Digital Signature
Signed by:
GOLD CLICK LIMITED

Authority:
GlobalSign nv-sa

Valid from:
1/5/2016 2:21:09 AM

Valid to:
4/26/2017 9:17:01 AM

Subject:
CN=GOLD CLICK LIMITED, O=GOLD CLICK LIMITED, S=Surrey, C=GB

Issuer:
CN=GlobalSign CodeSigning CA - SHA256 - G2, O=GlobalSign nv-sa, C=BE

Serial number:
1121E1CE57747D3AA0E2D8A055EE1FA5696D

File PE Metadata
Compilation timestamp:
6/8/2016 8:55:36 AM

OS version:
4.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
6.0

Entry address:
0x194C

Entry point:
68, 30, 1B, 40, 00, E8, F0, FF, FF, FF, 00, 00, 00, 00, 00, 00, 30, 00, 00, 00, 38, 00, 00, 00, 00, 00, 00, 00, 53, BF, 9A, 71, 61, 86, 03, 40, 9B, 80, 18, 8D, 12, EC, 08, 23, 00, 00, 00, 00, 00, 00, 01, 00, 00, 00, 26, 48, 39, 45, 39, 45, 50, 47, 4C, 6F, 67, 00, 20, 54, 00, 00, 00, 00, 01, 00, 04, 00, A0, 20, 40, 00, 00, 00, 00, 00, FF, FF, FF, FF, FF, FF, FF, FF, 00, 00, 00, 00, B4, 21, 40, 00, 34, E0, 40, 00, 00, 00, 00, 00, E8, 16, 1B, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, 00, CC, 19, 40, 00...
 
[+]

Entropy:
6.1887

Developed / compiled with:
Microsoft Visual Basic v5.0/v6.0

Code size:
52 KB (53,248 bytes)

Remove PGLog.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.