» funmoodsapp.dll
Overview
Analysis
File Details
Programs (1)

funmoodsapp.dll

Volonet Ltd

The module funmoodsapp.dll by Volonet has been detected as adware by 7 anti-malware scanners. This file is typically installed with the program Funmoods on IE and Chrome by Volonet Ltd which is a potentially unwanted software program.

File name:

funmoodsapp.dll

Publisher:

Funmoods (signed by Volonet Ltd)

Product:

Funmoods

Version:

1.5.11.0

MD5:

12be59f427297e54fef41f9bb32d4233

SHA-1:

0088967a4ed52f491976136c95d43e0e1b06cc31

SHA-256:

e4b3df5ead761fe83da367d5e2ae1d416d0f89a572480deecc20c4b4295f17eb

Scanner detections:

7 / 68

Status:

Adware

Analysis date:

4/19/2024 9:37:17 AM UTC (today)

Scan engine

Detection

Engine version

Boost by Reason

Optional.Volonet.L

188838

Dr.Web

Adware.Funmoods.1

9.0.1.043

ESET NOD32

Win32/Toolbar.Montiera

8.9318

Malwarebytes

PUP.FunMoods

v2014.02.12.07

Reason Heuristics

PUP.Volonet.L

14.8.7.21

Sophos

Funmoods Toolbar

4.96

XVirus List

Win32.Detected

2.8.7

File size:

330 KB (337,872 bytes)

Product version:

1.5.11.0

File type:

Dynamic link library (Win32 DLL)

Language:

English (United States)

Common path:

C:\Program Files\funmoods\funmoods\1.5.11.16\funmoodsapp.dll

Digital Signature

Signed by:

Volonet Ltd

Authority:

COMODO CA Limited

Valid from:

1/11/2012 1:00:00 AM

Valid to:

11/26/2013 12:59:59 AM

Subject:

CN=Volonet Ltd, O=Volonet Ltd, STREET=hazfira 19, L=Tel Aviv, S=Israel, PostalCode=67778, C=IL

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00D9EB879A7F4ADB713BB56F5D9EA449DA

Registration

CLSID:

{A9DB719C-7156-415E-B49D-BAD039DE4F13}

COM registered:

Yes

File PE Metadata

Compilation timestamp:

1/23/2012 5:38:29 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

6144:stda/v7xrjJ/by215eeNfe4qDge3tQOO0O3kolaL8T/9fpSDLYvttgOz1:s36v7xrjhby210Cfrqse3tvO0O3IL8TV

Entry address:

0x26397

Entry point:

8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, E7, 67, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 83, EC, 10, 57, FF, 75, 10, 8D, 4D, F0, E8, 5C, F3, FF, FF, 8B, 7D, 08, 85, FF, 75, 27, E8, D7, 1B, 00, 00, C7, 00, 16, 00, 00, 00, E8, DD, 1E, 00, 00, 80, 7D, FC, 00, 74, 07, 8B, 45, F8, 83, 60, 70, FD, B8, FF, FF, FF, 7F, E9, A5, 00, 00, 00, 56, 8B, 75, 0C, 85, F6, 75, 24, E8, A8, 1B, 00, 00, C7, 00, 16, 00, 00, 00, E8, AE, 1E, 00, 00, 80, 7D, FC... 
[+]

Code size:

227.5 KB (232,960 bytes)

The file funmoodsapp.dll has been discovered within the following program.

Funmoods on IE and Chrome by Volonet Ltd

FunMoods toolbar gives no or little satisfaction to its users, but a profound desire to get rid of FunMoods browser extension is in place.

www.funmoods.com

65% remove it

Remove funmoodsapp.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.