» funmoodsapp.dll
Overview
Analysis
File Details
Programs (1)

funmoodsapp.dll

Volonet Ltd

The module funmoodsapp.dll by Volonet has been detected as adware by 5 anti-malware scanners. This file is typically installed with the program Funmoods on IE and Chrome by Volonet Ltd which is a potentially unwanted software program.

File name:

funmoodsapp.dll

Publisher:

Funmoods (signed by Volonet Ltd)

Product:

Funmoods

Version:

1.5.12.0

MD5:

fd151f1600577e04033474a2f8ca667f

SHA-1:

23f57d438ae23dd6c87c595dcf8a3014f98b0aef

Scanner detections:

5 / 68

Status:

Adware

Analysis date:

4/25/2024 6:19:50 AM UTC (today)

Scan engine

Detection

Engine version

Dr.Web

Adware.Funmoods.1

9.0.1.0221

Malwarebytes

PUP.FunMoods

v2014.08.09.09

Reason Heuristics

PUP.Volonet.L

14.8.9.9

Sophos

Funmoods Toolbar

4.91

Trend Micro House Call

TROJ_GEN.RCBOHDG

7.2.221

File size:

330 KB (337,872 bytes)

Product version:

1.5.12.0

File type:

Dynamic link library (Win32 DLL)

Language:

English (United States)

Common path:

C:\Program Files\funmoods\funmoods\1.5.12.2\funmoodsapp.dll

Digital Signature

Signed by:

Volonet Ltd

Authority:

COMODO CA Limited

Valid from:

1/11/2012 3:30:00 AM

Valid to:

11/26/2013 3:29:59 AM

Subject:

CN=Volonet Ltd, O=Volonet Ltd, STREET=hazfira 19, L=Tel Aviv, S=Israel, PostalCode=67778, C=IL

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00D9EB879A7F4ADB713BB56F5D9EA449DA

File PE Metadata

Compilation timestamp:

2/6/2012 1:38:27 PM

OS version:

5.1

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

10.0

CTPH (ssdeep):

6144:rtta/v7xrj5PbC21ZOeNfe4qDge3tQOO0uxkolaL8T/9fpSSvnT6rpfaQ:rnav7xrjBbC21kCfrqse3tvO0uxIL8T4

Entry address:

0x26397

Entry point:

8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, E7, 67, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 8B, FF, 55, 8B, EC, 83, EC, 10, 57, FF, 75, 10, 8D, 4D, F0, E8, 5C, F3, FF, FF, 8B, 7D, 08, 85, FF, 75, 27, E8, D7, 1B, 00, 00, C7, 00, 16, 00, 00, 00, E8, DD, 1E, 00, 00, 80, 7D, FC, 00, 74, 07, 8B, 45, F8, 83, 60, 70, FD, B8, FF, FF, FF, 7F, E9, A5, 00, 00, 00, 56, 8B, 75, 0C, 85, F6, 75, 24, E8, A8, 1B, 00, 00, C7, 00, 16, 00, 00, 00, E8, AE, 1E, 00, 00, 80, 7D, FC... 
[+]

Entropy:

6.3567

Code size:

227.5 KB (232,960 bytes)

The file funmoodsapp.dll has been discovered within the following program.

Funmoods on IE and Chrome by Volonet Ltd

FunMoods toolbar gives no or little satisfaction to its users, but a profound desire to get rid of FunMoods browser extension is in place.

www.funmoods.com

65% remove it

Remove funmoodsapp.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.