home

Shlomy Golani

Publisher Information

Shlomy Golani is a brand of publishers/developers run by WebPick Internet Holdings Ltd. located in Ramat Ha'Chayal Tel Aviv, Israel. The company is a primary distributor of unwanted software. Shlomy Golani is a developer of WebPick Internet Holdings and publishes a number of adware web browser plugins designed to monitor web browser behavior and inject advertisements (banner, popups, text-links, etc.) in the browser by using the WebPick InstalleRex monetization delivery platform. These programs from Shlomy Golani are typiclaly installed on a variety of names and misspellings and are very difficult to remove. According to WebPick, they use developers to sign their adware in order to "throw off competitors". There is one additional code signing certificate issued to this publisher.
Authority:
COMODO CA Limited

Valid from:
6/6/2012 8:00:00 PM

Valid to:
6/7/2013 7:59:59 PM

Subject:
CN=Shlomy Golani, O=Shlomy Golani, STREET=Wingate 56, L=Beer Sheva, S=Israel, PostalCode=84428, C=IL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
1e72b983ed68d3d614bcf3d7eea59787

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Adware (M), PUP.WebPick (M)
100.00%

1 / 68      (Adware)
vaudix.exe (Setup by Premium)  (f372824945fce7e53cbcc85f507d59e1)

1 / 68      (Adware)
vaudix.exe (Setup by CloudSoft)  (ad4ef7689f0b1a50b4b06aad620cdd4a)

1 / 68      (Adware)
vaudix.exe (Setup by Premium)  (30bee9d89a015f1b62b52cecb842acfb)

1 / 68      (Adware)
vaudix.exe (SoftSafe)  (26345500e11d5f4889e91d027ad8c8e4)

1 / 68      (Adware)
vaudix.exe (SoftSafe)  (613eb907c4a6a59fb6fb27424e812e34)

1 / 68      (Adware)
vaudix.exe (SoftSafe)  (a0e013c21738f4cddeff4a85f808cbc1)

1 / 68      (Adware)
vaudix.exe (SoftSafe)  (0ab1d6b54dfb25f1194120002b0c94af)

1 / 68      (Adware)
vaudix.exe (SoftSafe)  (b5bd9962618f356bb311db307e8e3982)

1 / 68      (Adware)
vaudix.exe (SoftSafe)  (7d0a998008d8ebd4b54b653562b2778c)

1 / 68      (Adware)
vaudix.exe (SoftSafe)  (6a007e0b00ff998671fb9c231ac180c5)

1 / 68      (Adware)
vaudix.exe (SoftSafe)  (d5813a27c7bb60cf88113e23f282cad9)

1 / 68      (Adware)
vaudix.exe (SoftSafe)  (149d23ccfea4b40ed0ab456f2e5a8e9f)

1 / 68      (Adware)
codec-v.exe (Setup by Premium)  (15f546472e05ef68c5ae15737e796e24)

1 / 68      (Adware)
codec-v.exe (Setup by Premium)  (5c0086b2b42a2b9bdd68d5ae7dfaa722)

1 / 68      (Adware)
vaudix.exe (RightClick)  (bb1cbd88ce70b2e0d1c958baa9557a93)

1 / 68      (Adware)
vaudix.exe (RightClick)  (f77840d3d74594b4babebd0983fdf344)

1 / 68      (Adware)
vaudix.exe (RightClick)  (922a6b08bb58e95d6f64c32462736628)

1 / 68      (Adware)
vaudix.exe (RightClick)  (d6c51463d0eb463cbe69ae1e5e680770)

1 / 68      (Adware)
vaudix.exe (RightClick)  (a1ba908b7689b5d7696517d6deb27b81)

1 / 68      (Adware)
vaudix.exe (SoftSafe)  (e3d136fc3f58ff2f70fdcb4a3f40d2f5)

1 / 68      (Adware)
vaudix.exe (Setup by Premium)  (b406d81321dfb377fe4a1c8a5b52fe88)

1 / 68      (Adware)
vaudix.exe (Setup by Premium)  (314f8d07daa3b19ddfa9a883d6844a7e)

1 / 68      (Adware)
vaudix.exe (WoW Software by WoW Worldwide Software)  (d36aa2095ac5e6b153921c0fed37a81a)

1 / 68      (Adware)
vaudix.exe (Setup by Premium)  (2edf2335c02a2fa2ef7d3129b588521a)

1 / 68      (Adware)
non confermato 822432.crdownload (StarApp)  (14e3ea0ae365bc82dce8234fb7b606d4)

1 / 68      (Adware)
vaudix.exe (SoftSafe)  (985435d592ac93e1a536ad0498cd87d4)

1 / 68      (Adware)
vaudix.exe (Setup by Premium)  (fa275bc90ca127aad49d8e2622065169)

1 / 68      (Adware)
vaudix.exe (Setup by Premium)  (98252ef07352b68d7a9558a183c5cb13)

1 / 68      (Adware)
vaudix.exe (Setup by Premium)  (c01561f24aa8190fbb34a5268829963e)

1 / 68      (Adware)
vaudix.exe (SoftSafe)  (bfbf406662f2a0ca98d0523ba349aa80)

 
Latest 30 of 1,065 files

Downloads URLs for files signed by Shlomy Golani.

1 / 68      (Adware)
http://anbdc.info/v317  (vaudix.exe)

1 / 68      (Adware)
http://premiumstorage.info/v88/?reffer=http://www.tubeplus.me/player/1731518/.../  (codec-v.exe)

1 / 68      (Adware)
http://storebox1.info/.../?reffer=&st=755808  (vaudix.exe)

1 / 68      (Adware)
http://storagenl.info/v322/?reffer=http://.../vv.php?Id=94244e6261dcec35d39f4a6a34d9a693  (vaudix.exe)

1 / 68      (Adware)
http://anbdc.info/.../  (vaudix.exe)

1 / 68      (Adware)
http://storagenl.info/.../?reffer=  (vaudix.exe)

1 / 68      (Adware)
http://greendownloadbox.info/v343  (vaudix.exe)

1 / 68      (Adware)
http://storagenl.info/.../?reffer=  (vaudix.exe)

1 / 68      (Adware)
http://storagenl.info/.../?reffer=  (vaudix.exe)

The following certificate is also signed by Shlomy Golani.

009FC86200EC0FF58D1C39395238030858  (Jan 17, 2013 to Jan 18, 2014)

The following publishers (by Authenticode signature organization name) are related.

WEB PICK - INTERNET HOLDINGS LTD

Ivan Kostin

Artur Kozak

Moshe Caspi

Roman Malinenko

Nadav Kashtan

Natan Risman

Artur Semanin

Arie Azulay

Moshe Karaso

Shlomo Dayan

Rafael Leviev

Yakov Cohen

Lior Sela

Pavel KRASNOV

Eran Vaterfeld

Eli Dahan

Itzhak Shternberg

Electronco Ltd.

Stanislav Kabin

Avi Podavsky

* Note, the details and description above are based on the code signing digital signature issued to Shlomy Golani by COMODO CA Limited on June 06, 2012 with the serial number '1e72b983ed68d3d614bcf3d7eea59787'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.