Shlomy Golani is a brand of publishers/developers run by WebPick Internet Holdings Ltd. located in Ramat Ha'Chayal Tel Aviv, Israel. The company is a primary distributor of unwanted software. Shlomy Golani is a developer of WebPick Internet Holdings and publishes a number of adware web browser plugins designed to monitor web browser behavior and inject advertisements (banner, popups, text-links, etc.) in the browser by using the WebPick InstalleRex monetization delivery platform. These programs from Shlomy Golani are typiclaly installed on a variety of names and misspellings and are very difficult to remove. According to WebPick, they use developers to sign their adware in order to "throw off competitors". There is one additional code signing certificate issued to this publisher.
COMODO CA Limited
6/6/2012 8:00:00 PM
6/7/2013 7:59:59 PM
CN=Shlomy Golani, O=Shlomy Golani, STREET=Wingate 56, L=Beer Sheva, S=Israel, PostalCode=84428, C=IL
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
Detections (100% detected)
Adware.WebPick.Installer (M), PUP.WebPick.ShlomyGolani.Installer (M), PUP.WebPick.Installer
Adware.Downware.448, Adware.Downware.980, Adware.Downware.906
Trojan.Win32.Generic, Installerex/WebPick, Threat.4150696, Threat.4753027
Win32:InstalleRex-AW [PUP], Win32:InstalleRex-Y [PUP], Win32:InstalleRex-Q [PUP]
K7 Gateway Antivirus
Adware , Trojan , Unwanted-Program
PUA.InstalleRex, Riskware.InstallMate, Adware.Generic
Riskware.Win32.Downware.ctkpjt, Riskware.Win32.Downware.cvbqyt, Riskware.Win32.Agent.crfikt, Riskware.Win32.Downware.cscofz
InstallRex, PUA 'InstallRex'
Downloads URLs for files signed by Shlomy Golani.
The following certificate is also signed by Shlomy Golani.
The following publishers (by Authenticode signature organization name) are related.
* Note, the details and description above are based on the code signing digital signature issued to Shlomy Golani by COMODO CA Limited on June 06, 2012 with the serial number '1e72b983ed68d3d614bcf3d7eea59787'.