Volonet Ltd

Publisher Information

Volonet Ltd is a software developer located in Tel-Aviv, Israel*. The company is a primary distributor of unwanted software. Thre are 2 additional code signing certificates issued to this publisher.
Remove Volonet Ltd Malware - Powered by Reason Core Security
Authority:
The USERTRUST Network

Valid from:
11/23/2009 2:00:00 AM

Valid to:
11/24/2010 1:59:59 AM

Subject:
CN=Volonet Ltd, O=Volonet Ltd, STREET=hazfira 19, L=Tel-Aviv, S=Israel, PostalCode=67778, C=IL

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
00de39c4ec992110f04979ae8347f5c1dd

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Volonet.J, PUP.Volonet.M, PUP.Installer.Volonet.N, PUP.Installer.Volonet.M, PUP.Installer.ironSource, PUP.ironSource, PUP.installCore.Volonet (M), PUP.installCore.Volonet.Installer (M), PUP.installCore (M)
100.00%

ESET NOD32
Win32/SweetIM (variant), Win32/SweetIM.A potentially unwanted (variant), Win32/Toolbar.Montiera.W potentially unwanted (variant)
29.17%

Dr.Web
Trojan.PWS.Siggen.38174, Trojan.PWS.Siggen.9486, Trojan.PWS.Siggen.8952
16.67%

McAfee
Artemis!87F258148418, Artemis!EB4FA8991F89, Artemis!37D97DEC2DF9
12.50%

McAfee Web Gateway
Artemis!87F258148418, Artemis!EB4FA8991F89, Artemis!PUP
12.50%

Fortinet FortiGate
Riskware/SweetIM, Riskware/FaceMood, W32/Adware_fam.NB
12.50%

Avira AntiVirus
TR/SweetIM.A.80, TR/SweetIM.A.95
8.33%

Comodo Security
Heur.Suspicious
8.33%

Malwarebytes
PUP.Optional.FaceMoods.A
8.33%

Bkav FE
W32.Clod838.Trojan, W32.HfsAdware
8.33%

1 / 68      (PUP)
facemoods.exe (facemoods by facemoods.com)  (b6b894a3d4e15e42f6bb6120f4058154)

1 / 68      (PUP)
facemoods.exe (facemoods by facemoods.com)  (19b0104afcbbe8faeb483c2c83693264)

1 / 68      (Adware)
facemoods.exe (Facemoods Installer)  (73ae770c179aa12f73d9879dd91d5ee9)

1 / 68      (PUP)
facemoods.exe (facemoods by facemoods.com)  (a2693a8236a7868c458e0cf0c8a3d4ba)

1 / 68      (PUP)
facemoods.exe (facemoods by facemoods.com)  (f2504035535b68564eb95e869c25d241)

1 / 68      (PUP)
facemoods.exe (facemoods by facemoods.com)  (e09227aaf382a2d04c0f76e990ac3822)

1 / 68      (PUP)
facemoods.exe (facemoods by facemoods.com)  (3dbc14d4a171acbda792305af8e49917)

1 / 68      (PUP)
facemoods.exe (facemoods by facemoods.com)  (149104fcb85a1b0a70011b7f197bf797)

1 / 68      (Adware)
facemoods_fbemote_ico.exe (Facemoods Installer)  (9e23eb8b08ece167f24ab5523b74a31e)

1 / 68      (PUP)
facemoods.exe (facemoods by facemoods.com)  (6c82929565120558d616f0bdd8a18978)

7 / 68      (PUP)
facemoods_1.3.61.0.exe (facemoods by facemoods.com)  (44c9614a398071990c610354b027d147)

8 / 68      (Adware)
facemoods.exe (Facemoods Installer)  (37d97dec2df974012ca473cbaace61bb)

8 / 68      (Adware)
facemoods_fbsmile_ico.exe (Facemoods Installer)  (eb4fa8991f89abf4054fdfee66b8721c)

1 / 68      (PUP)
facemoods.exe (facemoods by facemoods.com)  (6bc2fc855543cb4f1ab7b44173a3fe99)

3 / 68      (PUP)
facemoods.exe (facemoods by facemoods.com)  (24a5b7297747e6168d2e6b188e9c6342)

1 / 68      (PUP)
facemoods.exe (facemoods by facemoods.com)  (2f5b88d20e277f839f44522bb9967811)

3 / 68      (Adware)
facemoods.exe (Facemoods Installer)  (e4bbe640c63eca364f2f0a2625b9f485)

3 / 68      (Adware)
facemoods.exe (Facemoods Installer)  (51f25619fa96f6cded44236c5d0cbb26)

2 / 68      (Adware)
facemoods.exe (Facemoods Installer)  (faaa0173e0d00ebd06f90191cfc6164c)

5 / 68      (Adware)
facemoods.exe (Facemoods Installer)  (9023491385b767f566e9dac0e6fd13d0)

5 / 68      (Adware)
moviebario_fm.exe (Facemoods Installer)  (87f25814841855adbeb20b7fc597da76)

3 / 68      (PUP)
facemoods.exe (facemoods by facemoods.com)  (d103719c334122a1e24b364a6c0327c1)

1 / 68      (PUP)
facemoods.exe (facemoods by facemoods.com)  (f9fa6d1f38be616960d653a6d841b792)

2 / 68      (PUP)
facemoods.exe (facemoods by facemoods.com)  (cbe3ea94a2ed0978755b0002539ab6f4)

The certificates below are also signed by Volonet Ltd.

00D9EB879A7F4ADB713BB56F5D9EA449DA  (Jan 10, 2012 to Nov 25, 2013)

27228002C4368B8985B0D57BC7FE75CC  (Nov 24, 2010 to Nov 24, 2012)

Remove Volonet Ltd Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to Volonet Ltd by The USERTRUST Network on November 23, 2009 with the serial number '00de39c4ec992110f04979ae8347f5c1dd'.