Woolik technologies ltd

Publisher Information

Woolik technologies ltd is a software developer located in Or Yeuda, Israel*. The company is a primary distributor of unwanted software. There is one additional code signing certificate issued to this publisher.
Authority:
VeriSign, Inc.

Valid from:
7/24/2013 9:00:00 PM

Valid to:
7/25/2014 8:59:59 PM

Subject:
CN=Woolik technologies ltd, OU=Digital ID Class 3 - Microsoft Software Validation v2, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=Woolik technologies ltd, L=Or Yeuda, S=israel, C=IL

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
233d2998915945a85914a5071b609336

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.Wooliktechnologiesltd.H, PUP.Babylon.Task.I, PUP.Installer.Wooliktechnologiesltd.F, PUP.Wooliktechnologiesltd.Q, PUP.Wooliktechnologiesltd.G, PUP.Wooliktechnologiesltd.K, PUP.Wooliktechnologiesltd.J, PUP.Montiera.Wooliktechnologies (M), PUP.Montiera.Wooliktechnologies.Installer (M), PUP.Babylon.Montiera (M), PUP.Montiera.Woolikte.Installer (M), PUP.Montiera.Woolikte (M), PUP.Montiera (M)
100.00%

Dr.Web
Adware.Babylon.12, Trojan.StartPage.56734, DLOADER.Trojan, Adware.Babylon.10, Adware.Babylon.14
32.50%

ESET NOD32
Win32/Toolbar.Babylon, Win32/Toolbar.Babylon (variant)
32.50%

Malwarebytes
PUP.Optional.Babylon.A, PUP.Optional.BabSolution.A, PUP.Optional.PCFixSpeed.A, PUP.Optional.Delta.A
30.00%

Trend Micro House Call
TROJ_GEN.F47V0726, TROJ_GEN.F47V0916, TROJ_GEN.F47V0927, TROJ_GEN.F47V1014, TROJ_GEN.R0CBB04L913, TROJ_GEN.F47V1017, TROJ_GEN.F47V0912
27.50%

Bkav FE
W32.Clod2b6.Trojan, W32.Clod96b.Trojan, W32.Clod599.Trojan, W32.Clod004.Trojan, W32.Clodbef.Trojan, W32.Cloda72.Trojan, W32.Clod411.Trojan
25.00%

Comodo Security
Application.Win32.Babylon.ag, Application.Win32.Babylon.id, Application.Win32.SearchRes.tg, Application.Win32.Babylon.ac
22.50%

Vba32 AntiVirus
suspected of Trojan.Downloader.gen, Downloader.Agent
20.00%

Agnitum Outpost
I-Worm.Chir.B, Trojan.Agent, PUA.Toolbar.Babylon, PUA.Downloader
20.00%

NANO AntiVirus
Trojan.Win32.Babylon.csmnej, Trojan.Win32.StartPage.cssmvq, Trojan.Win32.Babylon.csuksh, Trojan.Win32.Agent.ctknvv
17.50%

1 / 68      (Adware)
chrometoolbarsetup.dll  (a356e715372d3c6765ea7ff247c2273a)

1 / 68      (Adware)
searchgoltb.exe  (e382d50c91fa9772480d61311ff30284)

1 / 68      (Adware)
fntupdtr.exe  (26548d02b0f116eb5382ae8552ea23a7)

1 / 68      (Adware)
fntupdtr.exe  (7345c771bf03c7456c2ab8a0a0579b21)

1 / 68      (Adware)
searchgoltb.exe  (070c39ae167f15b952173e278fbe4185)

1 / 68      (Adware)
300614_b4.exe  (5f96cb2656c0fb5cbdd3843f950a39bb)

1 / 68      (Adware)
setup.exe (Setup Module by Babylon)  (f98d0d45a821ec1ce401b44c61e4f848)

1 / 68      (Adware)
fntupdtr.exe  (b5ae127177cff13485ec80dff9a041b3)

1 / 68      (Adware)
080514_b4.exe  (52b5d656c82dd3dafad0a1055659ac52)

1 / 68      (Adware)
1.exe  (4ecd3e2c7af201cc2e18e38bee025374)

1 / 68      (Adware)
guninstaller.exe (Uninstaller by Babylon)  (713a30e028e2af53004fef16c3cc42e3)

1 / 68      (Adware)
setup.exe (Setup Module by Babylon)  (de049d962fafb4ba66fe5c2c4b7d4529)

1 / 68      (Adware)
guninstaller.exe (Uninstaller by Babylon)  (5923daab753e4c26458f6a3ee2003116)

1 / 68      (Adware)
babmaint.exe  (bef4e1d5791a0e2e548acecdda0a6428)

1 / 68      (Adware)
setup.exe (Setup Module by Babylon)  (2dc01f2629a33360e1429c39f81edd3d)

1 / 68      (Adware)
guninstaller.exe (Uninstaller by Babylon)  (528ea75c07cbffc7d5767dffd89d493c)

1 / 68      (Adware)
babmaint.exe  (1298649f0ab206b0d04ee4782fd374c2)

1 / 68      (Adware)
onlytb.exe  (fd89cf92a698d101c7cca24429df6862)

1 / 68      (Adware)
setup.exe (Setup Module by Babylon)  (8bb4935d6dcfc452833b180e0d816d00)

1 / 68      (Adware)
BUSolution.dll (BU Dynamic Link Library)  (58eaadae1000537a52c1eb5de6d34985)

14 / 68    (Adware)
pcfixspeed_0509-e1347670.exe  (773db2d47c0556009e1642e6ec71d96a)

11 / 68    (Adware)
air71d.exe  (e32f7eb50053552ca87b70885123c349)

7 / 68      (Adware)
dale.exe  (1c59d8d173650a2c2858783eb52eb22d)

4 / 68      (Adware)
enhancedNT.dll (enhancedNT)  (c832cca094f955a548c9e8afa12c6f62)

1 / 68      (Adware)
130214_b4.exe  (33ca9785b4db85594e96bc59e183210c)

2 / 68      (Adware)
130214_b4.exe  (d9df24536e21336a9e2171d5f7b646c0)

10 / 68    (Adware)
tbtika.exe  (aa2ae1ae0b97efd2681a79cdabd0f39d)

4 / 68      (Adware)
enhancedNT.dll (enhancedNT)  (806c31db5f8d1ba3998a8df26882b7d2)

11 / 68    (Adware)
optitb.exe  (d1de3417c65153cc3fa958a47c15bc1f)

7 / 68      (Adware)
toolbar26706653.exe  (ddaf09528ef4af5749438d50a54b5ad1)

 
Latest 30 of 40 files

Downloads URLs for files signed by Woolik technologies ltd.

1 / 68      (Adware)
http://www.hakoonportal.net/.../240714_b4.exe  (33ca9785b4db85594e96bc59e183210c)

1 / 68      (Adware)

1 / 68      (Adware)

1 / 68      (Adware)

7 / 68      (Adware)
http://d2txuyvgupvxmq.cloudfront.net/doko.exe  (ddaf09528ef4af5749438d50a54b5ad1)

2 / 68      (Adware)
http://cdn.download4desktop.com/Installer/.../BaiduAV.exe  (d9df24536e21336a9e2171d5f7b646c0)

1 / 68      (Adware)
http://www.wikizu.net/.../300614_b4.exe  (33ca9785b4db85594e96bc59e183210c)

13 / 68    (Adware)
http://media.opencandy.com/p/908/.../SearchGolTB.exe  (4b5b56bbc4d472d52c03c7dc6c33026d)

1 / 68      (Adware)

11 / 68    (Adware)
http://cdninst.com/offers/.../TikaTB.exe  (e32f7eb50053552ca87b70885123c349)

13 / 68    (Adware)
http://media.opencandy.com/p/908/.../SearchGolTB.exe  (4b5b56bbc4d472d52c03c7dc6c33026d)

2 / 68      (Adware)
http://s3.amazonaws.com/.../BaiduAV.exe  (d9df24536e21336a9e2171d5f7b646c0)

1 / 68      (Adware)
http://s3.amazonaws.com/.../BaiduAV.exe  (33ca9785b4db85594e96bc59e183210c)

The following websites host and distribute files published by Woolik technologies ltd.

The following certificate is also signed by Woolik technologies ltd.

7F992DC68CD6D89798B6148730F501CD  (Sep 15, 2014 to Aug 22, 2015)

The following publishers (by Authenticode signature organization name) are related.

30 of 85 publishers

* Note, the details and description above are based on the code signing digital signature issued to Woolik technologies ltd by VeriSign, Inc. on July 24, 2013 with the serial number '233d2998915945a85914a5071b609336'.