home

Acai Tech Ltd

Publisher Information

Acai Tech Ltd is a software developer located in Hod Hasharon, Sharon in Israel*. The company is a primary distributor of unwanted software.
Authority:
COMODO CA Limited

Valid from:
9/21/2014 8:00:00 PM

Valid to:
9/22/2015 7:59:59 PM

Subject:
CN=Acai Tech Ltd, O=Acai Tech Ltd, STREET=Rakefet 19, L=Hod Hasharon, S=Sharon, PostalCode=4520634, C=IL

Issuer:
CN=COMODO RSA Code Signing CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
189e85b982528243713729ac8244d22c

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Service.AcaiTech.H, PUP.Bitcocktail.AcaiTech, PUP.Service.AcaiTech.G, PUP.AcaiTech.E, PUP.AcaiTech.F, PUP.AcaiTech.H, PUP.BHO.AcaiTech.G, PUP.AcaiTech.G, Common.OpenSSLPackaged.PUP.I, PUP.AcaiTech.K, PUP.AcaiTech.R, PUP.Service.AcaiTech.J, PUP.Bitcocktail.AcaiTech (M), PUP.Bitcocktail (M)
100.00%

ESET NOD32
Win32/Toolbar.BitCocktail (variant), Win64/Toolbar.Perion (variant), Win32/Toolbar.Perion (variant), Win32/VMDetect
46.00%

Dr.Web
Adware.Shopper.816, Adware.Shopper.863, Adware.Shopper.821, Trojan.DownLoader11.40958
38.00%

Emsisoft Anti-Malware
Gen:Variant.Graftor.160428, Adware.Shopperz, Gen:Variant.Kazy.479159, Gen:Variant.Kazy.461155, Gen:Variant.Adware.Kazy.435629
22.00%

ESET NOD32
Win32/Toolbar.BitCocktail.C potentially unwanted application, Win32/Toolbar.Perion.J potentially unwanted application, Win64/Toolbar.Perion.B potentially unwanted application
22.00%

Avira AntiVirus
TR/Rogue.86352, TR/Graftor.429368, TR/Trash.Gen, TR/Patched.Gen
20.00%

G Data
Gen:Variant.Graftor.160428, Adware.Shopperz, Gen:Variant.Kazy.479159, Gen:Variant.Kazy.461155, Win32.Trojan.Agent.GBUBO2
20.00%

MicroWorld eScan
Gen:Variant.Graftor.160428, Adware.Shopperz.A, Gen:Variant.Kazy.479159, Gen:Variant.Kazy.461155, Gen:Variant.Adware.Kazy.435629
18.00%

Bitdefender
Gen:Variant.Graftor.160428, Adware.Shopperz.A, Gen:Variant.Kazy.479159, Gen:Variant.Kazy.461155, Gen:Variant.Adware.Kazy.435629
18.00%

Lavasoft Ad-Aware
Gen:Variant.Graftor.160428, Adware.Shopperz.A, Gen:Variant.Kazy.479159, Gen:Variant.Kazy.461155, Gen:Variant.Adware.Kazy.435629
18.00%

1 / 68      (Adware)
sprz.exe (by shopperz)  (ffbd02d5fc06106926cb959188ebebaf)

1 / 68      (Adware)
dsrvprn.exe  (a5b76c60fda7f384f1fc0cb53d90b3ab)

1 / 68      (Adware)
tmp00000002be0fa9cfc9f506f3  (db08da561fbb259d9024c1863b479589)

1 / 68      (Adware)
nfregdrv32.exe  (120f2e6ae59f8f430fbf121d6925e7c6)

8 / 68      (Adware)
vbsprn64.exe (Notifications)  (6be340b4a63bddb372af856464e86f0f)

16 / 68    (Adware)
vbsprn.exe (Notifications)  (89d88ad4aa2fc8ae009030865f065d66)

3 / 68      (Adware)
upservdef.exe  (17f7c716de87d3b920527b38dabdc4b0)

1 / 68      (inconclusive)
ssleay32.dll (The OpenSSL Toolkit by The OpenSSL Project, http://www.openssl.org/)  (c216834e931e4d7fdeded1793befdcde)

1 / 68      (Adware)
protocolfilters32.dll  (07b025a80dbbf5e2727d29869db54960)

1 / 68      (Adware)
nfregdrv64.exe  (7d0ef8b5291d7878e6299d86176d7818)

1 / 68      (Adware)
nfapi64.dll  (c7c54d742a8e4ffe85c1e2a1c7f12989)

1 / 68      (Adware)
nfapi32.dll  (b459daa53d55c4a195e1f0897487556c)

1 / 68      (inconclusive)
libeay32.dll (The OpenSSL Toolkit by The OpenSSL Project, http://www.openssl.org/)  (adc9d9327b7976e0e53706891594a2af)

3 / 68      (Adware)
jvwn64.dll  (5b2ccbe0d7bfd883a630ba5f8d8becf9)

4 / 68      (Adware)
jvhk64.dll  (9b916df78ae6f557d139c388a8297f2a)

7 / 68      (Adware)
jvhk.dll  (c71dbfe011f18c8daa7ffaf2ed6ef336)

3 / 68      (Adware)
jvdr64.dll  (1e422a65dd6d0fff7c0de557b2af10d4)

14 / 68    (Adware)
jvdr.dll  (db7681c4e227849191a4b7a990c8e405)

10 / 68    (Adware)
istrhr.dll  (39ad7b7081dc129cd200d85bb61492b7)

2 / 68      (Adware)
gvnj64.dll  (8fd2c819ca526fbb978a8f6b118ce3d7)

4 / 68      (Adware)
gvnj.dll  (8ccd7d1a9c7b0b1d4f1d22e211e7bae2)

6 / 68      (Adware)
gvc.exe  (e4eb9d8f5d0eadde2d8009eaa8e1dd5f)

4 / 68      (Adware)
eson64.dll  (5b61302f96b47ececff5f958fe9d3e0f)

3 / 68      (Adware)
eson32.dll  (bab2fe46330cb50f22c88239b32259a5)

12 / 68    (Adware)
csrcc.exe (TODO: <Product name> by TODO: <Company name>)  (af67710d87cb83edf65da4d078a69afe)

13 / 68    (Adware)
hbk.exe (by Pitaya Tech)  (6a5b12dd088404e1133a3510d669590a)

7 / 68      (Adware)
jvwn.dll  (7bf30b4dbca0359d267ba8843a65fb59)

4 / 68      (Adware)
bop64.dll  (2d25901c3d2334eee39a67b3b337e208)

3 / 68      (Adware)
bop32.dll  (917013d8d0a4d6fb348278ccc73d2fcc)

20 / 68    (Adware)
setspz.exe  (2af27d1ce67f9f8668d913425f7cf75b)

 
Latest 30 of 53 files

Downloads URLs for files signed by Acai Tech Ltd.

20 / 68    (Adware)
http://95.211.82.145/file/Main/setspz(1).exe/.../  (2af27d1ce67f9f8668d913425f7cf75b)

13 / 68    (Adware)
http://dfe8370a2961598fcf36-78e3d3d82d3ad0a3905742af01c7c45f.r91.cf5.rackcdn.com/.../hbk.exe  (6a5b12dd088404e1133a3510d669590a)

20 / 68    (Adware)
http://cdn.airdlr3.com/downloads/offers/.../setspz_2.exe  (2af27d1ce67f9f8668d913425f7cf75b)

20 / 68    (Adware)
http://fbdca1aa8b880016bf93-fe8db8e793d145b7a307239462d85480.r72.cf5.rackcdn.com/.../setspz.exe  (2af27d1ce67f9f8668d913425f7cf75b)

12 / 68    (Adware)
http://fbdca1aa8b880016bf93-fe8db8e793d145b7a307239462d85480.r72.cf5.rackcdn.com/.../sprz.exe  (d75bf6b9372a9fb570ddfabef0ce7d7a)

The following websites host and distribute files published by Acai Tech Ltd.

dfe8370a2961598fcf36-78e3d3d82d3ad0a3905742af01c7c45f.r91.cf5.rackcdn.com

fbdca1aa8b880016bf93-fe8db8e793d145b7a307239462d85480.r72.cf5.rackcdn.com

cdn.airdlr3.com

The following publishers (by Authenticode signature organization name) are related.

Jabuticaba Ltd

Pitaya Tech Ltd

Goodware

Sapodilla Ltd

* Note, the details and description above are based on the code signing digital signature issued to Acai Tech Ltd by COMODO CA Limited on September 21, 2014 with the serial number '189e85b982528243713729ac8244d22c'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.