» AtuZi
Digital Signature
Analysis
Files (6,156)
Related (145)

AtuZi

Publisher Information

AtuZi is a brand of the Sambreel/Yontoo group, a web advertising company located in Carlsbad, CA. The company is a primary distributor of unwanted software. It is part of the Yontoo/Sambreel group and distributes web browser add-ons, typically potentially unwanted and adware in nature, that are designed to modify a user's typical search beahvior as well as display context and popup advertising.

Authority:

VeriSign, Inc.

Valid from:

4/17/2014 8:00:00 AM

Valid to:

4/18/2015 7:59:59 AM

Subject:

CN=AtuZi, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=AtuZi, L=Santa Monica, S=California, C=US

Issuer:

CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:

1095ebec0efd96e9e4c801dca0909c26

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP.Yontoo (M), Adware.Yontoo (M)

100.00%

1 / 68 (Adware)

{d554bd4b-dfc0-4d95-9f0f-a6e6ad0cfa25}w64.sys (StdLib) (d1639216bfd499a261b91717114df862)

1 / 68 (Adware)

AtuZi.PurBrowse.dll (a6bf385ddeff9bd5cdfb2ff8965532c0)

1 / 68 (Adware)

AtuZi.DspSvc.dll (b830cfd3a366c6157ae1408ad90e8a1f)

1 / 68 (Adware)

AtuZi.BrowserAdapter.dll (bada6c929a43847479df671f3bb86ffe)

1 / 68 (Adware)

atuzi.browseradapter64.exe (f0ed8c27ca82fc068a9c57ee297b8951)

1 / 68 (Adware)

atuzibho.dll (AtuZi) (025d97af4ce1873e9aa28313f7212e74)

1 / 68 (Adware)

{a398d4bf-ac93-41b8-983d-d3185c8c4cc1}w.sys (StdLib) (b68b85d569fe6fed4e1f68db7d8c432e)

1 / 68 (Adware)

AtuZi2015032819.exe (04c8245053d99a95623ad783bc513317)

1 / 68 (Adware)

{a398d4bf-ac93-41b8-983d-d3185c8c4cc1}w.sys (StdLib) (6cdda240b96e0a251fc9ee469d30830e)

1 / 68 (Adware)

AtuZi.exe (3442b07beaf7284fb49a9ff52dc0a48e)

1 / 68 (Adware)

{a398d4bf-ac93-41b8-983d-d3185c8c4cc1}w.sys (StdLib) (049d3ef5f5c5c443c02f52c9fe2829aa)

1 / 68 (Adware)

AtuZi2015011306.exe (31377a021d41cdfbe8eb55a44911144d)

1 / 68 (Adware)

AtuZi.PurBrowse.dll (cd726df2a17025eade765115e1f23b7a)

1 / 68 (Adware)

filterapp_c64.exe (38180c73aedce6ceb2a5c0413268903b)

1 / 68 (Adware)

wstlib64.sys (StdLib) (987080aaa8e029899755fd747e32ec08)

1 / 68 (Adware)

AtuZi.exe (f779142a7be66549a4c52644d9fb0189)

1 / 68 (Adware)

atuzibho.dll (AtuZi) (f87e33a0e2eabae5a9f50f0b7114a4d6)

1 / 68 (Adware)

AtuZi.DspSvc.dll (5b19bed3612e6f7481839be278008006)

1 / 68 (Adware)

atuzi.browseradapter.exe (4ca4c8c87f615ca6a47e9617cee002de)

1 / 68 (Adware)

{d554bd4b-dfc0-4d95-9f0f-a6e6ad0cfa25}w64.sys (StdLib) (75334eee2d157c898187f89a9c852bab)

1 / 68 (Adware)

atuziun.exe (44304bcff28ce1eaa67ed12b2f7b3865)

1 / 68 (Adware)

{d554bd4b-dfc0-4d95-9f0f-a6e6ad0cfa25}w.sys (StdLib) (5095b08ea8a96c836cc88d7cb9267a92)

1 / 68 (Adware)

atuzi.repmon.dll (ca1d67693468ed19dc97601820253312)

1 / 68 (Adware)

atuzi.purbrowse.dll (acb57ad5937cfaa4c32fcdf057dfd5c9)

1 / 68 (Adware)

atuzi.ofsvc.dll (d0c38ad22466145b053076b04597f3af)

1 / 68 (Adware)

atuzi.ieupdate.dll (ed97a42de73ba533cf3be00874e0e474)

1 / 68 (Adware)

atuzi.ffupdate.dll (74b36f3057440b4e96ba2bb3cab53a0c)

1 / 68 (Adware)

atuzi.expext.dll (4c3edfd9b5f051d93abba65b6a18a8a0)

1 / 68 (Adware)

atuzi.compatibilitychecker.dll (cf130d103fba194242ec56dd345e523b)

1 / 68 (Adware)

atuzi.brt.dll (436cdc8619c73314501875cf49410073)

Latest 30 of 6,156 files

The following publishers (by Authenticode signature organization name) are related.

30 of 145 publishers

* Note, the details and description above are based on the code signing digital signature issued to AtuZi by VeriSign, Inc. on April 17, 2014 with the serial number '1095ebec0efd96e9e4c801dca0909c26'.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.