AtuZi

Publisher Information

AtuZi is a brand of the Sambreel/Yontoo group, a web advertising company located in Carlsbad, CA. The company is a primary distributor of unwanted software. It is part of the Yontoo/Sambreel group and distributes web browser add-ons, typically potentially unwanted and adware in nature, that are designed to modify a user's typical search beahvior as well as display context and popup advertising.
Remove AtuZi Malware - Powered by Reason Core Security
Authority:
VeriSign, Inc.

Valid from:
4/17/2014 7:00:00 AM

Valid to:
4/18/2015 6:59:59 AM

Subject:
CN=AtuZi, OU=Digital ID Class 3 - Microsoft Software Validation v2, O=AtuZi, L=Santa Monica, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
1095ebec0efd96e9e4c801dca0909c26

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Yontoo.AtuZi (M), Adware.Yontoo.AtuZi (M)
100.00%

MicroWorld eScan
Adware.SwiftBrowse.AZ, Gen:Variant.Adware.BHO.Agent.4, Adware.BrowseFox.D, Adware.SwiftBrowse.CO
30.00%

nProtect
Adware.SwiftBrowse.AZ, Trojan-Clicker/W32.Agent.249624.B, Trojan-Clicker/W32.Agent.280856, Adware.SwiftBrowse.CO
30.00%

Zillya! Antivirus
Adware.Yotoon.Win64.14, Backdoor.CPEX.Win32.29350, Adware.Agent.Win32.9429, Adware.Yotoon.Win64.10, Adware.Kranet.Win32.17
30.00%

Agnitum Outpost
Riskware.Agent, PUA.BrowseFox, PUA.Agent, PUA.SwiftBrowse, Trojan.BPlug
30.00%

F-Prot
W64/A-59c9c70a, W32/A-76f53fd6, W32/BadBHO.AW.gen, W32/A-dd00b781, W32/A-b3b70cb0, W32/A-3ba7c78a, W32/S-68d0bbb5, W64/S-065cf46e
30.00%

avast!
Win32:BrowseFox-EJ [PUP], Win32:BrowseFox-GF [PUP], Win32:PUP-gen [PUP], Win32:BrowseFox-C [PUP]
30.00%

Bitdefender
Adware.SwiftBrowse.AZ, Gen:Variant.Adware.BHO.Agent.4, Adware.BrowseFox.D, Adware.SwiftBrowse.CO
30.00%

Sophos
Browse Fox, PUA 'Browse Fox', Generic PUA II
30.00%

VIPRE Antivirus
Trojan.Win32.Generic, Threat.4150696, Yontoo, Threat.4741131
30.00%

41 / 68    (Adware)

44 / 68    (Adware)

42 / 68    (Adware)
atuzibho.dll (AtuZi)  (176f30c90d233b656b0f673dc86a214c)

1 / 68      (Adware)
atuzi.purbrowse64.exe  (aeb52096e51b70d2fa625d33359585d1)

1 / 68      (Adware)
AtuZi.Repmon.dll  (b8a2633cf0c8589072bd654eca561fc4)

1 / 68      (Adware)
AtuZi.PurBrowse.dll  (9c8c51d20cf6c0dcea042afc25d6c9b9)

1 / 68      (Adware)
AtuZi.BRT.dll  (36da90f4d532f098571e77d0a63f8fb2)

36 / 68    (Adware)
{d554bd4b-dfc0-4d95-9f0f-a6e6ad0cfa25}w.sys (StdLib)  (38b96a44756f0a60ab0cbceed37ae97e)

42 / 68    (Adware)
atuzibho.dll (AtuZi)  (64ec9769e55f7e97d2a6169ce9f6c92d)

1 / 68      (Adware)
AtuZi.Repmon.dll  (b50ac823344c30fd5e64dfd4b4e0c665)

1 / 68      (Adware)
AtuZi.PurBrowse.dll  (c726f848d2029b553b17b83581b13bf0)

1 / 68      (Adware)
AtuZi.CompatibilityChecker.dll  (3304393f7b0671c6f921c4a89e23180b)

1 / 68      (Adware)
AtuZi.BRT.dll  (fbf42500c39cd2491397adb0f35b8fe3)

1 / 68      (Adware)
AtuZi.BrowserAdapter.dll  (57fdfe0a9ea30eaf5c3ff9aecb56c5e3)

1 / 68      (Adware)
AtuZi.Bromon.dll  (1bc72813bd55c92623535499d5594769)

44 / 68    (Adware)

1 / 68      (Adware)
atuzibaapp.dll  (228f3e8ce407b336d7823b0604add268)

1 / 68      (Adware)
AtuZi.BRT.Helper.exe  (06a7a43eab1e88cf46527cda9fbefd3b)

1 / 68      (Adware)
atuzi.browseradapter.exe  (bab16d6e7d3adee4fb7fa72ba1d63ec2)

1 / 68      (Adware)
AtuZi.exe  (4e6b145964bae7418d187f2f79cf2566)

1 / 68      (Adware)
AtuZi.exe  (6550d82ade46b6312df86d317d8adf3d)

1 / 68      (Adware)
AtuZi.exe  (c805b1b5b37709b175a6c8dcaa731498)

1 / 68      (Adware)
2d240827de594be7a8ab64.dll  (7ccc0c1028146169292d828ab9d47be2)

1 / 68      (Adware)
2d240827de594be7a8ab.dll  (5641798c3953fe99420aa794b3caac7a)

1 / 68      (Adware)
atuzi.repmon.dll  (c19fbc2141521581d52935009da99ded)

1 / 68      (Adware)
atuzi.purbrowse.dll  (af3fd20d63aeebf7dbe7403c968fd9e4)

1 / 68      (Adware)
atuzi.ofsvc.dll  (a253dec52e0412ebbdb2a3a2ff3ac227)

1 / 68      (Adware)
atuzi.ffupdate.dll  (a94c00e7f4a0099e55e27430f6d0b083)

1 / 68      (Adware)
atuzi.expext.dll  (fddb0f2e80f073e595f0bbee057ce79c)

1 / 68      (Adware)
atuzi.compatibilitychecker.dll  (3a34f4a30b807e87982038adcacd1723)

 
Latest 30 of 2,468 files

The following publishers (by Authenticode signature organization name) are related.

30 of 145 publishers

Remove AtuZi Malware - Powered by Reason Core Security
* Note, the details and description above are based on the code signing digital signature issued to AtuZi by VeriSign, Inc. on April 17, 2014 with the serial number '1095ebec0efd96e9e4c801dca0909c26'.