Goobzo LTD

Publisher Information

Goobzo LTD is a software publisher located in Haifa, Israel*. The company is a primary distributor of adware type software.
Authority:
Thawte, Inc.

Valid from:
5/2/2013 1:00:00 AM

Valid to:
5/3/2015 12:59:59 AM

Subject:
CN=Goobzo LTD, O=Goobzo LTD, L=Haifa, S=Israel, C=IL

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
120b25dde57b88636ad4d97d23b99c88

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Crossrider.Goobzo.V, PUP.Goobzo.g, PUP.Crossrider.Goobzo.K, PUP.Goobzo.G, PUP.Goobzo.U, PUP.Crossrider.Goobzo.J, PUP.Crossrider.Goobzo.R, PUP.Goobzo.C, PUP.Goobzo.I, PUP.Goobzo.L, PUP.Crossrider.Goobzo.T, PUP.Goobzo.K, PUP.Crossrider.Goobzo.M
100.00%

VIPRE Antivirus
Crossrider, Goobzo, Threat.4789396, Threat.4792716
92.00%

AVG
Skodna, MalSign.Skodna
88.00%

Panda Antivirus
Adware/Goobzo, W32/Cosmu.E, PUP/MultiToolbar.A
86.00%

Baidu Antivirus
Adware.Win32.CrossRider, Adware.Win32.ShopperPro, Adware.Win32.CrossAd, Adware.Win32.SBWatchman, Adware.Win64.Crossrider
80.00%

IKARUS anti.virus
not-a-virus:WebToolbar.CrossRider, AdWare.Lyckriks, AdWare.CrossRider, PUA.PlusHD, PUA.OptionalInst.Goobzo, not-a-virus:WebToolbar.CroRi
74.00%

Sophos
AppRider, Generic PUA IA
60.00%

Avira AntiVir
ADWARE/CrossRider.Gen2, Adware/CrossRider.A.2574, Adware/CrossRider.A.4948, Adware/CrossRider.A.15862, Adware/CrossRider.A.677
56.00%

Qihoo 360 Security
HEUR/Malware.QVM10.Gen, Win32/Trojan.Adware.37e
56.00%

Malwarebytes
PUP.Optional.iWebar.A, PUP.Optional.ScramblePacker.A, PUP.Optional.Goobzo
52.00%

3 / 68      (Adware)
iwebar-buttonutil64.dll  (641a7cc727019fb0e05e449f88021781)

3 / 68      (Adware)
iwebar-buttonutil.dll  (4a535f71cdfd7624d8a6de86c7d6d62e)

10 / 68    (Adware)
uninstall.exe  (16525db4a4ad3b4abebf32a7f820a0bd)

8 / 68      (Adware)
cr.exe  (fae97fa4b09036ba288507e44c71d3f3)

8 / 68      (Adware)
cr.exe  (28acec7fd0ea1be35eb70a607a9c880d)

8 / 68      (Adware)
iwebar-nova.dll  (1bc0b420d4da99606b40dfcb764ceb1b)

10 / 68    (Adware)
iwebar-buttonutil64.dll  (4e58e9357dc28c6becf3b603e2c79f95)

13 / 68    (Adware)
iwebar-buttonutil.dll  (7e9bf029bb8d006e097908855b4aaecc)

19 / 68    (Adware)
iwebar-bho64.dll (iWebar)  (08d7c48b9674c2eebb02ec96b7107090)

7 / 68      (Adware)
uninstall.exe  (f6b5bfcf8a72093ef80415b385546e30)

27 / 68    (Adware)
iwebar-buttonutil64.exe (iWebar)  (b69bb014b7fd5b340f9717deb9383bcf)

29 / 68    (Adware)
iwebar-buttonutil.exe (iWebar)  (c97325f8d6e2daa49139acf399b63aba)

49 / 68    (Adware)
iwebar-bg.exe (iWebar)  (7f8d647925ee9b8f0e6a1636ba0b34fa)

48 / 68    (Adware)
iwebar-bho.dll (iWebar)  (36d721bfc9162dea3f68b733da216a02)

34 / 68    (Adware)
iwebar-nova.exe (iWebar)  (6dac1268683c4d8dc203aae473467d47)

10 / 68    (Adware)
0d202004-a729-4ad5-a1a5-cc73fe467806-4.exe (iWebar)  (a3dea20a87ec0691a93f44fa1aa5eec6)

21 / 68    (Adware)
0d202004-a729-4ad5-a1a5-cc73fe467806-2.exe (iWebar)  (ac1b9f611c0e6e0d2984fa16d1540d17)

17 / 68    (Adware)
0d202004-a729-4ad5-a1a5-cc73fe467806-11.exe (iWebar)  (872f061fa11ce36d0ffe5116722e03b9)

1 / 68      (Adware)
iwebar.exe  (ebd835ece247dfd8e9dc0037f147b77c)

1 / 68      (Adware)
iwebar.exe  (5be6d3714eb185b9b8943d58dc2394ea)

7 / 68      (Adware)
shopperpro.exe  (0e01e54246a05066f4396e247d860aa9)

9 / 68      (Adware)
iwebar-buttonutil64.dll  (9c6b77b29b331bfb206b09250453372c)

12 / 68    (Adware)
iwebar-buttonutil.dll  (fae66a23778c53415b7bfbfc841c13a9)

8 / 68      (Adware)
cr.exe  (4245bba28687772dfedbbd46d6aa0cf7)

48 / 68    (Adware)
iwebar-bho.dll (iWebar)  (79f25cc4aa42e40781df05ee65d56c14)

19 / 68    (Adware)
0384e70b-c08e-4459-87ca-79194b1d7351-5.exe (iWebar)  (b9804015482cf2d1a69600dfecf18af5)

11 / 68    (Adware)
0384e70b-c08e-4459-87ca-79194b1d7351-4.exe (iWebar)  (5d077bb551d6d3c51e272cb1c3637537)

13 / 68    (Adware)
0384e70b-c08e-4459-87ca-79194b1d7351-2.exe (iWebar)  (b7a4009307c6c65547774861125db8bc)

17 / 68    (Adware)
0384e70b-c08e-4459-87ca-79194b1d7351-11.exe (iWebar)  (2f1e897fe498a7b3309a7978acc673e7)

48 / 68    (Adware)
iwebar-codedownloader.exe (iWebar)  (ec5639df05a9a79f9d311e01b272fc8c)

 
Latest 30 of 2,988 files

The following publishers (by Authenticode signature organization name) are related.

Detection Incidence by Country
* Note, the details and description above are based on the code signing digital signature issued to Goobzo LTD by Thawte, Inc. on May 02, 2013 with the serial number '120b25dde57b88636ad4d97d23b99c88'.