Goobzo LTD

Publisher Information

Goobzo LTD is a software publisher located in Haifa, Israel*. The company is a primary distributor of adware type software. Thre are 2 additional code signing certificates issued to this publisher.
Authority:
Thawte, Inc.

Valid from:
5/1/2013 8:00:00 PM

Valid to:
5/2/2015 7:59:59 PM

Subject:
CN=Goobzo LTD, O=Goobzo LTD, L=Haifa, S=Israel, C=IL

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
120b25dde57b88636ad4d97d23b99c88

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Adware.Crossrider.Goobzo, PUP.Goobzo.Installer, Threat.Goobzo.Installer, Threat.Goobzo.YTDownloader, PUP.Goobzo.YTDownloader, Adware.Goobzo.ShopperPro
100.00%

VIPRE Antivirus
Threat.4789396, Threat.4792716, Goobzo, Threat.4150696, Trojan.Win32.Generic, Crossrider
100.00%

AVG
Potentially harmful program Crossrider.ZV, Potentially harmful program Crossrider.CZV, Potentially harmful program Crossrider.AKW
100.00%

Dr.Web
Adware.Searcher.2804, Trojan.Crossrider.27498, Adware.Searcher.2804, Trojan.Crossrider1.27358, Adware.Searcher.2804, Trojan.Crossrider.27839
94.00%

avast!
Win32:Crossrider-AG [PUP], Win32:Crossrider-AI [PUP], Adware-CDO [PUP], Win32:Adware-CDO [PUP], Win32:Adware-BST [PUP], Win32:Crossrider-AK [PUP]
94.00%

Kaspersky
not-a-virus:WebToolbar.Win32.CrossRider, not-a-virus:Downloader.NSIS.Agent, not-a-virus:AdWare.Win32.Shopper, not-a-virus:AdWare.Win32.AdLoad
92.00%

G Data
Gen:Variant.Adware.Plush, Gen:Variant.Kazy.374109, Gen:Variant.Adware.Kazy.374062, Gen:Variant.Adware.Kazy.374109, Win32.Application.GoobZo
90.00%

Panda Antivirus
Adware/Goobzo, PUP/PlusHD, Trj/Genetic.gen, PUP/MultiToolbar.A, W32/Cosmu.E, Trj/Chgt.B
84.00%

Sophos
Goobzo, Generic PUA LL, AppRider, PUA 'AppRider' (of type Adware), PUA 'Goobzo' (of type Adware), Generic PUA GL, Generic PUA JG
78.00%

AhnLab V3 Security
PUP/Win32.CrossRider, PUP/Win32.PlusHD, Win-PUP/CrossRider, PUP/Win32.MulDrop, Win32/Kashu.E, PUP/Win32.Helper, PUP/Win32.Goobzo
78.00%

25 / 68    (Adware)
dcytdownloader.exe  (09b75880d6381c08553745e3775fbcad)

34 / 68    (Adware)
34d16228-9e90-4879-9804-8e38b5180d78-5.exe (iWebar)  (7e098c895a03c54e834fc71cfde3c087)

20 / 68    (Adware)
34d16228-9e90-4879-9804-8e38b5180d78-2.exe (iWebar)  (0ac9b2e1d0b5f60048a4a02cb564ae98)

30 / 68    (Adware)
jsdrv.sys (JsDriver)  (975e0ceae78f5102d7a9d69002e6460c)

19 / 68    (Adware)
dcytaiesmt_smtyc_setup.exe  (7fb62f5d06a5aa8449f0a07d4f801f7c)

20 / 68    (Adware)
dcytdieamo_amodc_setup.exe  (04c11e16f5a0027624cd8c53b8ece7f2)

14 / 68    (Adware)
tu17p84.exe  (4c4dde5c65cb701b4cb159c46713162f)

25 / 68    (Adware)
ins_ytd.exe (YTDownloader by Goobzo.com)  (9885f136c580a834407f8f7fbf846446)

22 / 68    (Adware)
ins_yta.exe (by Goobzo)  (72ba9ae7ecf1eb54542a4495e8487a58)

21 / 68    (Adware)
object browser-helper.exe  (98022050cca4bcc5c2aa554661d3fcb8)

33 / 68    (Adware)
object browser-buttonutil64.exe (Object Browser)  (2ebe8c5396b12c2f222a162d28bd5f4c)

27 / 68    (Adware)
object browser-buttonutil64.dll  (fcdf9b79eb9c1c787d6aa2b683f0f07b)

42 / 68    (Adware)
object browser-buttonutil.exe (Object Browser)  (5507ec9ad9e473859b41f9703e8ce561)

13 / 68    (Adware)
object browser-buttonutil.dll  (dc6a4924f3872bd73fea2f2e1a186b46)

24 / 68    (Adware)
469e2d23-c85c-42c0-9d8f-afc2924bf5f5.dll  (7ae17d2b2fa0652fbe6c4cf9f57ca425)

19 / 68    (Adware)
uninstall.exe  (416809639fd19fb89f9a1a0c5aec080e)

42 / 68    (Adware)
iwebar-buttonutil.exe (iWebar)  (eb75fe49f5ed63e645411e6097cb152e)

25 / 68    (Adware)
iwebar-buttonutil.dll  (a79213f50059dc537c2d2b8e37e86edc)

40 / 68    (Adware)
iwebar-bg.exe (iWebar)  (77ebd59236e4021c9e4b50efe2655ffe)

26 / 68    (Adware)
c5e11f07-d107-4049-9d8f-dbaf244b751b.dll  (ca2651119bfb47b3b59cba582bb99723)

42 / 68    (Adware)
iwebar-bho.dll (iWebar)  (21345d21544bb2eb38597dd58ecc391e)

35 / 68    (Adware)
d6d74f3d-a4e5-4778-b66b-9ddd34d113f8-5.exe (iWebar)  (6b260ad91c11d1d3ca9835e061068e72)

37 / 68    (Adware)
d6d74f3d-a4e5-4778-b66b-9ddd34d113f8-4.exe (iWebar)  (1cd7bdc8767d9dadae9eb12e798525a4)

10 / 68    (Adware)
d6d74f3d-a4e5-4778-b66b-9ddd34d113f8-2.exe (iWebar)  (977af5b1f57a8e9e6ffb1259f5d14f00)

44 / 68    (Adware)
iwebar-codedownloader.exe (iWebar)  (c01da3ab607bcc26f6b326686e0be342)

31 / 68    (Adware)

37 / 68    (Adware)

35 / 68    (Adware)

34 / 68    (Adware)
d6d74f3d-a4e5-4778-b66b-9ddd34d113f8-6.exe (iWebar)  (6728ced5593319a697b96cfd04edab33)

33 / 68    (Adware)

 
Latest 30 of 9,388 files

The certificates below are also signed by Goobzo LTD.

3C3E526E4FC7FCA9432F2BC6F34C86A5  (Feb 04, 2015 to May 06, 2016)

540C0079991671CE32CA3B11FAC12CD6  (Mar 05, 2014 to Mar 06, 2015)

The following publishers (by Authenticode signature organization name) are related.

Detection Incidence by Country
* Note, the details and description above are based on the code signing digital signature issued to Goobzo LTD by Thawte, Inc. on May 01, 2013 with the serial number '120b25dde57b88636ad4d97d23b99c88'.