Goobzo LTD

Publisher Information

Goobzo LTD is a software publisher located in Haifa, Israel*. The company is a primary distributor of adware type software. Thre are 2 additional code signing certificates issued to this publisher.
Authority:
Thawte, Inc.

Valid from:
5/1/2013 5:00:00 PM

Valid to:
5/2/2015 4:59:59 PM

Subject:
CN=Goobzo LTD, O=Goobzo LTD, L=Haifa, S=Israel, C=IL

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
120b25dde57b88636ad4d97d23b99c88

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.Goobzo, PUP.Goobzo.Installer, Threat.Goobzo.Installer, Adware.Crossrider.Goobzo, Threat.Goobzo.SearchModule
100.00%

VIPRE Antivirus
Threat.4792716, Threat.4150696, Goobzo, Crossrider, Threat.4789396, Trojan.Win32.Generic
98.00%

AVG
Could be an adware MultiBundle, Skodna, ShopperPro, Generic5, Adware Generic5.ANKG, MalSign.Skodna, Toolbar.Crossrider.Q
98.00%

Panda Antivirus
Adware/Goobzo, PUP/MultiToolbar.A, W32/Cosmu.E, Trj/Genetic.gen, PUP/PlusHD
94.00%

avast!
Adware-CDO [PUP], Win32:Adware-CDO [PUP], NSIS:Adware-PQ [PUP], Win32:Malware-gen, Win32:Crossrider-AI [PUP], Win64:Malware-gen
92.00%

Dr.Web
infected with Trojan.Crossrider.17413, Adware.Searcher.2795, Adware.Searcher.2618, Adware.Downware.6419, Adware.Downware.8569
92.00%

Kaspersky
not-a-virus:WebToolbar.Win32.CrossRider, not-a-virus:Downloader.NSIS.Agent, not-a-virus:AdWare.Win32.Shopper, not-a-virus:AdWare.Win32.AdLoad
88.00%

G Data
Win32.Application.GoobZo, Adware.ShopperPro, Win32.Application.Shopperpro, Gen:Variant.Adware.Kazy.444386, Trojan.GenericKD.2079096
82.00%

AhnLab V3 Security
Win-PUP/CrossRider, PUP/Win32.CrossRider, PUP/Win32.MulDrop, PUP/Win32.Toolbar, PUP/Win32.PlusHD
78.00%

Baidu Antivirus
PUA.Win32.SBWatchman, Adware.Win32.Shopper, Adware.Win32.CrossAd, Adware.Win32.CrossRider, Adware.Win64.CrossAd, Adware.Win64.Crossrider
76.00%

20 / 68    (Adware)
ytd.exe  (dcb9006426b9e714e10ce9ead6e88a59)

16 / 68    (Adware)
dcsb_driverupdater_soft_partner.exe  (c40c6e66afc54bbea21fa40ef080e75f)

15 / 68    (Adware)
dcytdieamo_amodc_setup.exe  (4e5c578aa5dcec38033e05447cf5aabb)

17 / 68    (Adware)
ins_yta.exe (by Goobzo)  (80fee12e0d35f2b8547d6f6b999398a3)

25 / 68    (Adware)
c4e0d501-79ee-40f5-930f-d3995cf9f8e5-5.exe (iWebar)  (e0eae82e823799beb6fb186cd15fe249)

20 / 68    (Adware)
c4e0d501-79ee-40f5-930f-d3995cf9f8e5-4.exe (iWebar)  (5479895627913aa2ee6f07b91d48f023)

25 / 68    (Adware)
c4e0d501-79ee-40f5-930f-d3995cf9f8e5-11.exe (iWebar)  (4ccd17892f90521fd416cc61c5db325e)

42 / 68    (Adware)
iwebar-codedownloader.exe (iWebar)  (e11bb5a20a9cfa6e2bc5fc55bee005c5)

33 / 68    (Adware)

37 / 68    (Adware)

19 / 68    (Adware)

44 / 68    (Adware)
object browser-codedownloader.exe (Object Browser)  (7d20b90b0582f4c13aedf873bee012bb)

22 / 68    (Adware)
iwebar-nova.dll  (82dd790b24055678a1ba2fe9b567bfac)

13 / 68    (Adware)
object browser-nova.dll  (a7122eb642c96d27da38a7b7381bf823)

8 / 68      (Adware)
dcair3f61.exe  (d305ff6b3b7e1c7dcbb00ab6f82af61f)

20 / 68    (Adware)
dc1ab5rn01.exe  (7a7f8f059d9454233c9a52421e729c5a)

23 / 68    (Adware)
ins_ytd.exe (YTDownloader by Goobzo.com)  (c6d7d78a8ab9e6fda3ef2326a93bbc6e)

25 / 68    (Adware)
ins_ytd.exe (YTDownloader by Goobzo.com)  (d53fa5c1503e9277d05e69b0d12a9a1e)

19 / 68    (Adware)
dcsmuninstall.exe  (2569ac7dac1e3a7c483b13d0964cf01b)

20 / 68    (Adware)
uninstall.exe  (c73a139300e99a39aba1a36038d5ddd2)

32 / 68    (Adware)
iwebar-buttonutil64.exe (iWebar)  (001367d49882989d7d12c6c713c455b7)

26 / 68    (Adware)
iwebar-buttonutil64.dll  (c47700fb44077705a3b96057c90a2fa4)

44 / 68    (Adware)
iwebar-buttonutil.exe (iWebar)  (bbe5d33111188ceccfbebcceab898c39)

31 / 68    (Adware)
iwebar-buttonutil.dll  (a254bc410698ddbfed6372ce4b8ea1fe)

40 / 68    (Adware)
iwebar-bho64.dll (iWebar)  (a36630a5d6dd2eb682b811fb4215e3a6)

40 / 68    (Adware)
iwebar-bg.exe (iWebar)  (6995e3bdca68540d5e4ccd5afe197760)

41 / 68    (Adware)
iwebar-bho.dll (iWebar)  (1425e61245ddca0362eb058ad1066328)

27 / 68    (Adware)
shopperpro64.dll (ShopperPro Extension by Goobzo)  (eba404f54008f7581b8f368364343b56)

34 / 68    (Adware)
ShopperPro.dll (ShopperPro Extension by Goobzo)  (6a8aef4cefcff3ee766fbf0a79b90471)

19 / 68    (Adware)
cr.exe (Kreteslsveex by Luvzevslwjllo)  (28b7ba268a4d9dd423ede08c859f18a7)

 
Latest 30 of 9,347 files

Downloads URLs for files signed by Goobzo LTD.

14 / 68    (Adware)

The certificates below are also signed by Goobzo LTD.

3C3E526E4FC7FCA9432F2BC6F34C86A5  (Feb 04, 2015 to May 06, 2016)

540C0079991671CE32CA3B11FAC12CD6  (Mar 05, 2014 to Mar 06, 2015)

The following publishers (by Authenticode signature organization name) are related.

Detection Incidence by Country
* Note, the details and description above are based on the code signing digital signature issued to Goobzo LTD by Thawte, Inc. on May 01, 2013 with the serial number '120b25dde57b88636ad4d97d23b99c88'.