Goobzo LTD

Publisher Information

Goobzo LTD is a software publisher located in Haifa, Israel*. The company is a primary distributor of adware type software.
Authority:
Thawte, Inc.

Valid from:
5/1/2013 8:00:00 PM

Valid to:
5/2/2015 7:59:59 PM

Subject:
CN=Goobzo LTD, O=Goobzo LTD, L=Haifa, S=Israel, C=IL

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
120b25dde57b88636ad4d97d23b99c88

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Goobzo.g, PUP.Crossrider.BHO.S, PUP.Goobzo.C, PUP.Goobzo.h, PUP.Crossrider.Goobzo.R, PUP.Crossrider.Goobzo.Z, PUP.Crossrider.Goobzo.BB, PUP.Goobzo.J, PUP.Goobzo.e, PUP.Crossrider.Goobzo.U, PUP.Crossrider.Goobzo.DD, PUP.Goobzo.D, PUP.Goobzo.G, PUP.Goobzo.F, PUP.Goobzo.L, PUP.Goobzo.X
100.00%

VIPRE Antivirus
Threat.4789396, Crossrider, Threat.4792716, Goobzo
92.00%

AVG
Skodna, Generic5, MalSign.Skodna
84.00%

Panda Antivirus
Adware/Goobzo, W32/Cosmu.E, W32/Sality.AA, PUP/PlusHD
82.00%

Baidu Antivirus
PUA.Win32.CrossRider, Adware.Win32.CrossRider, PUA.Win64.Crossrider, Adware.Win32.CrossAd, Adware.Win64.Crossrider, PUA.MSIL.SBWatchman
80.00%

ESET NOD32
Win32/Toolbar.CrossRider.AH potentially unwanted application, Win32/Toolbar.CrossRider.AF potentially unwanted application
64.00%

IKARUS anti.virus
PUA.OptionalInst.Goobzo, Trojan.GoogUpdate, AdWare.CrossRider, AdWare.Adload, AdWare.Win32.Crossrider, PUA.CrossRider, not-a-virus:WebToolbar.CroRi
58.00%

Dr.Web
Adware.Plugin.152, Adware.Toolbar.234, Adware.Siggen.31029, Adware.Siggen.31030, infected with Trojan.Crossrider.27788, Trojan.Crossrider.29967
44.00%

Sophos
Goobzo, AppRider, Adware.AppRider
42.00%

Malwarebytes
PUP.Optional.ObjectBrowser.A, PUP.Optional.PlusHD.A, PUP.Optional.CrossRider, PUP.Optional.Goobzo
40.00%

8 / 68      (Adware)
smri64.dll (SBWatchman by Search Module)  (a313d4a016e97c726c1a687d36a8d59b)

8 / 68      (Adware)
smri32.dll (SBWatchman by Search Module)  (fa06b73c8ed6dfd51b444ad23fb5986e)

8 / 68      (Adware)
smoi64.dll (SBWatchman by Search Module)  (f30d1b940c62db52f84e37ab563d660e)

8 / 68      (Adware)
smoi32.dll (SBWatchman by Search Module)  (325a0b95f4c9d73033dede51f0878bf1)

1 / 68      (Adware)
smfi64.dll (by Search Module)  (127a3a5be708deda589a44c1a0c057dd)

8 / 68      (Adware)
smfi32.dll (by Search Module)  (fbbcbf48067c2c572445d3875fa283d9)

8 / 68      (Adware)
smei64.dll (W by Search Module)  (d8874db4af78cc594d503fa4417abb3d)

4 / 68      (Adware)
smei32.dll (W by Search Module)  (f0cf885e2fd64f9c84f4a5c4874cdb31)

8 / 68      (Adware)
smci64.dll (SBWatchman by Search Module)  (367f15b4e82333ca119a2db7d2deafc9)

9 / 68      (Adware)
smci32.dll (SBWatchman by Search Module)  (f9ee9d310bed3d59bab821a1141dbc73)

7 / 68      (Adware)
sbiebrowserhelperobject.dll (SBWatchman by Search Module)  (e8b55dada483bacf4c93169acf088ff0)

13 / 68    (Adware)
smuninstall.exe  (ad2296749b6f950a791c14e826ca11af)

7 / 68      (Adware)
smi64.exe (SBInject Application)  (18f377cf1c7b5b8373942bb4a9994958)

7 / 68      (Adware)
smi32.exe (SBInject Application)  (d80e777d3fba8df64fc01c5aa2320da5)

6 / 68      (Adware)
sma.exe (W by )  (022fe52f4805e1029969e3a7d7ebc062)

11 / 68    (Adware)
sm.exe (Search module)  (fecf65900510f694efa1cc8a576058b8)

6 / 68      (Adware)
smw.sys (sbw)  (f92815d1ae6d5b26440b2047d91ce3c2)

8 / 68      (Adware)
smu.exe (W by Search Module)  (8602d13a7e7a6fdf6d276435380f58f6)

8 / 68      (Adware)
object browser-buttonutil64.dll  (ca7ec506164fafe2c9d2e6cc309f174a)

3 / 68      (Adware)
object browser-buttonutil.dll  (f7634221200a0222b4cc2fd8a31c6b8d)

16 / 68    (Adware)
object browser-bho64.dll (Object Browser)  (e928238719e04e9ee3c6bde51e32bb0f)

8 / 68      (Adware)
e6519c92-5823-49b3-9d9c-ee250b89b833.dll  (ed2d810a558208a6a34661d7d8ec1735)

12 / 68    (Adware)
69d16c12-498f-4f9c-bd54-a3ac946a1c4f.dll  (3a9756f7ee3079efb677f52a80d59150)

1 / 68      (Adware)
uninstall.exe  (fd18f9c337f683b80aa22521db519002)

20 / 68    (Adware)
object browser-buttonutil64.exe (Object Browser)  (fedc2455efd2ee29271d29605b7f679c)

50 / 68    (Adware)
object browser-buttonutil.exe (Object Browser)  (f18bbb64ba7c1776e048f5c7c5f41169)

49 / 68    (Adware)
object browser-bg.exe (Object Browser)  (c8ad7d11c3f3017967aec024195be82b)

48 / 68    (Adware)
object browser-bho.dll (Object Browser)  (310c812421b3cb270da476294ec0c8a0)

4 / 68      (Adware)

20 / 68    (Adware)

 
Latest 30 of 4,188 files

The following publishers (by Authenticode signature organization name) are related.

Detection Incidence by Country
* Note, the details and description above are based on the code signing digital signature issued to Goobzo LTD by Thawte, Inc. on May 01, 2013 with the serial number '120b25dde57b88636ad4d97d23b99c88'.