home

Xori Tech Ltd.

Publisher Information

Xori Tech Ltd. is a software publisher located in Tel Aviv, Israel*. A majority of the programs developed by the company can be classified as adware or other potentially unwanted programs.
Authority:
COMODO CA Limited

Valid from:
9/2/2013 7:00:00 PM

Valid to:
9/3/2014 6:59:59 PM

Subject:
CN=Xori Tech Ltd., O=Xori Tech Ltd., POBox=61570, STREET=Itzhak Sade 28, L=Tel Aviv, S=Israel, PostalCode=67212, C=IL

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
008ccdb1868b45ff0b1800ce93d0a44c1b

Scanner detections:
Detections  (93% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Installer.XoriTech.U, (M), PUP.Conduit (M), Adware.Crossrider.XoriTech (M), Threat.Win.Reputation.IMP, Threat.Win.Reputation (M), Adware.Crossrider (M)
84.09%

Malwarebytes
PUP.Optional.Conduit.A, PUP.Optional.CrossRider, PUP.Optional.Adtool
29.55%

Dr.Web
Trojan.Crossrider.20, infected with Trojan.Crossrider.10029, Adware.Conduit.82, Adware.Conduit.3, infected with Trojan.Crossrider.4
27.27%

Kaspersky
not-a-virus:AdWare.Win32.Agent, not-a-virus:Downloader.NSIS.Agent, not-a-virus:WebToolbar.Win32.Agent
22.73%

ESET NOD32
Win32/Toolbar.Conduit, Win32/Toolbar.Conduit.R potentially unwanted
18.18%

Trend Micro House Call
TROJ_GE.F05D327E, TROJ_GEN.F47V0206, TROJ_GEN.F47V0216, TROJ_GEN.F47V0917, TROJ_GEN.F47V0205, TROJ_GEN.F47V0520, TROJ_GEN.F47V0331
18.18%

ESET NOD32
Win32/Packed.ScrambleWrapper.I potentially unwanted application, Win32/Toolbar.Conduit.AR potentially unwanted application
18.18%

Vba32 AntiVirus
AdWare.Agent, Downloader.Agent
15.91%

McAfee
Artemis!1B5FE48895CB, Adware-Crossrider, Artemis!C3BE8A1444B5, Artemis!0BB08B477567, Artemis!4CF0964F4507
13.64%

Quick Heal
AdWare.Agent.r4 (Not a Virus), PUA.Conduitltd.Gen, Downloader.NSIS.r6 (Not a Virus)
9.09%

1 / 68      (Malware)
30493_updater.exe (FatCatArcade by alon)  (c05d68cc3bec7df518610d4f81035aa7)

0 / 68
myga_ie.exe  (7c6eb5cbfbbd8a0731d5c3d7fda6d7b0)

10 / 68    (PUP)
panda_ch.exe  (551bcf9d823cb86d57d5d5770de44329)

1 / 68      (Adware)
fatcatarcade-buttonutil64.exe (FatCatArcade by alon)  (aa8566bb45e2b2192cfbecec7076127c)

1 / 68      (Adware)
fatcatarcade-buttonutil64.dll  (08daf443e8d6679dfb7d00ffa1716461)

1 / 68      (Adware)
fatcatarcade-bho64.dll (FatCatArcade by alon)  (7506eb6dc7f21fe8effa821ff8f87ed6)

1 / 68      (Adware)
fatcatarcade-enabler.exe (FatCatArcade by alon)  (872ff829c9f8ae63af54b71c85c9db68)

1 / 68      (Adware)
fatcatarcade-chromeinstaller.exe (FatCatArcade by alon)  (2cf05b264a21cbc9428a645ec7eb72ed)

1 / 68      (Malware)
fatcatarcade.exe (Alersx by Gncwe)  (6faa3c8d3cedde9379fed5432db5817e)

0 / 68
panda_ff.exe  (da44287381b840a0acb7c4e87c53b450)

9 / 68      (PUP)
pizy_ch.exe  (b984d51ebd2e3012010150cbd0c64dba)

1 / 68      (Malware)
radiog_ie.exe  (b887fdc8b292d18d6280a980dac95f75)

3 / 68      (PUP)
bugs_ie.exe  (057ea8f9b941ab376dd7fc51510b0e1c)

2 / 68      (inconclusive)
bugs_ie.exe  (bad499ee1e745e5d930ed8fbd4de3eaa)

16 / 68    (PUP)
fm1_app_ie.exe  (4cf0964f4507f215a03772dd5f6b2261)

1 / 68      (Malware)
uninstall.exe  (45dfc94da1a9a64a737770cd6ee9aff7)

1 / 68      (Adware)
fatcatarcade-helper.exe  (3bfb6e6a3d1a15fad89c60b1d2573eac)

1 / 68      (Adware)
fatcatarcade-buttonutil64.exe (FatCatArcade by alon)  (16def07c07c28dce801f3237537be719)

1 / 68      (Adware)
fatcatarcade-buttonutil64.dll  (34f436717f937e9c852f891c920e96a6)

1 / 68      (Adware)
fatcatarcade-buttonutil.exe (FatCatArcade by alon)  (4ba46e2289636179cfbf4918913bf5ac)

1 / 68      (Adware)
fatcatarcade-buttonutil.dll  (3151ef5f5990e7bf77970fbf06c9df19)

1 / 68      (Adware)
fatcatarcade-bho64.dll (FatCatArcade by alon)  (8617597779fe9d6b05ac6a6a36cbdc86)

1 / 68      (Adware)
fatcatarcade-bg.exe (FatCatArcade by alon)  (14b74844297d09f7957c800033b9af45)

1 / 68      (Adware)
fatcatarcade-bho.dll (FatCatArcade by alon)  (b0e3bf97a480bcc7107bae597cc3cfa1)

1 / 68      (Adware)
fatcatarcade-codedownloader.exe (FatCatArcade by alon)  (5c67f90048e7aa7bd80e9e5d33ba5864)

1 / 68      (Adware)
fatcatarcade-chromeinstaller.exe (FatCatArcade by alon)  (dd86a4240272b7ed4b2492d52d971fc4)

3 / 68      (PUP)
bugs_ff.exe  (780630b5427c632ebfccacaf7323a6b6)

1 / 68      (Malware)
uninstall.exe  (6df2767e7274d4712034b568ee822329)

1 / 68      (Malware)
fatcatarcade-helper.exe  (b6df8213bbdefdbd908d7f084e377cc4)

1 / 68      (Adware)
fatcatarcade-buttonutil.exe (FatCatArcade by alon)  (51db9d726929c150513c5a273a126fce)

 
Latest 30 of 46 files

Downloads URLs for files signed by Xori Tech Ltd..

16 / 68    (PUP)
http://www.fullhappywheelsgame.com/download/.../fm1_app_ie.exe  (4cf0964f4507f215a03772dd5f6b2261)

6 / 68      (PUP)
http://www.pandabite.com/playnowmyga.php  (fatcatarcade.exe)

9 / 68      (PUP)
http://www.pizy.com/playnowmyga.php  (pizy_ch.exe)

2 / 68      (PUP)
http://www.dafdefan.com/playnow.php  (radiog_ch.exe)

2 / 68      (PUP)
http://www.bugs.co.il/playnow.php?title=  (radiog_ch.exe)

2 / 68      (PUP)
http://www.bugs.co.il/playnow.php  (radiog_ch.exe)

2 / 68      (PUP)
http://www.vol.co.il/playnow.php  (radiog_ch.exe)

5 / 68      (PUP)
http://www.fullhappywheelsgame.com/.../RadioG_ie.exe  (02cc0ed6f76b50c1adc995607906fd83)

2 / 68      (PUP)
http://www.fm1.co.il/sargel.php  (radiog_ch.exe)

8 / 68      (PUP)
http://www.fullhappywheelsgame.com/download/.../gj_ch.exe  (05ca8c930326a7c27fadf19115e810ee)

8 / 68      (PUP)
http://www.fullhappywheelsgame.com/download/.../g_usa.php  (gj_ch.exe)

8 / 68      (PUP)
http://www.ulan.com/dl.php?p=53&so=1&si=96&t=&cookie=true  (gj_ch.exe)

8 / 68      (PUP)
http://www.ulan.com/dl.php?p=53&so=1&si=96&t=  (gj_ch.exe)

8 / 68      (PUP)
http://www.pandabite.com/playnowmyga.php  (gj_ch.exe)

14 / 68    (PUP)
http://download.my-apps-repository.com/installer/30493/.../0/.../0/CrossriderApp0030493.exe  (2643b118e75ac4ad0bcb3cc9918513a4)

13 / 68    (PUP)
http://download.my-apps-repository.com/installer/28312/.../0/.../0/CrossriderApp0028312.exe  (6b8061d7d8c92025ac29966837e38987)

The following websites host and distribute files published by Xori Tech Ltd..

www.vol.co.il

www.bugs.co.il

www.fullhappywheelsgame.com

www.pandabite.com

www.dafdefan.com

download.my-apps-repository.com

www.fm1.co.il

www.ulan.com

The following publishers (by Authenticode signature organization name) are related.

Engaging Apps

Crossrider Advanced Technologies

Conduit Ltd.

Kimahri Software inc.

Brightcircle Investments Limited

Mein Gutscheincode GmbH

INSZoom.com Inc

ClientConnect LTD

Goobzo LTD

Wolters Kluwer U.S Corporation

think-cell Software GmbH

KEYDOWNLOAD LTD

Webedge Advertising Corporation

Engauge Marketing, LLC

Iridize Ltd.

Shoeboxed Inc.

BeeStripe LLC

Hoonto, Inc.

Oleg Bezugliy

Yuna Software Limited

Wunderman pxp GmbH

EdVOCAL, LLC

Shop for your Cause LLC

Browse Report LLC

Symmetry Communications, LLC

Log-Tech Communications LTD

contact@wubbleyou.co.uk

Deutsche Kreditbank Aktiengesellschaft

Social Good Network, LLC.

TipRanks LTD

30 of 45 publishers

* Note, the details and description above are based on the code signing digital signature issued to Xori Tech Ltd. by COMODO CA Limited on September 02, 2013 with the serial number '008ccdb1868b45ff0b1800ce93d0a44c1b'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.