home

Sendori, Inc

Publisher Information

Sendori, Inc is a software publisher located in Oakland, California in the United States*. The company is a primary distributor of unwanted software. Sendori provides ad-supported web browser extensions that will modify the browser's search providers as well as inject advertising including DNS typo squating and redirection to participating brands. Thre are 2 additional code signing certificates issued to this publisher.
Authority:
VeriSign, Inc.

Valid from:
3/11/2012 7:00:00 PM

Valid to:
4/4/2013 6:59:59 PM

Subject:
CN="Sendori, Inc", OU=Digital ID Class 3 - Microsoft Software Validation v2, O="Sendori, Inc", L=Oakland, S=California, C=US

Issuer:
CN=VeriSign Class 3 Code Signing 2010 CA, OU=Terms of use at https://www.verisign.com/rpa (c)10, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US

Serial number:
28fa9f749bfc21c3fdfcfefb6497011b

Scanner detections:
Detections  (76% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Sendori (M), PUP.Sendori.ResignedInterop (M), Common.PartOf.PUP.Sendori.MozillaFoundation (M), Common.PartOf.PUP.Sendori (M), PUP.Sendori.Installer (M)
100.00%

VIPRE Antivirus
Threat.4793387, Sendori
30.00%

ESET NOD32
Generik.IERBPVQ (variant), MSIL/Adware.Sendori (variant), Win32/AdWare.Sendori (variant)
12.00%

AVG
Sendori, Generic6
4.00%

MicroWorld eScan
Adware.Sendori.E
4.00%

nProtect
Adware.Sendori.E
4.00%

Agnitum Outpost
PUA.Sendori
4.00%

Bitdefender
Adware.Sendori.E
4.00%

Lavasoft Ad-Aware
Adware.Sendori.E
4.00%

F-Secure
Adware.Sendori.E
4.00%

1 / 68      (Adware)
sndappv2.exe (sndappv2.exe by Sendori)  (6098eed80e772453f42fe7c9b3d7ebc2)

1 / 68      (Adware)
sendori.exe (Sendori.exe by Sendori)  (953828e981a49377edd03f582c97b94f)

1 / 68      (Adware)
sndappv2.exe (sndappv2.exe by Sendori)  (51630e657e104487ad3897a7a6047b94)

1 / 68      (Adware)
sndappv2.exe (sndappv2.exe by Sendori)  (51630e657e104487ad3897a7a6047b94)

1 / 68      (Adware)
sendorisetupx11903.exe  (76013f317e6bf5cab59bfdf8412d597b)

1 / 68      (Adware)
sendorisetupx11803.exe (Sendori by Sendori)  (c7e575266f610834aa7749a9eadab1d3)

1 / 68      (Adware)
sndappv2.exe (sndappv2.exe by Sendori)  (51630e657e104487ad3897a7a6047b94)

1 / 68      (Adware)
79378b.tmp (Sendori by Sendori)  (4df545cb188bccd2abdecad0739d6d44)

1 / 68      (Adware)
setup.exe (Sendori by Sendori)  (7b01e73e89bdb896bfdaced4f84c1f6d)

1 / 68      (Adware)
SendoriUp.exe (Sendori Upgrade Assistant by Sendori)  (c5ba76228ec6a17c353fc1b784a0f2f5)

1 / 68      (Adware)
SendoriControl.exe (Sendori by Sendori)  (307e50e578a75cbb95440891a88100e7)

1 / 68      (Adware)
SendoriConfig.exe (Sendori by Sendori)  (15cea289486ae8b5ad37de22ef3d23f0)

1 / 68      (Adware)
sndappv2.exe (sndappv2.exe by Sendori)  (51630e657e104487ad3897a7a6047b94)

1 / 68      (Adware)
sndappv2.exe (sndappv2.exe by Sendori)  (51630e657e104487ad3897a7a6047b94)

1 / 68      (Adware)
SendoriUp.exe (Sendori Upgrade Assistant by Sendori)  (a8be8fb251214b412434b365059dda49)

1 / 68      (Adware)
SendoriSvc.exe (Sendori Service by Sendori)  (0a26bd4313119d30c31787fc2f97cc85)

1 / 68      (Adware)
Sendori.Service.exe (Sendori.Service by sendori)  (dcc389fab04e8469a5939c655f7f1ca7)

1 / 68      (Adware)
sendori.exe (Sendori.exe by Sendori)  (1c59b1619fbcc104f5c5bccd53e61b55)

11 / 68    (Adware)
SendoriTray.exe (Sendori by Sendori)  (7a0cf1249c08f673aedcf74cf3a3490e)

2 / 68      (Adware)
SendoriUp.exe (Sendori Upgrade Assistant by Sendori)  (72b46486ccd59498f08ce1f9fc3c9864)

1 / 68      (inconclusive)
ssl3.dll (Network Security Services by Mozilla Foundation)  (7d14e7f45f01b78e3c712c2da0d140a1)

1 / 68      (inconclusive)
sqlite3.dll  (b5c124375a4cc3f9d9d91af28d10f23e)

1 / 68      (inconclusive)
softokn3.dll (Network Security Services by Mozilla Foundation)  (b93273160fdc371fe20eec25969024a4)

1 / 68      (Adware)
sndcertdll.dll (SndCertDLL.dll by Sendori)  (c9cd65af6360e3d4f9e90982bfa70b13)

1 / 68      (inconclusive)
smime3.dll (Network Security Services by Mozilla Foundation)  (0f1d8d1f7b9c51a00a258cd9d8f41293)

2 / 68      (Adware)
sendorilsp64.exe (SendoriLSP64.exe by Sendori)  (d6e7d64bbd93faf41e0368190cdd147a)

2 / 68      (Adware)
sendori32.sys (Sendori Watchdog by Sendori)  (e445cb349332328579ee7b2088791cf3)

3 / 68      (Adware)
Sendori.Library.dll (Sendori Application V2 by Sendori)  (0efd2f2d343d6aa1f061d67668f04a8e)

1 / 68      (inconclusive)
nssutil3.dll (Network Security Services by Mozilla Foundation)  (f00bac8ff06d156eaf376dafcc1d5964)

1 / 68      (inconclusive)
nssdbm3.dll (Network Security Services by Mozilla Foundation)  (a4854bbd977b00d4af3c375889827af6)

 
Latest 30 of 166 files

Downloads URLs for files signed by Sendori, Inc.

1 / 68      (Adware)
http://dl.kbm2.com/.../?beta=NglsMmVMZmxDZyAjc2cgLwUXDW0IAkZjaWBmICAwcSFjO2QaRCEzaC1AbSgNYGI6W207RX5 YWIHQicCZmQcXws7A0Rt  (79378b.tmp)

The following websites host and distribute files published by Sendori, Inc.

dl.kbm2.com

The certificates below are also signed by Sendori, Inc.

7442E44B0C8A4CAFD2E5797F9201E3FF  (Mar 10, 2013 to May 10, 2014)

6A8CD259E21F05F060D52547EE219B9B  (Apr 04, 2011 to Apr 04, 2012)

The following publishers (by Authenticode signature organization name) are related.

Sendori, LLC

Mezaa

Yontoo LLC

OutBrowse Ltd

Visicom Media Inc.

betwikx

Babylon Ltd.

* Note, the details and description above are based on the code signing digital signature issued to Sendori, Inc by VeriSign, Inc. on March 11, 2012 with the serial number '28fa9f749bfc21c3fdfcfefb6497011b'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.