home

RewardsArcade.dll

RewardsArcade

215 Apps

This file is a support library for an advertising-based software package (potentially unwanted/adware) distributed by 50onRed used to hijack the Internet browser search provider. The module RewardsArcade.dll, “RewardsArcade BHO” has been detected as adware by 7 anti-malware scanners. It is installed within the context of Internet Explore as a BHO (Browser Helper Object) under the name ‘RewardsArcade’. This file is typically installed with the program RewardsArcade by 215 Apps which is a potentially unwanted software program. The library is built using the Crossrider cross-browser extension toolkit. While the file utilizes the Crossrider framework and delivery services, it is not owned by Crossrider.
Publisher:
215 Apps

Product:
RewardsArcade

Description:
RewardsArcade BHO

Version:
1.0.0.1

MD5:
631a4889949b04d9c0b1d8360d7c2f8d

SHA-1:
69facd8834049b5c8852c0861d1ff5c53e8488cd

Scanner detections:
7 / 68

Status:
Adware

Explanation:
Browser extension that injects additional advertisements (banner and text links) on web pages.

Analysis date:
4/23/2024 10:18:01 AM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
Adware.GamePlayLabs.17
9.0.1.0209

K7 AntiVirus
Riskware
13.174.10286

McAfee
Artemis!631A4889949B
5600.7056

Reason Heuristics
PUP.215Apps.N
14.7.28.10

Sophos
AppRider
4.95

Trend Micro House Call
TROJ_GEN.R0C1H01H113
7.2.209

VIPRE Antivirus
Crossrider
23630

File size:
511 KB (523,264 bytes)

Product version:
1.0.0.1

Copyright:
Copyright 2010

Original file name:
RewardsArcade.dll

File type:
Dynamic link library (Win32 DLL)

Language:
English (United States)

Common path:
C:\Program Files\rewardsarcade\rewardsarcade.dll

Registration
CLSIDs:
{25514C64-8321-494e-BD3E-3DBAB3F8CEBA}, {597A9974-8CB0-4f41-B61F-ED065738A397}, {BDA89DCD-8B25-48c7-B1E2-07CA622E0CA8}

ProgIDs:
RewardsArcade.FBApi.1, RewardsArcade.BHO.1, RewardsArcade.Sandbox.1

COM registered:
Yes

File PE Metadata
Compilation timestamp:
10/16/2011 4:07:55 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
10.0

CTPH (ssdeep):
6144:pWXWPKZwAwpF/3KtGBmdgS20EfPCXnPQnv4JP9oX134Yz5omkpV2YuRw9:sDXa3XBcg7HPC/YvLiV2LRw9

Entry address:
0x2370B

Entry point:
8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, F0, 74, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 2D, A4, 03, 00, 00, 74, 22, 83, E8, 04, 74, 17, 83, E8, 0D, 74, 0C, 48, 74, 03, 33, C0, C3, B8, 04, 04, 00, 00, C3, B8, 12, 04, 00, 00, C3, B8, 04, 08, 00, 00, C3, B8, 11, 04, 00, 00, C3, 8B, FF, 56, 57, 8B, F0, 68, 01, 01, 00, 00, 33, FF, 8D, 46, 1C, 57, 50, E8, EC, BF, FF, FF, 33, C0, 0F, B7, C8, 8B, C1, 89, 7E, 04, 89, 7E, 08, 89, 7E, 0C, C1, E1, 10, 0B, C1, 8D, 7E...
 
[+]

Entropy:
6.7339

Code size:
310 KB (317,440 bytes)

Internet Explorer BHO
Display name:
RewardsArcade

CLSID:
{597A9974-8CB0-4f41-B61F-ED065738A397}


The file RewardsArcade.dll has been discovered within the following program.

RewardsArcade  by 215 Apps
RewardsArcade by 215 Apps (Awesome Apps / Red Online Marketing Group LP) is a Browser Helper Object installed into Internet Explorer that monitors web pages for possible affiliate merchant partners.
www.50onred.com
82% remove it
 
Powered by Should I Remove It?

Remove RewardsArcade.dll - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.