home

App Squad

Publisher Information

App Squad is a software developer located in Philadelphia, Pennsylvania in the United States*. The company is a primary distributor of unwanted software. App Squad (Red Online Marketing Group LP) is a advertising software producer of web browser add-ons designed to display ads and affiliate offers within the web pages of a web browser. The company re-distributes a few dozen of the same adware type programs through monetized bundled installations primarily using the Crossrider toolbar platform.
Authority:
Thawte, Inc.

Valid from:
3/18/2014 1:00:00 AM

Valid to:
3/26/2015 12:59:59 AM

Subject:
CN=App Squad, O=App Squad, L=Philadelphia, S=Pennsylvania, C=US

Issuer:
CN=Thawte Code Signing CA - G2, O="Thawte, Inc.", C=US

Serial number:
49f47d57212b012c506e1cb5ce9af0f8

Scanner detections:
Detections  (100% detected)

Scan engine
Details
Detections

Reason Heuristics
Adware.GamePlayLabs (M), PUP.50OnRed (M)
100.00%

1 / 68      (Adware)
frameworkbho.dll (Framework)  (e1f1224981351d8b4af4b65982e9b67c)

1 / 68      (Adware)
frameworkengine.exe (Framework)  (72f410b6ec3654c4608b7d7e6c7237cb)

1 / 68      (Adware)
frameworkbho64.dll (Framework)  (da7d002b099e85e2cc7f103bb6d8debd)

1 / 68      (Adware)
frameworkbho.dll (Framework)  (bc85b1c0d18bf355292fbfb01dde1ca3)

1 / 68      (Adware)
frameworkbho.dll (Framework)  (5ec0753b2c5d48ae5de3ee69a4f24941)

1 / 68      (Adware)
frameworkbho64.dll (Framework)  (093d2190c7751b96bacf33566f356b08)

1 / 68      (Adware)
trzd881.tmp  (a87776b8ce2e0f00ea05549c8519f56d)

1 / 68      (Adware)
trz88e2.tmp  (6dcb38ca5cef11828457fe0fce6b7a18)

1 / 68      (Adware)
trz28e4.tmp  (6fa043e2b392769ebc84a9c3f6b4e5ec)

1 / 68      (Adware)
setup_coupon server-1.1.20140523.exe  (3c1ba3f9270b8cf0222d43284c2935f5)

1 / 68      (Adware)
trzb02d.tmp  (afad8158fb543cf69572479385d9dab3)

1 / 68      (Adware)
trz42a3.tmp  (5d8e9eb1e5fddd3dac94148675edc556)

1 / 68      (Adware)
trz27.tmp  (ad58cf6425d576208ad6cc91b9317d57)

1 / 68      (Adware)
frameworkbho64.dll (Framework)  (46ab952f0fd90757f5653c7cee5ffefd)

1 / 68      (Adware)
frameworkbho.dll (Framework)  (9b1e3f1fa584ad54ff67183e89e955a0)

1 / 68      (Adware)
frameworkbho64.dll (Framework)  (632212cd619d5021bd740df8a71e398f)

1 / 68      (Adware)
setup_savings hen-1.0.20140523.exe  (d090c4538c84b0e69be1fcc4b61ccc0d)

1 / 68      (Adware)
frameworkengine.exe (Framework)  (fb7fca8f5dc7315ca8adc7f9197569aa)

1 / 68      (Adware)
frameworkbho64.dll (Framework)  (b16e6e1cecd7b7da306e089da9e3cb7b)

1 / 68      (Adware)
frameworkbho.dll (Framework)  (de173f7259dd2c466e8c60f73865e732)

1 / 68      (Adware)
frameworkbho64.dll (Framework)  (adfd4d1acf88c186a991d71e4d95ba5e)

1 / 68      (Adware)
frameworkbho.dll (Framework)  (6f0c206a987447048801b3da0edc6b58)

1 / 68      (Adware)
frameworkengine.exe (Framework)  (8393eb840e8ef19eff3a766cfa791b73)

1 / 68      (Adware)
trz683c.tmp (Framework)  (e511d44ece62abda7adc35d4dbfad70a)

1 / 68      (Adware)
trz4a78.tmp (Framework)  (50993e5487b04448207fb96736190c43)

1 / 68      (Adware)
frameworkbho64.dll (Framework)  (48d02bda1baf54a2ccaf2b319ae8be8b)

1 / 68      (Adware)
frameworkbho64.dll (Framework)  (695f31f986f744558cb7556accc3ee3c)

1 / 68      (Adware)
frameworkbho.dll (Framework)  (de72f940ddb23f936b435764707e34d2)

1 / 68      (Adware)
frameworkengine.exe (Framework)  (5d994fa0eece141fe31f7ed9a6899b88)

1 / 68      (Adware)
frameworkbho64.dll (Framework)  (22986fb9bd840cd553e5f8f4f9c22132)

 
Latest 30 of 810 files

* Note, the details and description above are based on the code signing digital signature issued to App Squad by Thawte, Inc. on March 18, 2014 with the serial number '49f47d57212b012c506e1cb5ce9af0f8'.
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.