» ShopAtHome.com (Belcaro Group, Inc)
Digital Signature
Analysis
Files (20)
Downloads (1,052)
Distribution (1)
Related (4)

ShopAtHome.com (Belcaro Group, Inc)

Publisher Information

ShopAtHome.com (Belcaro Group, Inc) is a software developer located in Greenwood Village, Colorado in the United States*. A majority of the programs developed by the company can be classified as adware or other potentially unwanted programs.

Authority:

Symantec Corporation

Valid from:

5/21/2013 5:00:00 PM

Valid to:

6/6/2014 4:59:59 PM

Subject:

CN="ShopAtHome.com (Belcaro Group, Inc)", O="ShopAtHome.com (Belcaro Group, Inc)", L=Greenwood Village, S=Colorado, C=US, SERIALNUMBER=19871692567, OID.2.5.4.15=Private Organization, OID.1.3.6.1.4.1.311.60.2.1.2=Colorado, OID.1.3.6.1.4.1.311.60.2.1.3=US

Issuer:

CN=Symantec Class 3 Extended Validation Code Signing CA, OU=Symantec Trust Network, O=Symantec Corporation, C=US

Serial number:

05aacc1dbaf989dd6997926c9649baef

Scanner detections:

Detections (100% detected)

Scan engine

Details

Detections

Reason Heuristics

PUP.ShopAtHomeBelcaroGroup.o, PUP.Startup.ShopAtHomeBelcaroGroup.R, PUP.ShopAtHomeBelcaroGroup.S, Plugin.ConduitToolbar.BHO.I, PUP.ShopAtHomeBelcaroGroup.B, PUP.ShopAtHomeBelcaroGroup.N, PUP.Toolbar.ShopAtHomeBelcaroGroup.J, PUP.ShopAtHomeBelcaroGroup.J, PUP.ShopAtHomeBelcaroGroup.q

100.00%

Sophos

SAHAgent Installer

75.00%

Trend Micro House Call

Suspicious_GEN.F47V1106, TROJ_GEN.F47V0106, Suspicious_GEN.F47V0708, TROJ_GEN.F47V0306, TROJ_GEN.F47V0531, TROJ_GEN.F47V1002

50.00%

G Data

Gen:Variant.Adware.ShopAtHome, Win32.Application.ShopAtHome, Win32.Adware.ShopAtHome

30.00%

VIPRE Antivirus

Threat.4729122, ShopAtHome

20.00%

AVG

Skodna.Generic_c

20.00%

Boost by Reason

Optional.Startup.ShopAtHomeBelcaroGroup.R, Optional.BHO.ShopAtHomeBelcaroGroup.I, Optional.ShopAtHomeBelcaroGroup.Q

15.00%

Malwarebytes

PUP.Optional.ShopAtHome.A

15.00%

Dr.Web

Trojan.Damaged.1, Adware.Shopper.370, Adware.Shopper.377

15.00%

MicroWorld eScan

Gen:Variant.Adware.ShopAtHome.1

10.00%

1 / 68 (PUP)

HttpHandle302.dll (ShopAtHome.com Browser App by ShopAtHome.com) (69702fd2d2649db6cfa837955e88bb16)

3 / 68 (PUP)

shopathome_appcore_7127_c38724162_d1_r1009705_b2.exe (14dcea505e01cae34f3e9992a2f56d81)

5 / 68 (PUP)

shopathome_appcore_7120_c96219047_d1_r1050980_b2.exe (9206ab4d028d7618b5f36a560d371d15)

1 / 68 (PUP)

shopathome_appcore_7110_c36578823_d1_r1009978_b3.exe (ad7ad3007f1d181d8e9577b466f79971)

3 / 68 (Adware)

tbhelper.dll (Internet Explorer Toolbar) (edf0df137f6944a1c2281409617a5956)

3 / 68 (Adware)

TbCommonUtils.dll (Internet Explorer Toolbar) (e42e3ff4dc76338e9a87b9602e055e0c)

1 / 68 (PUP)

sahplugin.dll (6542c94933480bd2683082821a771218)

3 / 68 (PUP)

update.exe (Internet Explorer Toolbar) (605d8bd270e68e211f2dfb05f1ced469)

7 / 68 (PUP)

uninstall.exe (Internet Explorer Toolbar) (bd424b8edd4d4869785ed321af241c71)

3 / 68 (PUP)

tbhelper2.exe (Internet Explorer Toolbar) (6ca9d05fd40e8318e88897d65b88f534)

3 / 68 (PUP)

IE8GuardWorkaround.exe (Internet Explorer Toolbar) (f8015e5404c8f0b325de68dc56acd05d)

7 / 68 (PUP)

clearhist.exe (Internet Explorer Toolbar) (f61af33629d6d08fa6937e2192724244)

9 / 68 (PUP)

HttpHandle302.dll (ShopAtHome.com Browser App by ShopAtHome.com) (69702fd2d2649db6cfa837955e88bb16)

4 / 68 (PUP)

ShopAtHomeHelper.exe (ShopAtHome.com Browser App by ShopAtHome.com) (173f22783e1c33aa5d9c2eabba84de47)

5 / 68 (PUP)

exec.exe (cbd040b671789c203ff35c49d35d4a80)

8 / 68 (PUP)

shopathome_app_c66991399_d1_r1033105.exe (e916ad2d5e7dca61aebead661a1dfed8)

2 / 68 (Adware)

tbcore3U.dll (ShopAtHome.com IE Toolbar by ShopAtHome.com) (cb76aa57b1a3c787a06054e2bbea9519)

13 / 68 (PUP)

shopathomehelperps.dll (2128687c93e8cc908e7e3d81301d24b5)

4 / 68 (PUP)

shopathomewatcher.exe (ce215742ba0a6bb1bad9902b5753f657)

2 / 68 (PUP)

shopathome_appcore_7127_c91885524_d1_r92237_b3.exe (fe459b4fbf16ac816c7bb089ff8b1ba2)

Downloads URLs for files signed by ShopAtHome.com (Belcaro Group, Inc).

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1056296&src=SEPDSE&CID=109749646&turl=http://www.shopathome.com/.../rossstores.com?refer=1056296&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1060852&src=SEPDSE&CID=111413347&turl=http://www.shopathome.com/savings/.../?refer=1060852&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1055898&src=SEPDSE&CID=85673357&turl=http://www.shopathome.com/.../ziploc.com?refer=1055898&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=NONBUNDLE&refer=92237&src=AFZTXX&CID=40545380&turl=http://.../&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1011037&src=SEPDSE&CID=47201737&turl=http://.../restaurant-coupons.html?refer=1011037&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=NONBUNDLE&refer=92237&src=AFZTXX&CID=105602803&turl=http://.../&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1030114&src=SEPDSE&CID=108836789&turl=http://.../free-samples.html?refer=1030114&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1050710&src=SEPDSE&CID=111634828&turl=http://www.shopathome.com/.../truvia.com?refer=1050710&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1055600&src=SEPDSE&CID=52785695&turl=http://www.shopathome.com/.../hobbylobby.com?refer=1055600&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1030768&src=SEPDSE&CID=96831221&turl=http://.../restaurant-coupons.html?refer=1030768&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1044502&src=SEPDSE&CID=103680760&turl=http://.../grocery-coupons?refer=1044502&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1004176&src=SEPDSE&CID=83429421&turl=http://.../grocery-coupons?refer=1004176&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1051326&src=SEPDSE&CID=59777697&turl=http://www.shopathome.com/.../butterball.com?refer=1051326&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=dlnopop&refer=92233&src=AFAICX&CID=71032159&turl=http://.../shopgold-rewards.html?action=BrowserAppDownload&actionsubtype=ChromeBrowserAppDownload&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=44832&src=SEPDSE&CID=101049809&turl=http://.../restaurant-coupons.html?refer=44832&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=76085&src=SEPDSE&CID=105312824&turl=http://.../restaurant-coupons.html?refer=76085&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=70801&isnew=n&owner=dlnopop&refer=92299&src=AFRELX&CID=110375025&turl=http://.../shopgold-rewards.html?action=BrowserAppDownload&actionsubtype=ChromeBrowserAppDownload&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1063631&src=SEPDSE&CID=109170253&turl=http://www.shopathome.com/.../skyzone.com?refer=1063631&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=fb13ec042e4b03ea5f04b73744003378&isnew=n&owner=NONBUNDLE&refer=92237&src=AFZTXX&CID=104243349&turl=http://.../&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1063870&src=SEPDSE&CID=111432498&turl=http://www.shopathome.com//.../smokeybones.com?refer=1063870&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1055515&src=SEPDSE&CID=70724417&turl=http://www.shopathome.com/savings/.../?refer=1055515&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=99999&isnew=n&owner=NONBUNDLE&refer=92237&src=AFZTXX&CID=89992474&turl=http://.../&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1052080&src=SEPDSE&CID=48068961&turl=http://www.shopathome.com/.../firstchoice.com?refer=1052080&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1052321&src=SEPDSE&CID=38795877&turl=http://www.shopathome.com/.../walmart.com?refer=1052321&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1054616&src=SEPDSE&CID=110490184&turl=http://.../grocery-coupons&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1042637&src=SEPDSE&CID=110415781&turl=http://.../popular-grocery-coupons?refer=1042637&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=76997&src=SEPDSE&CID=68785645&turl=http://www.shopathome.com/.../hobbylobby.com?refer=76997&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1060861&src=SEPDSE&CID=108355819&turl=http://www.shopathome.com/savings/.../?refer=1060861&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=3ee803ce1b009648e76eba252888d11e&isnew=n&owner=NONBUNDLE&refer=92237&src=AFZTXX&CID=107776396&turl=http://.../&DSP=1&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

2 / 68 (PUP)

http://toolbar.shopathome.com/install/download.aspx?subid=&isnew=n&owner=nonbundle&refer=1055618&src=SEPDSE&CID=44030254&turl=http://www.shopathome.com/.../michaels.com?refer=1055618&DSP=0&bitiid=&finst=false&cookieuser=true (shopathome_appcore_7127_c91885524_d1_r92237_b3.exe)

Latest 30 of 1,052 download URLs

Distribution

The following websites host and distribute files published by ShopAtHome.com (Belcaro Group, Inc).

toolbar.shopathome.com

The following publishers (by Authenticode signature organization name) are related.

ShopAtHome.com (Belcaro Group, Inc.)

ShopAtHome.com

think-cell Software GmbH

Luth Research LLC

* Note, the details and description above are based on the code signing digital signature issued to ShopAtHome.com (Belcaro Group, Inc) by Symantec Corporation on May 21, 2013 with the serial number '05aacc1dbaf989dd6997926c9649baef'.

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.