Did you just stumble upon a download or a file on your computer that has a digital signature from Innovative Apps? Some of the security products refers to the detected files as GamePlayLabs (v) and Win32:Installer-M [Adw]. The detection rate for the Innovative Apps files collected here is 12%. Please read on for more details.
You will probably see Innovative Apps when double-clicking to run the file. The publisher name shows up as the "Verified publisher" in the UAC dialog as the screenshot shows:
You can view additional details from the Innovative Apps certificate with the following steps:
Here is a screenshot of a file signed by Innovative Apps:
As you can see in the screenshot above, Windows reports that "This digital signature is OK". This implies that the file has been published by Innovative Apps and that no one has tampered with the file.
If you click the View Certificate button shown in the screencap above, you can examine all the details of the certificate, such as when it was issued, who issued the certificate, how long it is valid, and so on. You can also see the address for Innovative Apps, such as the street name, city and country.
Thawte Code Signing CA - G2 has issued the Innovative Apps certificates. You can also examine the details of the issuer by clicking the View Certificate button shown in the screencap above.
The following are the Innovative Apps files I have gathered, thanks to the FreeFixer users.
Detection Ratio | File Name |
---|---|
7/47 | Solid Savings-bho.dll |
5/46 | Deal Spy.dll |
2/46 | Supreme Savings.dll |
8/47 | Updater26278.exe |
6/48 | Solid Savings.dll |
7/48 | Solid Savings-bho.dll |
3/47 | Discount Buddy.dll |
4/46 | Discount Buddy-bho.dll |
2/46 | Supreme Savings.dll |
1/46 | Supreme Savings.dll |
16/45 | Supreme Savings.dll |
2/47 | Tiger Savings-bg.exe |
8/47 | Solid Savings.dll |
8/47 | Solid Savings-bho.dll |
7/48 | SolidSavings[1] |
3/46 | Tiger Savings.dll |
9/48 | Deal Spy.dll |
5/47 | Supreme Savings.dll |
8/47 | Updater26766.exe |
6/46 | TigerSavings.exe |
7/47 | Tiger Savings.dll |
7/47 | Updater12767.exe |
Here is the detection names for the Innovative Apps files. I've grouped the detection names by each scanner engine. Thanks to VirusTotal for the scan results.
Scanner | Detection Names |
---|---|
AVG | SmartShopper.G |
AntiVir | Adware/VidSaver.1.119 |
Avast | Win32:Installer-M [Adw], Win32:Crossrider-C [PUP] |
Baidu-International | Trojan.Win32.Toolbar.An |
BitDefender | Gen:Variant.Adware.VidSaver.1 |
Comodo | ApplicUnwnt |
DrWeb | Adware.Plugin.73, Adware.Plugin.88, Trojan.Crossrider.1, Adware.Downware.1054 |
ESET-NOD32 | probably a variant of Win32/Toolbar.CrossRider.A, a variant of Win32/Toolbar.CrossRider.A, a variant of Win32/Toolbar.CrossRider.C, a variant of Win32/Toolbar.CrossRider.H, Win32/Packed.ScrambleWrapper.A, Win32/Packed.ScrambleWrapper.C |
Emsisoft | Riskware.Win32.Toolbar.CrossRider.AMN (A), Gen:Variant.Adware.VidSaver.1 (B) |
F-Secure | Gen:Variant.Adware.VidSaver.1 |
Fortinet | Adware/Fam.NB |
GData | Win32.Trojan.Agent.PJ8N0B, Gen:Variant.Adware.VidSaver.1, Win32.Trojan.Agent.BEYN98, Win32.Trojan.Agent.08IFKK, Win32.Trojan.Agent.BC0J0F, Win32.Trojan.Agent.DCH5IW |
Ikarus | AdWare.Win32.CouponCompanion, Win32.SuspectCrc |
K7AntiVirus | Riskware |
Kingsoft | Win32.Troj.Generic.a.(kcloud) |
Malwarebytes | PUP.Optional.CrossRider, Spyware.Password |
McAfee | Artemis!F0C24ECC6070, Artemis!D2792215D54D, Artemis!8F46487A9E9C, Artemis!470630B7C1F9, Artemis!DCA9338F4512, Artemis!D544C330255C |
McAfee-GW-Edition | Artemis!F0C24ECC6070, Artemis!D2792215D54D, Artemis!8F46487A9E9C, Artemis!470630B7C1F9, Artemis!DCA9338F4512, Artemis!D544C330255C |
MicroWorld-eScan | Gen:Variant.Adware.VidSaver.1 |
PCTools | Adware.Crossid!rem |
Sophos | AppRider |
Symantec | SecurityRisk.Downldr, Adware.Crossid, WS.Reputation.1 |
TrendMicro-HouseCall | TROJ_GEN.F47V0430, TROJ_GEN.RCBH1CL, TROJ_GEN.F47V0307, TROJ_GEN.F47V0411, TROJ_GEN.F47V0427, TROJ_GEN.F47V0718, TROJ_GEN.F47V0409, TROJ_GEN.F47V0405, TROJ_GEN.F47V0528 |
VIPRE | GamePlayLabs (v) |
The detection percentage is based on the fact that I have gathered 1075 scan reports for the Innovative Apps files. 131 of these scan reports came up with some sort of detection. You can review the full details of the scan reports by examining the files listed above.
The analysis has been done on certificates with the following serial numbers: