Jump to content

Recommended Posts

  • Staff

What is myClip-HD?

The Malwarebytes research team has determined that myClip-HD is a browser hijacker. These so-called "hijackers" alter your startpage or searchscopes so that the effected browser visits their site or one of their choice. This one also shows advertisements.

How do I know if my computer is effected by myClip-HD?

You may see these add-ons/extensions:

warning1.png

warning2.png

warning3.png

How did myClip-HD get on my computer?

Browser hijackers use different methods for distributing themselves. This particular one was offered as video enhancement software.

How do I remove myClip-HD?

Our program Malwarebytes Anti-Malware can detect and remove this potentially unwanted program. You will need Malwarebytes Anti-Malware version 2.00 (beta) or newer to disable the Chrome and Firefox extensions.

  • Please download Malwarebytes Anti-Malware to your desktop.
  • Double-click mbam-setup-consumer.exe and follow the prompts to install the program.
  • At the end, be sure a check-mark is placed next to the following:
    • Enable free trial of Malwarebytes Anti-Malware Premium
    • Launch Malwarebytes Anti-Malware
  • Then click Finish.
  • If an update is found, you will be prompted to download and install the latest version.
  • Once the program has loaded, select Scan now.
  • When the scan is complete , make sure that everything is set to "Quarantine", and click Apply Actions.
  • Reboot your computer if prompted.
Is there anything else I need to do to get rid of myClip-HD?
  • The Firefox extension can now safely be removed. Open the "Extensions" tab under "Add-ons" and click "Remove" and "Restart" to complete the removal.
  • The Chrome extension can now safely be removed. Open "Settings" > "Extensions" and click the bin behind the Picora 2.0 listing. Then confirm removal.
How would the full version of Malwarebytes Anti-Malware help protect me?

We hope our application and this guide have helped you eradicate this hijacker.

As you can see below the full version of Malwarebytes Anti-Malware would have protected you against the myClip-HD rogue. It would have warned you before the rogue could install itself, giving you a chance to stop it before it became too late.

protection1.png

Technical details for experts

Signs in a HijackThis log:

O2 - BHO: CrossriderApp0048998 - {11111111-1111-1111-1111-110411891198} - C:\Program Files\myClip-HD\myClip-HD-bho.dll
Alterations made by the installer:

File system details ---------------------------------------------    Adds the folder C:\Program Files\myClip-HD       Adds the file 48998.crx"="2/16/2014 2:14 PM, 282568 bytes, A       Adds the file 48998.xpi"="2/16/2014 2:14 PM, 333307 bytes, A       Adds the file background.html"="1/9/2014 10:54 AM, 729 bytes, A       Adds the file Installer.log"="2/16/2014 2:14 PM, 252130 bytes, A       Adds the file myClip-HD.ico"="1/9/2014 10:54 AM, 9662 bytes, A       Adds the file myClip-HD-bg.exe"="2/16/2014 2:14 PM, 773120 bytes, A       Adds the file myClip-HD-bho.dll"="2/16/2014 2:14 PM, 640512 bytes, A       Adds the file myClip-HD-buttonutil.dll"="2/16/2014 2:14 PM, 428544 bytes, A       Adds the file myClip-HD-buttonutil.exe"="2/16/2014 2:14 PM, 331264 bytes, A       Adds the file myClip-HD-chromeinstaller.exe"="2/16/2014 2:14 PM, 922112 bytes, A       Adds the file myClip-HD-codedownloader.exe"="2/16/2014 2:14 PM, 524800 bytes, A       Adds the file myClip-HD-enabler.exe"="2/16/2014 2:14 PM, 344064 bytes, A       Adds the file myClip-HD-firefoxinstaller.exe"="2/16/2014 2:14 PM, 886784 bytes, A       Adds the file myClip-HD-helper.exe"="2/16/2014 2:14 PM, 331776 bytes, A       Adds the file myClip-HD-updater.exe"="2/16/2014 2:14 PM, 354304 bytes, A       Adds the file Uninstall.exe"="2/16/2014 2:14 PM, 77312 bytes, A       Adds the file utils.exe"="2/16/2014 2:14 PM, 1289369 bytes, A    Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_eiaegfndkgibamojhkobffhhdjffdfkp_0       Adds the file 1"="2/16/2014 2:18 PM, 18432 bytes, A    Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0       Adds the file background.html"="2/16/2014 2:14 PM, 1638 bytes, A       Adds the file crossriderManifest.json"="2/16/2014 2:14 PM, 512 bytes, A       Adds the file manifest.json"="2/16/2014 2:14 PM, 1116 bytes, A       Adds the file popup.html"="2/16/2014 2:14 PM, 139 bytes, A    Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData       Adds the file manifest.xml"="2/16/2014 2:14 PM, 1731 bytes, A       Adds the file plugins.json"="2/16/2014 2:14 PM, 7077 bytes, A    Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins       Adds the file 1_base.js"="2/16/2014 2:14 PM, 6908 bytes, A       Adds the file 102_dealply_m.js"="2/16/2014 2:14 PM, 2247 bytes, A       Adds the file 103_intext_5_m.js"="2/16/2014 2:14 PM, 2468 bytes, A       Adds the file 104_jollywallet_m.js"="2/16/2014 2:14 PM, 1506 bytes, A       Adds the file 105_corticas_m.js"="2/16/2014 2:14 PM, 632 bytes, A       Adds the file 13_CrossriderAppUtils.js"="2/16/2014 2:14 PM, 7056 bytes, A       Adds the file 14_CrossriderUtils.js"="2/16/2014 2:14 PM, 15248 bytes, A       Adds the file 17_jQuery.js"="2/16/2014 2:14 PM, 79982 bytes, A       Adds the file 177_crossriderDashboard.js"="2/16/2014 2:14 PM, 25020 bytes, A       Adds the file 182_openUrl.js"="2/16/2014 2:14 PM, 14301 bytes, A       Adds the file 183_tabsWrapper.js"="2/16/2014 2:14 PM, 2555 bytes, A       Adds the file 184_noproblemppc_m.js"="2/16/2014 2:14 PM, 1057 bytes, A       Adds the file 19_CHAppAPIWrapper.js"="2/16/2014 2:14 PM, 6763 bytes, A       Adds the file 192_revizer_ws_dynamic_b2b_m.js"="2/16/2014 2:14 PM, 974 bytes, A       Adds the file 193_revizer_p_dynamic_b2b_m.js"="2/16/2014 2:14 PM, 972 bytes, A       Adds the file 21_debug.js"="2/16/2014 2:14 PM, 3676 bytes, A       Adds the file 22_resources.js"="2/16/2014 2:14 PM, 9082 bytes, A       Adds the file 28_initializer.js"="2/16/2014 2:14 PM, 664 bytes, A       Adds the file 4_jquery_1_7_1.js"="2/16/2014 2:14 PM, 94180 bytes, A       Adds the file 47_resources_background.js"="2/16/2014 2:14 PM, 7720 bytes, A       Adds the file 64_appApiMessage.js"="2/16/2014 2:14 PM, 2332 bytes, A       Adds the file 72_appApiValidation.js"="2/16/2014 2:14 PM, 23624 bytes, A       Adds the file 78_CrossriderInfo.js"="2/16/2014 2:14 PM, 3321 bytes, A       Adds the file 80_CHPopupAppAPI.js"="2/16/2014 2:14 PM, 194 bytes, A       Adds the file 91_monetizationLoader.js.js"="2/16/2014 2:14 PM, 145675 bytes, A       Adds the file 93_superfish_no_coupons_m.js"="2/16/2014 2:14 PM, 775 bytes, A       Adds the file 97_resourceApiWrapper.js"="2/16/2014 2:14 PM, 3299 bytes, A    Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\userCode       Adds the file background.js"="2/16/2014 2:14 PM, 394 bytes, A       Adds the file extension.js"="2/16/2014 2:14 PM, 708 bytes, A    Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\icons       Adds the file icon128.png"="2/16/2014 2:14 PM, 30745 bytes, A       Adds the file icon16.png"="2/16/2014 2:14 PM, 17483 bytes, A       Adds the file icon48.png"="2/16/2014 2:14 PM, 18506 bytes, A    Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\icons\actions       Adds the file 1.png"="2/16/2014 2:14 PM, 1223 bytes, A    Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js       Adds the file background.js"="2/16/2014 2:14 PM, 33376 bytes, A       Adds the file main.js"="2/16/2014 2:14 PM, 8452 bytes, A       Adds the file platformVersion.js"="2/16/2014 2:14 PM, 405 bytes, A    Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\api       Adds the file chrome.js"="2/16/2014 2:14 PM, 11566 bytes, A       Adds the file cookie.js"="2/16/2014 2:14 PM, 11793 bytes, A       Adds the file message.js"="2/16/2014 2:14 PM, 3346 bytes, A       Adds the file pageAction.js"="2/16/2014 2:14 PM, 1737 bytes, A       Adds the file pageActionBG.js"="2/16/2014 2:14 PM, 2519 bytes, A    Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib       Adds the file app_api.js"="2/16/2014 2:14 PM, 6363 bytes, A       Adds the file bg_app_api.js"="2/16/2014 2:14 PM, 4663 bytes, A       Adds the file consts.js"="2/16/2014 2:14 PM, 335 bytes, A       Adds the file cookie_store.js"="2/16/2014 2:14 PM, 5905 bytes, A       Adds the file crossriderAPI.js"="2/16/2014 2:14 PM, 11366 bytes, A       Adds the file delegate.js"="2/16/2014 2:14 PM, 2002 bytes, A       Adds the file events.js"="2/16/2014 2:14 PM, 5757 bytes, A       Adds the file extensionDataStore.js"="2/16/2014 2:14 PM, 6294 bytes, A       Adds the file installer.js"="2/16/2014 2:14 PM, 781 bytes, A       Adds the file logFile.js"="2/16/2014 2:14 PM, 775 bytes, A       Adds the file logging.js"="2/16/2014 2:14 PM, 944 bytes, A       Adds the file onBGDocumentLoad.js"="2/16/2014 2:14 PM, 480 bytes, A       Adds the file reports.js"="2/16/2014 2:14 PM, 4929 bytes, A       Adds the file storageWrapper.js"="2/16/2014 2:14 PM, 903 bytes, A       Adds the file updateManager.js"="2/16/2014 2:14 PM, 5665 bytes, A       Adds the file util.js"="2/16/2014 2:14 PM, 5142 bytes, A       Adds the file xhr.js"="2/16/2014 2:14 PM, 2478 bytes, A    Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\popupResource       Adds the file newPopup.js"="2/16/2014 2:14 PM, 40 bytes, A       Adds the file popup.js"="2/16/2014 2:14 PM, 45 bytes, A    Adds the folder C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\eiaegfndkgibamojhkobffhhdjffdfkp       Adds the file 000003.log"="2/16/2014 2:19 PM, 1134930 bytes, A       Adds the file CURRENT"="2/16/2014 2:18 PM, 16 bytes, A       Adds the file LOCK"="2/16/2014 2:18 PM, 0 bytes, A       Adds the file LOG"="2/16/2014 2:18 PM, 47 bytes, A       Adds the file MANIFEST-000002"="2/16/2014 2:18 PM, 50 bytes, A    Adds the folder C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\joxsq3f5.default\extensions\0d0e7529-a1fe-48e7-b4d1-543c1de97ed8@4759a12f-6c86-4a24-a43b-00dc35af76e6.com       Adds the file chrome.manifest"="2/16/2014 2:14 PM, 732 bytes, A       Adds the file install.rdf"="2/16/2014 2:14 PM, 1371 bytes, A    Adds the folder C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\joxsq3f5.default\extensions\0d0e7529-a1fe-48e7-b4d1-543c1de97ed8@4759a12f-6c86-4a24-a43b-00dc35af76e6.com\extensionData\plugins       Adds the file 1_base.js"="2/16/2014 2:14 PM, 6908 bytes, A       Adds the file 102_dealply_m.js"="2/16/2014 2:14 PM, 2247 bytes, A       Adds the file 103_intext_5_m.js"="2/16/2014 2:14 PM, 2468 bytes, A       Adds the file 104_jollywallet_m.js"="2/16/2014 2:19 PM, 1316 bytes, A       Adds the file 105_corticas_m.js"="2/16/2014 2:14 PM, 632 bytes, A       Adds the file 13_CrossriderAppUtils.js"="2/16/2014 2:14 PM, 7056 bytes, A       Adds the file 14_CrossriderUtils.js"="2/16/2014 2:14 PM, 15248 bytes, A       Adds the file 16_FFAppAPIWrapper.js"="2/16/2014 2:14 PM, 16026 bytes, A       Adds the file 17_jQuery.js"="2/16/2014 2:14 PM, 79982 bytes, A       Adds the file 177_crossriderDashboard.js"="2/16/2014 2:14 PM, 25020 bytes, A       Adds the file 182_openUrl.js"="2/16/2014 2:14 PM, 14301 bytes, A       Adds the file 183_tabsWrapper.js"="2/16/2014 2:14 PM, 2555 bytes, A       Adds the file 184_noproblemppc_m.js"="2/16/2014 2:19 PM, 719 bytes, A       Adds the file 192_revizer_ws_dynamic_b2b_m.js"="2/16/2014 2:19 PM, 763 bytes, A       Adds the file 193_revizer_p_dynamic_b2b_m.js"="2/16/2014 2:19 PM, 763 bytes, A       Adds the file 207_dbWrapper.js"="2/16/2014 2:19 PM, 1535 bytes, A       Adds the file 21_debug.js"="2/16/2014 2:14 PM, 3676 bytes, A       Adds the file 22_resources.js"="2/16/2014 2:14 PM, 9082 bytes, A       Adds the file 28_initializer.js"="2/16/2014 2:14 PM, 664 bytes, A       Adds the file 4_jquery_1_7_1.js"="2/16/2014 2:14 PM, 94180 bytes, A       Adds the file 47_resources_background.js"="2/16/2014 2:14 PM, 7720 bytes, A       Adds the file 64_appApiMessage.js"="2/16/2014 2:14 PM, 2332 bytes, A       Adds the file 72_appApiValidation.js"="2/16/2014 2:14 PM, 23624 bytes, A       Adds the file 78_CrossriderInfo.js"="2/16/2014 2:14 PM, 3321 bytes, A       Adds the file 91_monetizationLoader.js.js"="2/16/2014 2:19 PM, 141433 bytes, A       Adds the file 93_superfish_no_coupons_m.js"="2/16/2014 2:14 PM, 775 bytes, A       Adds the file 98_omniCommands.js"="2/16/2014 2:14 PM, 1936 bytes, A    In the existing folder C:\Windows\System32\Tasks       Adds the file myClip-HD-chromeinstaller"="2/16/2014 2:14 PM, 5120 bytes, A       Adds the file myClip-HD-codedownloader"="2/16/2014 2:14 PM, 4284 bytes, A       Adds the file myClip-HD-enabler"="2/16/2014 2:14 PM, 4172 bytes, A       Adds the file myClip-HD-firefoxinstaller"="2/16/2014 2:14 PM, 5138 bytes, A       Adds the file myClip-HD-updater"="2/16/2014 2:14 PM, 4348 bytes, A    In the existing folder C:\Windows\Tasks       Adds the file myClip-HD-chromeinstaller.job"="2/16/2014 2:14 PM, 2090 bytes, A       Adds the file myClip-HD-codedownloader.job"="2/16/2014 2:14 PM, 1254 bytes, A       Adds the file myClip-HD-enabler.job"="2/16/2014 2:14 PM, 1142 bytes, A       Adds the file myClip-HD-firefoxinstaller.job"="2/16/2014 2:14 PM, 2108 bytes, A       Adds the file myClip-HD-updater.job"="2/16/2014 2:14 PM, 1318 bytes, ARegistry details ------------------------------------------    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411891198}]       "(Default)"="REG_SZ, "myClip-HD"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411891198}\Implemented Categories]       "(Default)"="REG_SZ, ""    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411891198}\Implemented Categories\{59fb2056-d625-48d0-a944-1a85b5ab2640}]       "(Default)"="REG_SZ, ""    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411891198}\InprocServer32]       "(Default)"="REG_SZ, "C:\Program Files\myClip-HD\myClip-HD-bho.dll"       "ThreadingModel"="REG_SZ, "Apartment"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411891198}\ProgID]       "(Default)"="REG_SZ, "CrossriderApp0048998.BHO.1"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411891198}\Programmable]    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411891198}\TypeLib]       "(Default)"="REG_SZ, "{44444444-4444-4444-4444-440444894498}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411891198}\VersionIndependentProgID]       "(Default)"="REG_SZ, "CrossriderApp0048998"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422892298}]       "(Default)"="REG_SZ, "CrossriderApp0048998.Sandbox"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422892298}\InprocServer32]       "(Default)"="REG_SZ, "C:\Program Files\myClip-HD\myClip-HD-bho.dll"       "ThreadingModel"="REG_SZ, "Apartment"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422892298}\ProgID]       "(Default)"="REG_SZ, "CrossriderApp0048998.Sandbox.1"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422892298}\Programmable]    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422892298}\TypeLib]       "(Default)"="REG_SZ, "{44444444-4444-4444-4444-440444894498}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422892298}\VersionIndependentProgID]       "(Default)"="REG_SZ, "CrossriderApp0048998.Sandbox"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0048998.BHO]       "(Default)"="REG_SZ, "CrossriderApp0048998"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0048998.BHO\CLSID]       "(Default)"="REG_SZ, "{11111111-1111-1111-1111-110411891198}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0048998.BHO\CurVer]       "(Default)"="REG_SZ, "CrossriderApp0048998"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0048998.BHO.1       "(Default)"="REG_SZ, "CrossriderApp0048998"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0048998.BHO.1\CLSID]       "(Default)"="REG_SZ, "{11111111-1111-1111-1111-110411891198}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0048998.Sandbox]       "(Default)"="REG_SZ, "CrossriderApp0048998.Sandbox"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0048998.Sandbox\CLSID]       "(Default)"="REG_SZ, "{22222222-2222-2222-2222-220422892298}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0048998.Sandbox\CurVer]       "(Default)"="REG_SZ, "CrossriderApp0048998.Sandbox"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0048998.Sandbox.1]       "(Default)"="REG_SZ, "CrossriderApp0048998.Sandbox"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0048998.Sandbox.1\CLSID]       "(Default)"="REG_SZ, "{22222222-2222-2222-2222-220422892298}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455895598}]       "(Default)"="REG_SZ, "ICrossriderBHO"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455895598}\ProxyStubClsid]       "(Default)"="REG_SZ, "{00020424-0000-0000-C000-000000000046}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455895598}\ProxyStubClsid32]       "(Default)"="REG_SZ, "{00020424-0000-0000-C000-000000000046}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455895598}\TypeLib]       "(Default)"="REG_SZ, "{44444444-4444-4444-4444-440444894498}"       "Version"="REG_SZ, "1.0"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466896698}]       "(Default)"="REG_SZ, "ISandBox"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466896698}\ProxyStubClsid]       "(Default)"="REG_SZ, "{00020424-0000-0000-C000-000000000046}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466896698}\ProxyStubClsid32]       "(Default)"="REG_SZ, "{00020424-0000-0000-C000-000000000046}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466896698}\TypeLib]       "(Default)"="REG_SZ, "{44444444-4444-4444-4444-440444894498}"       "Version"="REG_SZ, "1.0"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444894498}\1.0]       "(Default)"="REG_SZ, "CrossriderApp0048998 Type Library"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444894498}\1.0\0\win32]       "(Default)"="REG_SZ, "C:\Program Files\myClip-HD\myClip-HD-bho.dll"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444894498}\1.0\FLAGS]       "(Default)"="REG_SZ, "0"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444894498}\1.0\HELPDIR]       "(Default)"="REG_SZ, "C:\Program Files\myClip-HD"    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411891198}]       "(Default)"="REG_SZ, "CrossriderApp0048998"       "NoExplorer"="REG_DWORD, 1"    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID]       "{11111111-1111-1111-1111-110411891198}"="REG_SZ, "1"    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\myClip-HD]       "CrAppId"="REG_SZ, "48998"       "CrPublisherId"="REG_SZ, "5526"       "DisplayIcon"="REG_SZ, "C:\Program Files\myClip-HD\utils.exe"       "DisplayName"="REG_SZ, "myClip-HD"       "DisplayVersion"="REG_SZ, "1.33.153.1"       "Publisher"="REG_SZ, "Bundlore LTD"       "UninstallString"="REG_SZ, "C:\Program Files\myClip-HD\Uninstall.exe /fromcontrolpanel=1"    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures]       "myClip-HD-chromeinstaller.job"="REG_BINARY, ................................       "myClip-HD-chromeinstaller.job.fp"="REG_DWORD, -1818863841       "myClip-HD-codedownloader.job"="REG_BINARY, ................................       "myClip-HD-codedownloader.job.fp"="REG_DWORD, -745038813       "myClip-HD-enabler.job"="REG_BINARY, ................................       "myClip-HD-enabler.job.fp"="REG_DWORD, -1285054364       "myClip-HD-firefoxinstaller.job"="REG_BINARY, ................................       "myClip-HD-firefoxinstaller.job.fp"="REG_DWORD, -332110372       "myClip-HD-updater.job"="REG_BINARY, ................................       "myClip-HD-updater.job.fp"="REG_DWORD, -1406366105    [HKEY_LOCAL_MACHINE\SOFTWARE\myClip-HD\Chrome]       "TotalProfiles"="REG_DWORD, 1"    [HKEY_LOCAL_MACHINE\SOFTWARE\myClip-HD\Chrome\Profiles]       "C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default"="REG_DWORD, 1"    [HKEY_LOCAL_MACHINE\SOFTWARE\myClip-HD\Firefox]       "TotalProfiles"="REG_DWORD, 1"    [HKEY_LOCAL_MACHINE\SOFTWARE\myClip-HD\Firefox\Profiles]       "C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\joxsq3f5.default"="REG_DWORD, 1"    [HKEY_LOCAL_MACHINE\SOFTWARE\myClip-HD\IE]       "TotalProfiles"="REG_DWORD, 1"    [HKEY_LOCAL_MACHINE\SOFTWARE\myClip-HD\Installer]       "BundledChrome"="REG_DWORD, 1"       "BundledFirefox"="REG_DWORD, 1"       "BundledIe"="REG_DWORD, 1"    [HKEY_CURRENT_USER\Software\AppDataLow\Software\Crossrider]       "Bic"="REG_SZ, "908EDA9CEDB74C76905B193201BE5302IE"       "Verifier"="REG_SZ, "4d683cce8563f76bb444195a51c855de"    [HKEY_CURRENT_USER\Software\AppDataLow\Software\Crossrider\onBeforeNavigate]       "48998"="REG_SZ, ""    [HKEY_CURRENT_USER\Software\AppDataLow\Software\Crossrider\onRequest]       "48998"="REG_SZ, "{ skipped javascript, full log available by request }"    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110411891198}]       "Flags"="REG_DWORD, 1024"    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110411891198}\iexplore]       "Count"="REG_DWORD, 4"       "Flags"="REG_DWORD, 0"       "LoadTimeArray"="REG_BINARY, ...................."       "NavTimeArray"="REG_BINARY, ........:..........."       "Time"="REG_BINARY, ........"       "Type"="REG_DWORD, 3"
Malwarebytes Anti-Malware log:

Malwarebytes Anti-Malwarewww.malwarebytes.orgScan Date: 2/16/2014Scan Time: 2:27:54 PMLogfile: mbamMyClip.txtAdministrator: YesVersion: 2.00.0.0503Malware Database: v2014.02.16.03Rootikt Database: v2013.12.18.01License: TrialMalware Protection: DisabledMalicious Website Protection: EnabledChameleon: DisabledOS: Windows 7 Service Pack 1CPU: x86File System: NTFSUser: MalwarebytesScan Type: Threat ScanResult: CompletedObjects Scanned: 194917Time Elapsed: 2 min, 32 secMemory: EnabledStartup: EnabledFilesystem: EnabledArchives: EnabledRootkits: DisabledShuriken: EnabledPUP: EnabledPUM: EnabledProcesses: 0(No malicious items detected)Modules: 0(No malicious items detected)Registry Keys: 19Registry Key, PUP.Optional.myClipHD.A, HKLM\SOFTWARE\CLASSES\CLSID\{11111111-1111-1111-1111-110411891198}, Quarantined, [bc27b3297dfdbc7abacc3363ae53ad53], Registry Key, PUP.Optional.myClipHD.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{44444444-4444-4444-4444-440444894498}, Quarantined, [bc27b3297dfdbc7abacc3363ae53ad53], Registry Key, PUP.Optional.myClipHD.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{55555555-5555-5555-5555-550455895598}, Quarantined, [bc27b3297dfdbc7abacc3363ae53ad53], Registry Key, PUP.Optional.myClipHD.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{66666666-6666-6666-6666-660466896698}, Quarantined, [bc27b3297dfdbc7abacc3363ae53ad53], Registry Key, PUP.Optional.myClipHD.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0048998.BHO.1, Quarantined, [bc27b3297dfdbc7abacc3363ae53ad53], Registry Key, PUP.Optional.myClipHD.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{11111111-1111-1111-1111-110411891198}, Quarantined, [bc27b3297dfdbc7abacc3363ae53ad53], Registry Key, PUP.Optional.myClipHD.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0048998.BHO, Quarantined, [bc27b3297dfdbc7abacc3363ae53ad53], Registry Key, PUP.Optional.myClipHD.A, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{11111111-1111-1111-1111-110411891198}, Quarantined, [bc27b3297dfdbc7abacc3363ae53ad53], Registry Key, PUP.Optional.myClipHD.A, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{11111111-1111-1111-1111-110411891198}, Quarantined, [bc27b3297dfdbc7abacc3363ae53ad53], Registry Key, PUP.Optional.myClipHD.A, HKLM\SOFTWARE\CLASSES\CLSID\{22222222-2222-2222-2222-220422892298}, Quarantined, [bc27b3297dfdbc7abacc3363ae53ad53], Registry Key, PUP.Optional.myClipHD.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0048998.Sandbox.1, Quarantined, [bc27b3297dfdbc7abacc3363ae53ad53], Registry Key, PUP.Optional.myClipHD.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0048998.Sandbox, Quarantined, [bc27b3297dfdbc7abacc3363ae53ad53], Registry Key, PUP.Optional.myClipHD.A, HKLM\SOFTWARE\CLASSES\CLSID\{11111111-1111-1111-1111-110411891198}\INPROCSERVER32, Quarantined, [bc27b3297dfdbc7abacc3363ae53ad53], Registry Key, PUP.Optional.CrossRider.A, HKCU\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, Quarantined, [dc071fbdb5c5e05679bbf2b9976cfa06], Registry Key, PUP.Optional.myClipHD.A, HKCU\SOFTWARE\APPDATALOW\SOFTWARE\myClip-HD, Quarantined, [469dfddf2c4e023461840179c73ba15f], Registry Key, PUP.Optional.CrossRider.A, HKCU\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\Bundlore LTD, Quarantined, [3ca7805ca7d3ee48ce1d3842b151d927], Registry Key, PUP.Optional.myClipHD.A, HKLM\SOFTWARE\myClip-HD, Quarantined, [ce15419b93e780b6d40f3c3ec042c040], Registry Key, PUP.Optional.Ligtning.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\cekcjpgehmohobmdiikfnopibipmgnml, Quarantined, [bd26c21aa1d9db5b39f0aad2a260ce32], Registry Key, PUP.Optional.myClipHD.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\myClip-HD, Quarantined, [647f786462182b0b82669adfb9498878], Registry Values: 0(No malicious items detected)Registry Data: 0(No malicious items detected)Folders: 15Folder, PUP.Optional.eSafe.A, C:\ProgramData\eSafe\log, Quarantined, [c91a47954f2bb87ec3822c50689af30d], Folder, PUP.Optional.Lightning.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml, Quarantined, [ffe4825af189fb3bbd9dabce6f9324dc], Folder, PUP.Optional.Lightning.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml\1.3_0, Quarantined, [ffe4825af189fb3bbd9dabce6f9324dc], Folder, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], Folder, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], Folder, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], Folder, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], Folder, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\userCode, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], Folder, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\icons, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], Folder, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\icons\actions, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], Folder, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], Folder, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\api, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], Folder, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], Folder, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\popupResource, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], Folder, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD, Quarantined, [647f786462182b0b82669adfb9498878], Files: 99File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\myClip-HD-bho.dll, Quarantined, [bc27b3297dfdbc7abacc3363ae53ad53], File, PUP.Optional.myClipHD.A, C:\Users\{username}\Desktop\myClip-HD.exe, Quarantined, [ebf834a871093afc2661b2e444bd58a8], File, PUP.Optional.myClipHD.A, C:\Windows\Tasks\myClip-HD-chromeinstaller.job, Quarantined, [578cb428601a9a9c15cd7a0028da7987], File, PUP.Optional.myClipHD.A, C:\Windows\Tasks\myClip-HD-codedownloader.job, Quarantined, [3aa9a23a35453bfb766cc9b153af45bb], File, PUP.Optional.myClipHD.A, C:\Windows\Tasks\myClip-HD-enabler.job, Quarantined, [fae95c80cbaf61d5e5fd6d0df80a659b], File, PUP.Optional.myClipHD.A, C:\Windows\Tasks\myClip-HD-firefoxinstaller.job, Quarantined, [9350fbe1413962d4469c83f7d62c58a8], File, PUP.Optional.myClipHD.A, C:\Windows\Tasks\myClip-HD-updater.job, Quarantined, [d60d5c802852b383ba287dfd34ce3fc1], File, PUP.Optional.eSafe.A, C:\ProgramData\eSafe\log\eGdpSvc.LOG, Quarantined, [c91a47954f2bb87ec3822c50689af30d], File, PUP.Optional.NewTab.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx, Quarantined, [fae9d60618626ccabf0209737d85db25], File, PUP.Optional.Lightning.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml\1.3_0\background.html, Quarantined, [ffe4825af189fb3bbd9dabce6f9324dc], File, PUP.Optional.Lightning.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml\1.3_0\background.js, Quarantined, [ffe4825af189fb3bbd9dabce6f9324dc], File, PUP.Optional.Lightning.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml\1.3_0\data.json, Quarantined, [ffe4825af189fb3bbd9dabce6f9324dc], File, PUP.Optional.Lightning.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml\1.3_0\icon128.png, Quarantined, [ffe4825af189fb3bbd9dabce6f9324dc], File, PUP.Optional.Lightning.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml\1.3_0\jquery.js, Quarantined, [ffe4825af189fb3bbd9dabce6f9324dc], File, PUP.Optional.Lightning.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml\1.3_0\manifest.json, Quarantined, [ffe4825af189fb3bbd9dabce6f9324dc], File, PUP.Optional.Lightning.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml\1.3_0\xa.js, Quarantined, [ffe4825af189fb3bbd9dabce6f9324dc], File, PUP.Optional.Lightning.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml\1.3_0\xagainit.js, Quarantined, [ffe4825af189fb3bbd9dabce6f9324dc], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\background.html, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\crossriderManifest.json, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\manifest.json, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\popup.html, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\manifest.xml, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins.json, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\192_revizer_ws_dynamic_b2b_m.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\102_dealply_m.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\103_intext_5_m.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\104_jollywallet_m.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\105_corticas_m.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\13_CrossriderAppUtils.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\14_CrossriderUtils.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\177_crossriderDashboard.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\17_jQuery.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\182_openUrl.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\183_tabsWrapper.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\184_noproblemppc_m.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\193_revizer_p_dynamic_b2b_m.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\19_CHAppAPIWrapper.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\1_base.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\21_debug.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\22_resources.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\28_initializer.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\47_resources_background.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\4_jquery_1_7_1.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\64_appApiMessage.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\72_appApiValidation.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\78_CrossriderInfo.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\80_CHPopupAppAPI.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\91_monetizationLoader.js.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\93_superfish_no_coupons_m.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\plugins\97_resourceApiWrapper.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\userCode\background.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\extensionData\userCode\extension.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\icons\icon128.png, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\icons\icon16.png, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\icons\icon48.png, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\icons\actions\1.png, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\background.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\main.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\platformVersion.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\api\chrome.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\api\cookie.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\api\message.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\api\pageAction.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\api\pageActionBG.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\app_api.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\bg_app_api.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\consts.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\cookie_store.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\crossriderAPI.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\delegate.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\events.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\extensionDataStore.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\installer.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\logFile.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\logging.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\onBGDocumentLoad.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\reports.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\storageWrapper.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\updateManager.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\util.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\xhr.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\popupResource\newPopup.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiaegfndkgibamojhkobffhhdjffdfkp\1.26.17_0\js\lib\popupResource\popup.js, Quarantined, [2eb50cd09ae078bed60caacf7c86d42c], File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\48998.crx, Quarantined, [647f786462182b0b82669adfb9498878], File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\48998.xpi, Quarantined, [647f786462182b0b82669adfb9498878], File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\background.html, Quarantined, [647f786462182b0b82669adfb9498878], File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\Installer.log, Quarantined, [647f786462182b0b82669adfb9498878], File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\myClip-HD-bg.exe, Quarantined, [647f786462182b0b82669adfb9498878], File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\myClip-HD-buttonutil.dll, Quarantined, [647f786462182b0b82669adfb9498878], File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\myClip-HD-buttonutil.exe, Quarantined, [647f786462182b0b82669adfb9498878], File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\myClip-HD-chromeinstaller.exe, Quarantined, [647f786462182b0b82669adfb9498878], File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\myClip-HD-codedownloader.exe, Quarantined, [647f786462182b0b82669adfb9498878], File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\myClip-HD-enabler.exe, Quarantined, [647f786462182b0b82669adfb9498878], File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\myClip-HD-firefoxinstaller.exe, Quarantined, [647f786462182b0b82669adfb9498878], File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\myClip-HD-helper.exe, Quarantined, [647f786462182b0b82669adfb9498878], File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\myClip-HD-updater.exe, Quarantined, [647f786462182b0b82669adfb9498878], File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\myClip-HD.ico, Quarantined, [647f786462182b0b82669adfb9498878], File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\Uninstall.exe, Quarantined, [647f786462182b0b82669adfb9498878], File, PUP.Optional.myClipHD.A, C:\Program Files\myClip-HD\utils.exe, Quarantined, [647f786462182b0b82669adfb9498878], Physical Sectors: 0(No malicious items detected)(end)
As mentioned before the full version of Malwarebytes Anti-Malware could have protected your computer against this threat.

We use different ways of protecting your computer(s):

  • Dynamically Blocks Malware Sites & Servers
  • Malware Execution Prevention
Save yourself the hassle and get protected.
Link to post
Share on other sites

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.