Jump to content

Removal instructions for HDview


Recommended Posts

  • Staff

What is HDview?

The Malwarebytes research team has determined that HDview is a browser hijacker. These so-called "hijackers" alter your startpage or searchscopes so that the affected browser visits their site or one of their choice. This one also displays advertisements.

How do I know if my computer is affected by HDview?

You may see these browser extensions/add-ons:

warning1.png

warning2.png

and this entry in your list of installed programs:

warning4.png

How did HDview get on my computer?

Browser hijackers use different methods for distributing themselves. This particular one was offered as a video enhancing browser extension.

How do I remove HDview?

Our program Malwarebytes Anti-Malware can detect and remove this potentially unwanted application.

  • Please download Malwarebytes Anti-Malware to your desktop.
  • Double-click mbam-setup-version.exe and follow the prompts to install the program.
  • At the end, be sure a check-mark is placed next to the following:
    • Enable free trial of Malwarebytes Anti-Malware Premium
    • Launch Malwarebytes Anti-Malware
  • Then click Finish.
  • If an update is found, you will be prompted to download and install the latest version.
  • Once the program has loaded, select Scan now. Or select the Threat Scan from the Scan menu.
  • When the scan is complete , make sure that everything is set to "Quarantine", and click Apply Actions.
  • Reboot your computer if prompted.
Is there anything else I need to do to get rid of HDview?
  • No, Malwarebytes' Anti-Malware removes HDview completely.
How would the full version of Malwarebytes Anti-Malware help protect me?

We hope our application and this guide have helped you eradicate this hijacker.

As you can see below the full version of Malwarebytes Anti-Malware would have protected you against the HDview hijacker. It would have warned you before the rogue could install itself, giving you a chance to stop it before it became too late.

protection1.png

Technical details for experts

Signs in a HijackThis log:

O2 - BHO: CrossriderApp0047344 - {11111111-1111-1111-1111-110411731144} - C:\Program Files\HDview\HDview-bho.dll
Alterations made by the installer:

File system details  ---------------------------------------------    Adds the folder C:\Program Files\HDview       Adds the file 055b10ff-3d51-448a-b144-61a903cac69f.crx"="9/4/2014 8:24 AM, 227153 bytes, A       Adds the file 055b10ff-3d51-448a-b144-61a903cac69f.xpi"="9/4/2014 8:24 AM, 268977 bytes, A       Adds the file 055b10ff-3d51-448a-b144-61a903cac69f-11.exe"="9/4/2014 8:24 AM, 1957736 bytes, A       Adds the file 055b10ff-3d51-448a-b144-61a903cac69f-2.exe"="9/4/2014 8:25 AM, 385384 bytes, A       Adds the file 055b10ff-3d51-448a-b144-61a903cac69f-4.exe"="9/4/2014 8:24 AM, 1474408 bytes, A       Adds the file 055b10ff-3d51-448a-b144-61a903cac69f-5.exe"="9/4/2014 8:25 AM, 490856 bytes, A       Adds the file 1293297481.mxaddon"="8/14/2014 6:46 PM, 44330 bytes, A       Adds the file add1933e-6155-4fef-9acd-67825506d4f0.crx"="9/4/2014 8:24 AM, 228352 bytes, A       Adds the file background.html"="9/2/2014 6:42 AM, 729 bytes, A       Adds the file HDview.ico"="9/2/2014 6:42 AM, 9662 bytes, A       Adds the file HDview-bg.exe"="9/4/2014 8:25 AM, 610152 bytes, A       Adds the file HDview-bho.dll"="9/4/2014 8:24 AM, 585576 bytes, A       Adds the file HDview-codedownloader.exe"="9/4/2014 8:25 AM, 565096 bytes, A       Adds the file Uninstall.exe"="9/4/2014 8:24 AM, 103784 bytes, A       Adds the file utils.exe"="9/4/2014 8:24 AM, 2448794 bytes, A    Adds the folder C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com       Adds the file chrome.manifest"="9/4/2014 8:24 AM, 732 bytes, A       Adds the file install.rdf"="9/4/2014 8:24 AM, 1340 bytes, A    Adds the folder C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content    Adds the folder C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api    Adds the folder C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core    Adds the folder C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\defaults\preferences       Adds the file prefs.js"="9/4/2014 8:24 AM, 3997 bytes, A    Adds the folder C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData       Adds the file manifest.xml"="9/4/2014 8:24 AM, 1707 bytes, A       Adds the file plugins.json"="9/4/2014 8:24 AM, 4256 bytes, A    Adds the folder C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins    Adds the folder C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\userCode    Adds the folder C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\locale\en-US       Adds the file translations.dtd"="9/4/2014 8:24 AM, 425 bytes, A    Adds the folder C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\skin    In the existing folder C:\Windows\System32\Tasks       Adds the file 055b10ff-3d51-448a-b144-61a903cac69f-1"="9/4/2014 8:24 AM, 4832 bytes, A       Adds the file 055b10ff-3d51-448a-b144-61a903cac69f-11"="9/4/2014 8:24 AM, 7162 bytes, A       Adds the file 055b10ff-3d51-448a-b144-61a903cac69f-2"="9/4/2014 8:25 AM, 4442 bytes, A       Adds the file 055b10ff-3d51-448a-b144-61a903cac69f-5"="9/4/2014 8:25 AM, 4746 bytes, A       Adds the file 055b10ff-3d51-448a-b144-61a903cac69f-5_user"="9/4/2014 8:25 AM, 4772 bytes, A    In the existing folder C:\Windows\Tasks       Adds the file 055b10ff-3d51-448a-b144-61a903cac69f-1.job"="9/4/2014 8:24 AM, 1802 bytes, A       Adds the file 055b10ff-3d51-448a-b144-61a903cac69f-11.job"="9/4/2014 8:24 AM, 4132 bytes, A       Adds the file 055b10ff-3d51-448a-b144-61a903cac69f-2.job"="9/4/2014 8:25 AM, 1412 bytes, A       Adds the file 055b10ff-3d51-448a-b144-61a903cac69f-5.job"="9/4/2014 8:25 AM, 1716 bytes, A       Adds the file 055b10ff-3d51-448a-b144-61a903cac69f-5_user.job"="9/4/2014 8:25 AM, 1736 bytes, ARegistry details  ------------------------------------------    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411731144}]       "(Default)"="REG_SZ", "HDview"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411731144}\Implemented Categories]       "(Default)"="REG_SZ", ""    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411731144}\Implemented Categories\{59fb2056-d625-48d0-a944-1a85b5ab2640}]       "(Default)"="REG_SZ", ""    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411731144}\InprocServer32]       "(Default)"="REG_SZ", "C:\Program Files\HDview\HDview-bho.dll"       "ThreadingModel"="REG_SZ", "Apartment"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411731144}\ProgID]       "(Default)"="REG_SZ", "CrossriderApp0047344.BHO.1"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411731144}\Programmable]    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411731144}\TypeLib]       "(Default)"="REG_SZ", "{44444444-4444-4444-4444-440444734444}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411731144}\VersionIndependentProgID]       "(Default)"="REG_SZ", "CrossriderApp0047344"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422732244}]       "(Default)"="REG_SZ", "CrossriderApp0047344.Sandbox"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422732244}\InprocServer32]       "(Default)"="REG_SZ", "C:\Program Files\HDview\HDview-bho.dll"       "ThreadingModel"="REG_SZ", "Apartment"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422732244}\ProgID]       "(Default)"="REG_SZ", "CrossriderApp0047344.Sandbox.1"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422732244}\Programmable]    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422732244}\TypeLib]       "(Default)"="REG_SZ", "{44444444-4444-4444-4444-440444734444}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422732244}\VersionIndependentProgID]       "(Default)"="REG_SZ", "CrossriderApp0047344.Sandbox"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0047344.BHO]       "(Default)"="REG_SZ", "CrossriderApp0047344"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0047344.BHO\CLSID]       "(Default)"="REG_SZ", "{11111111-1111-1111-1111-110411731144}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0047344.BHO\CurVer]       "(Default)"="REG_SZ", "CrossriderApp0047344"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0047344.BHO.1]       "(Default)"="REG_SZ", "CrossriderApp0047344"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0047344.BHO.1\CLSID]       "(Default)"="REG_SZ", "{11111111-1111-1111-1111-110411731144}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0047344.Sandbox]       "(Default)"="REG_SZ", "CrossriderApp0047344.Sandbox"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0047344.Sandbox\CLSID]       "(Default)"="REG_SZ", "{22222222-2222-2222-2222-220422732244}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0047344.Sandbox\CurVer]       "(Default)"="REG_SZ", "CrossriderApp0047344.Sandbox"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0047344.Sandbox.1]       "(Default)"="REG_SZ", "CrossriderApp0047344.Sandbox"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CrossriderApp0047344.Sandbox.1\CLSID]       "(Default)"="REG_SZ", "{22222222-2222-2222-2222-220422732244}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455735544}]       "(Default)"="REG_SZ", "ICrossriderBHO"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455735544}\ProxyStubClsid]       "(Default)"="REG_SZ", "{00020424-0000-0000-C000-000000000046}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455735544}\ProxyStubClsid32]       "(Default)"="REG_SZ", "{00020424-0000-0000-C000-000000000046}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455735544}\TypeLib]       "(Default)"="REG_SZ", "{44444444-4444-4444-4444-440444734444}"       "Version"="REG_SZ", "1.0"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466736644}]       "(Default)"="REG_SZ", "ISandBox"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466736644}\ProxyStubClsid]       "(Default)"="REG_SZ", "{00020424-0000-0000-C000-000000000046}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466736644}\ProxyStubClsid32]       "(Default)"="REG_SZ", "{00020424-0000-0000-C000-000000000046}"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466736644}\TypeLib]       "(Default)"="REG_SZ", "{44444444-4444-4444-4444-440444734444}"       "Version"="REG_SZ", "1.0"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444734444}\1.0]       "(Default)"="REG_SZ", "CrossriderApp0047344 Type Library"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444734444}\1.0\0\win32]       "(Default)"="REG_SZ", "C:\Program Files\HDview\HDview-bho.dll"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444734444}\1.0\FLAGS]       "(Default)"="REG_SZ", "0"    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444734444}\1.0\HELPDIR]       "(Default)"="REG_SZ", "C:\Program Files\HDview"    [HKEY_LOCAL_MACHINE\SOFTWARE\HDview\Firefox]       "TotalProfiles"="REG_DWORD", 1    [HKEY_LOCAL_MACHINE\SOFTWARE\HDview\Firefox\Profiles]       "C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835"="REG_DWORD", 1    [HKEY_LOCAL_MACHINE\SOFTWARE\HDview\IE]       "TotalProfiles"="REG_DWORD", 1    [HKEY_LOCAL_MACHINE\SOFTWARE\HDview\IE\Profiles]       "S-1-5-21-4016700205-1717049133-1125222536-1001"="REG_DWORD", 1    [HKEY_LOCAL_MACHINE\SOFTWARE\HDview\Installer]       "BundledAddCh"="REG_DWORD", 1       "BundledFirefox"="REG_DWORD", 1       "BundledIe"="REG_DWORD", 1    [HKEY_LOCAL_MACHINE\SOFTWARE\InstalledBrowserExtensions\25379]       "47344"="REG_SZ", "HDview"    [HKEY_LOCAL_MACHINE\SOFTWARE\InstalledBrowserExtensions\25379\Status]       "Installed"="REG_DWORD", 1    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411731144}]       "(Default)"="REG_SZ", "CrossriderApp0047344"       "NoExplorer"="REG_DWORD", 1    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\HDview]       "CrAppId"="REG_SZ", "47344"       "CrPublisherId"="REG_SZ", "25379"       "DisplayIcon"="REG_SZ", "C:\Program Files\HDview\utils.exe"       "DisplayName"="REG_SZ", "HDview"       "DisplayVersion"="REG_SZ", "1.34.8.12"       "Publisher"="REG_SZ", "Downloadi"       "UninstallString"="REG_SZ", "C:\Program Files\HDview\Uninstall.exe /fcp=1"    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\CompatibilityAdapter\Signatures       "055b10ff-3d51-448a-b144-61a903cac69f-1.job"="REG_BINARY, ................................       "055b10ff-3d51-448a-b144-61a903cac69f-1.job.fp"="REG_DWORD", 173058663       "055b10ff-3d51-448a-b144-61a903cac69f-11.job"="REG_BINARY, ................................       "055b10ff-3d51-448a-b144-61a903cac69f-11.job.fp"="REG_DWORD", -415192176       "055b10ff-3d51-448a-b144-61a903cac69f-2.job"="REG_BINARY, ................................       "055b10ff-3d51-448a-b144-61a903cac69f-2.job.fp"="REG_DWORD", 181339494       "055b10ff-3d51-448a-b144-61a903cac69f-5.job"="REG_BINARY, ................................       "055b10ff-3d51-448a-b144-61a903cac69f-5.job.fp"="REG_DWORD", -1288459410       "055b10ff-3d51-448a-b144-61a903cac69f-5_user.job"="REG_BINARY, ................................       "055b10ff-3d51-448a-b144-61a903cac69f-5_user.job.fp"="REG_DWORD", 1032068534    [HKEY_CURRENT_USER\Software\AppDataLow\Software\Crossrider]       "Bic"="REG_SZ", "6A62130200754A9FBB44EFF6DEDC75E3IE"       "Verifier"="REG_SZ", "ee9ef6e45601a3aef2e9ceabed0b3565"    [HKEY_CURRENT_USER\Software\AppDataLow\Software\HDview]       "ActiveAppId"="REG_SZ", "47344"    [HKEY_CURRENT_USER\Software\AppDataLow\Software\HDview\Code]       " { JavaScript removed, full log available on request } "    [HKEY_CURRENT_USER\Software\AppDataLow\Software\HDview\Debug]       "IsDebuggingPlugins"="REG_DWORD", 0    [HKEY_CURRENT_USER\Software\AppDataLow\Software\HDview\Installer]       "AdditionalInfo"="REG_SZ", "{"asw":[67108864, -1073733627, 0],"browser_name":"ie"}"       "CodeDownloadDomain"="REG_SZ", "http://js.loadgenclientservice.com"       "CodeDownloadFbDomain"="REG_SZ", "http://js.clientdemocloud.com"       "DefaultBrowser"="REG_SZ", "ie"       "ErrorsDomain"="REG_SZ", "http://errors.loadgenclientservice.com"       "FullVersion"="REG_SZ", "1.34.8.12"       "FullVersionForUrl"="REG_SZ", "1_34_08_12"       "OsName"="REG_SZ", "7"       "Params"="REG_SZ", "{   "source_id" : "000749",   "sub_id" : "0",   "uzid" : "0"}"       "SrcId"="REG_SZ", "000749"       "StatsDomain"="REG_SZ", "http://stats.loadgenclientservice.com"       "SubId"="REG_SZ", "0"       "Time"="REG_SZ", "1409811848"       "ZData"="REG_SZ", "0"    [HKEY_CURRENT_USER\Software\AppDataLow\Software\HDview\Manifest]       "AddressbarURL"="REG_SZ", "NA"       "BgVersion"="REG_SZ", "2"       "ChangePrevious"="REG_SZ", "false"       "Description"="REG_SZ", "View YouTube videos in HD"       "DisableIe"="REG_SZ", "true"       "EnableSearchIE"="REG_SZ", "false"       "HomePageUrl"="REG_SZ", "NA"       "IsButtonEnabled"="REG_SZ", "false"       "Manifest"="REG_SZ", "NA"       "ModeType"="REG_SZ", "production"       "Name"="REG_SZ", "HDview"       "PluginsManifestVersion"="REG_SZ", "37"       "PublisherId"="REG_SZ", "25379"       "PublisherName"="REG_SZ", "ofer"       "RunInFrame"="REG_SZ", "false"       "SetNewTab"="REG_SZ", "false"       "ThanksUrl"="REG_SZ", "NA"       "UninstallerOfferAction"="REG_SZ", "NA"       "UninstallerOfferUrl"="REG_SZ", "NA"       "UpdateInterval"="REG_DWORD", 360       "Version"="REG_SZ", "45"    [HKEY_CURRENT_USER\Software\AppDataLow\Software\HDview\Update]       "LastCheck"="REG_DWORD", 1409811904    [HKEY_CURRENT_USER\Software\InstalledBrowserExtensions\25379]       "47344"="REG_SZ", "HDview"    [HKEY_CURRENT_USER\Software\InstalledBrowserExtensions\25379\Status]       "Installed"="REG_DWORD", 1    [HKEY_CURRENT_USER\Software\InstalledBrowserExtensions\Downloadi]       "47344"="REG_SZ", "HDview"    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Approved Extensions]       "{11111111-1111-1111-1111-110411731144}"="REG_BINARY, ............    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110411731144}]       "VerCache"="REG_BINARY, ......................
Malwarebytes Anti-Malware log:

Malwarebytes Anti-Malwarewww.malwarebytes.orgScan Date: 9/4/2014Scan Time: 8:30:23 AMLogfile: mbamHDview.txtAdministrator: YesVersion: 2.00.2.1012Malware Database: v2014.09.04.02Rootkit Database: v2014.08.21.01License: FreeMalware Protection: DisabledMalicious Website Protection: DisabledSelf-protection: DisabledOS: Windows 7 Service Pack 1CPU: x86File System: NTFSUser: MalwarebytesScan Type: Threat ScanResult: CompletedObjects Scanned: 261920Time Elapsed: 3 min, 44 secMemory: EnabledStartup: EnabledFilesystem: EnabledArchives: EnabledRootkits: DisabledHeuristics: EnabledPUP: EnabledPUM: EnabledProcesses: 0(No malicious items detected)Modules: 0(No malicious items detected)Registry Keys: 36PUP.Optional.HDview.A, HKLM\SOFTWARE\CLASSES\CLSID\{11111111-1111-1111-1111-110411731144}, Quarantined, [aaf830b998e3f73fbcb64c6b5ea3fc04], PUP.Optional.HDview.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{44444444-4444-4444-4444-440444734444}, Quarantined, [aaf830b998e3f73fbcb64c6b5ea3fc04], PUP.Optional.HDview.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{55555555-5555-5555-5555-550455735544}, Quarantined, [aaf830b998e3f73fbcb64c6b5ea3fc04], PUP.Optional.HDview.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{66666666-6666-6666-6666-660466736644}, Quarantined, [aaf830b998e3f73fbcb64c6b5ea3fc04], PUP.Optional.HDview.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0047344.BHO.1, Quarantined, [aaf830b998e3f73fbcb64c6b5ea3fc04], PUP.Optional.HDview.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{11111111-1111-1111-1111-110411731144}, Quarantined, [aaf830b998e3f73fbcb64c6b5ea3fc04], PUP.Optional.HDview.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0047344.BHO, Quarantined, [aaf830b998e3f73fbcb64c6b5ea3fc04], PUP.Optional.HDview.A, HKU\S-1-5-21-4016700205-1717049133-1125222536-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{11111111-1111-1111-1111-110411731144}, Quarantined, [aaf830b998e3f73fbcb64c6b5ea3fc04], PUP.Optional.HDview.A, HKU\S-1-5-21-4016700205-1717049133-1125222536-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{11111111-1111-1111-1111-110411731144}, Quarantined, [aaf830b998e3f73fbcb64c6b5ea3fc04], PUP.Optional.HDview.A, HKLM\SOFTWARE\CLASSES\CLSID\{22222222-2222-2222-2222-220422732244}, Quarantined, [aaf830b998e3f73fbcb64c6b5ea3fc04], PUP.Optional.HDview.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0047344.Sandbox.1, Quarantined, [aaf830b998e3f73fbcb64c6b5ea3fc04], PUP.Optional.HDview.A, HKLM\SOFTWARE\CLASSES\CrossriderApp0047344.Sandbox, Quarantined, [aaf830b998e3f73fbcb64c6b5ea3fc04], PUP.Optional.HDview.A, HKLM\SOFTWARE\CLASSES\CLSID\{11111111-1111-1111-1111-110411731144}\INPROCSERVER32, Quarantined, [aaf830b998e3f73fbcb64c6b5ea3fc04], PUP.Optional.HDview.A, HKLM\SOFTWARE\HDview, Quarantined, [19896485fe7d91a5474d6b8533cf46ba], PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\GLOBALUPDATE\UPDATE, Quarantined, [564c09e09be061d502b054a745bdef11], PUP.Optional.CrossRider.A, HKLM\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\25379, Quarantined, [663c47a26b103ef8825b35e1dc2725db], PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=10, Quarantined, [831f43a62556eb4b82590557bf456898], PUP.Optional.GlobalUpdate.A, HKLM\SOFTWARE\MOZILLAPLUGINS\@staging.google.com/globalUpdate Update;version=4, Quarantined, [208217d2a6d5f442d5072834788c0cf4], PUP.Optional.CrossRider.A, HKU\S-1-5-21-4016700205-1717049133-1125222536-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Crossrider, Quarantined, [2082d8119cdf0135667fe16c38cc8f71], PUP.Optional.HDview.A, HKU\S-1-5-21-4016700205-1717049133-1125222536-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\HDview, Quarantined, [2e749e4b8cef2e08593d2ac6e71b54ac], PUP.Optional.CrossRider.A, HKU\S-1-5-21-4016700205-1717049133-1125222536-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\25379, Quarantined, [6f33f2f7a7d456e0fedd0bea1de5e41c], PUP.Optional.CrossRider.A, HKU\S-1-5-21-4016700205-1717049133-1125222536-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLEDBROWSEREXTENSIONS\Downloadi, Quarantined, [f5ad93569cdfcc6a1e797c7451b1dd23], PUP.Optional.GlobalUpdate.T, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\globalUpdate, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\globalUpdatem, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\GOOGLEUPDATE.EXE, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\CLASSES\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\CLASSES\globalUpdate.OneClickCtrl.10, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5645E0E7-FC12-43BF-A6E4-F9751942B298}, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{5645E0E7-FC12-43BF-A6E4-F9751942B298}, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\CLASSES\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\CLASSES\globalUpdate.Update3WebControl.4, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\CLASSES\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\CLASSES\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.HDview.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\HDview, Quarantined, [237f6f7aa7d41b1b6027d31d12f04ab6], Registry Values: 1PUP.Optional.GlobalUpdate.T, HKLM\SOFTWARE\GLOBALUPDATE\UPDATE|path, C:\Program Files\globalUpdate\Update\GoogleUpdate.exe, Quarantined, [564c09e09be061d502b054a745bdef11]Registry Data: 0(No malicious items detected)Folders: 21PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\defaults, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\defaults\preferences, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\userCode, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\locale, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\locale\en-US, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\skin, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\Download, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\Install, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\Offline, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\Offline\{F8379488-27B5-4F35-8F6F-5BA7AD306725}, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.A, C:\Users\{username}\AppData\Local\Temp\comh.183719, Quarantined, [bbe740a95823c274a0b691500ef43ac6], PUP.Optional.HDview.A, C:\Program Files\HDview, Quarantined, [237f6f7aa7d41b1b6027d31d12f04ab6], Files: 138PUP.Optional.HDview.A, C:\Program Files\HDview\HDview-bho.dll, Quarantined, [aaf830b998e3f73fbcb64c6b5ea3fc04], PUP.Optional.CrossRider.A, C:\Users\{username}\Desktop\HDview.exe, Quarantined, [f3af0ddcd5a6ea4c0a0a4df31ee24cb4], PUP.Optional.HDview.A, C:\Program Files\HDview\055b10ff-3d51-448a-b144-61a903cac69f-11.exe, Quarantined, [158d25c4fa8196a0b1c14d6af0116f91], PUP.Optional.HDview.A, C:\Program Files\HDview\055b10ff-3d51-448a-b144-61a903cac69f-2.exe, Quarantined, [534f57926b106fc77ef48b2c34cdcc34], PUP.Optional.HDview.A, C:\Program Files\HDview\055b10ff-3d51-448a-b144-61a903cac69f-4.exe, Quarantined, [930fe10896e50135e38ffbbc748d16ea], PUP.Optional.HDview.A, C:\Program Files\HDview\055b10ff-3d51-448a-b144-61a903cac69f-5.exe, Quarantined, [01a1cf1a166522148ce6873055acc040], PUP.Optional.HDview.A, C:\Program Files\HDview\HDview-bg.exe, Quarantined, [2d753faa8bf01d190270b10646bb9868], PUP.Optional.HDview.A, C:\Program Files\HDview\HDview-codedownloader.exe, Quarantined, [9f0324c596e536008ee48b2cdd242bd5], PUP.Optional.CrossRider.A, C:\Program Files\HDview\utils.exe, Quarantined, [ffa3cc1def8ccd6980944df31ce422de], PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\055b10ff-3d51-448a-b144-61a903cac69f-1, Quarantined, [6b37da0f4932989e04a9f00bac56f60a], PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\055b10ff-3d51-448a-b144-61a903cac69f-11, Quarantined, [91117178accfe4526845f209b64c56aa], PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\055b10ff-3d51-448a-b144-61a903cac69f-2, Quarantined, [663cbd2ca5d6d85e79346b9017eb1de3], PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\055b10ff-3d51-448a-b144-61a903cac69f-5, Quarantined, [3f63b633cdae9a9cc0ed5aa1ff03a55b], PUP.Optional.CrossRider.T, C:\Windows\System32\Tasks\055b10ff-3d51-448a-b144-61a903cac69f-5_user, Quarantined, [b9e96f7adba0b48278354cafef1359a7], PUP.Optional.CrossRider.T, C:\Windows\Tasks\055b10ff-3d51-448a-b144-61a903cac69f-1.job, Quarantined, [e2c0bd2c5b204cea9fb28cce08fc45bb], PUP.Optional.CrossRider.T, C:\Windows\Tasks\055b10ff-3d51-448a-b144-61a903cac69f-11.job, Quarantined, [732f7d6cf2891a1c9eb3481248bc6d93], PUP.Optional.CrossRider.T, C:\Windows\Tasks\055b10ff-3d51-448a-b144-61a903cac69f-2.job, Quarantined, [099930b994e700368ec381d913f119e7], PUP.Optional.CrossRider.T, C:\Windows\Tasks\055b10ff-3d51-448a-b144-61a903cac69f-5.job, Quarantined, [a3ff1ccd1c5fee4883ce2b2f42c20ff1], PUP.Optional.CrossRider.T, C:\Windows\Tasks\055b10ff-3d51-448a-b144-61a903cac69f-5_user.job, Quarantined, [d3cf2dbc5f1c2e084b069cbe8e7613ed], PUP.Optional.GlobalUpdate.A, C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job, Quarantined, [2d754e9be9923204e1863327ba4ad12f], PUP.Optional.GlobalUpdate.A, C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore, Quarantined, [940ec1286e0da3936bfd7ddd5fa522de], PUP.Optional.GlobalUpdate.A, C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job, Quarantined, [168cfdecf685f73f4326500ae22246ba], PUP.Optional.GlobalUpdate.A, C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA, Quarantined, [59496c7d6e0d91a5caa036247e863fc1], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome.manifest, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\install.rdf, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\0ff0f5897e9d4dd93d0b91a2199e9d21.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\1add10c96e5c0cce4ea64a509a856e7e.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\30fb40dadf36d13427564e9ddfb54269.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\7d2ff4bf82b6a6c08ecdbbbea9dc0af9.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\891ae990f941d185c4465752fae4176d.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\background.html, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\browser.xul, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\c4ac8729c73e8a1119276a1d91f368c9.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\dialog.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\ffCoreFilesIndex.txt, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\options.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\options.xul, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\search_dialog.xul, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api\63552808901581b82d0d7c520cd0e125.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api\0dbbdb535ac0d6079bd91a3b65820db5.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api\12a448987fffeb4e9ce129342b2e4b34.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api\18fda6516ca2d6b394584b0466b7004f.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api\2b4c71e981ee39714bbbed170823806f.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api\3a608cf573728f595759c7e062db3268.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api\40a8d65881cb765fb704f728d3228a24.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api\43630ee800706a97b59f2731ddd67a09.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api\44118a5bc56b48aef0516a2a4e5fdae5.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api\6fc660b8b157b756bac31ccfd2766776.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api\768b8300fc7c9868f9998fec6234f573.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api\8c29950260970deafe71237c64897828.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api\a260bd55dc1b4ac1257c59730eb8ff7f.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api\ae9b802b3ffb071980bbf44d64f82b1d.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api\cf2460e41921577ca02397bd0fe9aba1.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\api\db9565a2eb15af73ca6d1531e9283d26.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\094a01b16bf7563b4c945162be5a59ff.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\0afb9fc9f62d8e80c09fd7819e2ec621.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\14dd75511bc043da04ffaf7cecf71bdf.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\23982834a282ce42f8a0f363b9558a7c.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\491d8a6c9342de9a5c7a48a75e8dfeca.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\4f970549d87ebc342e166c6206cbe0ae.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\711d99377b9f497797221dd33a96bd98.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\74ac65589459aa4847b9e7989c6c658d.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\77a92a4b2e21e83aca2076798c40a12b.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\7f0f7a66aa6d710ce10039b3be27fdf0.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\82469194e653150b9d4db4a4296c7836.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\9156e63fac9feb4450b5b3a78db4196c.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\b0ddaf6ad2fa5106c889835f001c936a.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\bb32425e755d5e71ec3bbfe41253baaa.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\bb7615791cd72813e458b0e97b34798b.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\c79fd08d3b57596e975f97d4817aeb32.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\d8222a101dddb8b5d32fe75fb518b120.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\f029c12439e8622859321fc9f0f59570.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\f44a23b45333bd761d2febf0679dfe4a.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\fa4ad193ea8a9cfb9e480df49ef955e5.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\chrome\content\core\installer.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\defaults\preferences\prefs.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\manifest.xml, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins.json, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins\102.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins\104.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins\13.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins\14.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins\16.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins\17.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins\246.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins\260.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins\268.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins\4.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins\47.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins\64.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins\78.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins\91.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\plugins\93.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\userCode\background.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\extensionData\userCode\extension.js, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\locale\en-US\translations.dtd, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\skin\button1.png, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\skin\button2.png, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\skin\button3.png, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\skin\button4.png, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\skin\button5.png, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\skin\crossrider_statusbar.png, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\skin\icon128.png, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\skin\icon16.png, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\skin\icon24.png, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\skin\icon48.png, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\skin\panelarrow-up.png, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\skin\popup.html, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\skin\skin.css, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.CrossRider.A, C:\Users\{username}\AppData\Roaming\Mozilla\Firefox\Profiles\6qeoodjs.default-1401006518835\extensions\aef96717-4b34-4fd4-8759-2d7605592150@1b3d1373-47d5-4f79-a6b3-5b641a8f4b60.com\skin\update.css, Quarantined, [fea40bde94e752e4c0eb705c13ef4db3], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\GoogleUpdate.exe, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\GoogleCrashHandler.exe, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\GoogleUpdate.exe, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\GoogleUpdateBroker.exe, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\GoogleUpdateHelper.msi, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\GoogleUpdateOnDemand.exe, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\goopdate.dll, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\goopdateres_en.dll, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\psmachine.dll, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.T, C:\Program Files\globalUpdate\Update\1.3.25.0\psuser.dll, Quarantined, [b6ecba2fdf9cd26449f15c8540c27d83], PUP.Optional.GlobalUpdate.A, C:\Users\{username}\AppData\Local\Temp\comh.183719\GoogleCrashHandler.exe, Quarantined, [bbe740a95823c274a0b691500ef43ac6], PUP.Optional.GlobalUpdate.A, C:\Users\{username}\AppData\Local\Temp\comh.183719\GoogleUpdate.exe, Quarantined, [bbe740a95823c274a0b691500ef43ac6], PUP.Optional.GlobalUpdate.A, C:\Users\{username}\AppData\Local\Temp\comh.183719\GoogleUpdateBroker.exe, Quarantined, [bbe740a95823c274a0b691500ef43ac6], PUP.Optional.GlobalUpdate.A, C:\Users\{username}\AppData\Local\Temp\comh.183719\GoogleUpdateHelper.msi, Quarantined, [bbe740a95823c274a0b691500ef43ac6], PUP.Optional.GlobalUpdate.A, C:\Users\{username}\AppData\Local\Temp\comh.183719\GoogleUpdateOnDemand.exe, Quarantined, [bbe740a95823c274a0b691500ef43ac6], PUP.Optional.GlobalUpdate.A, C:\Users\{username}\AppData\Local\Temp\comh.183719\goopdate.dll, Quarantined, [bbe740a95823c274a0b691500ef43ac6], PUP.Optional.GlobalUpdate.A, C:\Users\{username}\AppData\Local\Temp\comh.183719\goopdateres_en.dll, Quarantined, [bbe740a95823c274a0b691500ef43ac6], PUP.Optional.GlobalUpdate.A, C:\Users\{username}\AppData\Local\Temp\comh.183719\npGoogleUpdate4.dll, Quarantined, [bbe740a95823c274a0b691500ef43ac6], PUP.Optional.GlobalUpdate.A, C:\Users\{username}\AppData\Local\Temp\comh.183719\psmachine.dll, Quarantined, [bbe740a95823c274a0b691500ef43ac6], PUP.Optional.GlobalUpdate.A, C:\Users\{username}\AppData\Local\Temp\comh.183719\psuser.dll, Quarantined, [bbe740a95823c274a0b691500ef43ac6], PUP.Optional.HDview.A, C:\Program Files\HDview\055b10ff-3d51-448a-b144-61a903cac69f.crx, Quarantined, [237f6f7aa7d41b1b6027d31d12f04ab6], PUP.Optional.HDview.A, C:\Program Files\HDview\055b10ff-3d51-448a-b144-61a903cac69f.xpi, Quarantined, [237f6f7aa7d41b1b6027d31d12f04ab6], PUP.Optional.HDview.A, C:\Program Files\HDview\1293297481.mxaddon, Quarantined, [237f6f7aa7d41b1b6027d31d12f04ab6], PUP.Optional.HDview.A, C:\Program Files\HDview\add1933e-6155-4fef-9acd-67825506d4f0.crx, Quarantined, [237f6f7aa7d41b1b6027d31d12f04ab6], PUP.Optional.HDview.A, C:\Program Files\HDview\background.html, Quarantined, [237f6f7aa7d41b1b6027d31d12f04ab6], PUP.Optional.HDview.A, C:\Program Files\HDview\HDview.ico, Quarantined, [237f6f7aa7d41b1b6027d31d12f04ab6], PUP.Optional.HDview.A, C:\Program Files\HDview\Uninstall.exe, Quarantined, [237f6f7aa7d41b1b6027d31d12f04ab6], Physical Sectors: 0(No malicious items detected)(end)
As mentioned before the full version of Malwarebytes Anti-Malware could have protected your computer against this threat.

We use different ways of protecting your computer(s):

  • Dynamically Blocks Malware Sites & Servers
  • Malware Execution Prevention
Save yourself the hassle and get protected.
Link to post
Share on other sites

 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.