I recommend you UnHackMe - Ultimate Malware Killer for fast malware removal:
Free Download Fully Functional 30-day Trial. No credit card is required.
Reviews. EULA. Privacy Policy. Uninstall.
We received the file 2D116309-19EB-4E1A-B5AB-EC28FA95ADB4-5.EXE and detected that2D116309-19EB-4E1A-B5AB-EC28FA95ADB4-5.EXE is not good.
2D116309-19EB-4E1A-B5AB-EC28FA95ADB4-5.EXE is Adware. You should remove the file 2D116309-19EB-4E1A-B5AB-EC28FA95ADB4-5.EXE.
Kill the process 2D116309-19EB-4E1A-B5AB-EC28FA95ADB4-5.EXE and remove 2D116309-19EB-4E1A-B5AB-EC28FA95ADB4-5.EXE from Windows.
Malware Analysis of Cinemax Plus 1.9cV22.05
Full path on a computer: %Program Files%\Cinemax Plus 1.9cV22.05\
Detected by UnHackMe:
2D116309-19EB-4E1A-B5AB-EC28FA95ADB4-5.EXE
Default location: %Program Files%\Cinemax Plus 1.9cV22.05\2d116309-19eb-4e1a-b5ab-ec28fa95adb4-5.exe
Removal Results: Success
Number of reboot: 1
Cinemax Plus 1.9cV22.05 is known as:
Adware.PUP.Optional.CrossRider.A
2D116309-19EB-4E1A-B5AB-EC28FA95ADB4-5.EXE hash:
- MD5: 14386ba824ba569c721bef65faaaf387
The file tries to connect to the dangerous web site.
How to quickly detect Cinemax Plus 1.9cV22.05 presence?
Registry:
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Cinemax Plus 1.9cV22.05\DisplayName: “Cinemax Plus 1.9cV22.05”
- HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Cinemax Plus 1.9cV22.05\UninstallString: “%Program Files%\Cinemax Plus 1.9cV22.05\Uninstall.exe /fcp=1 “
Folders:
- %Program Files%\Cinemax Plus 1.9cV22.05
Files:
- %Program Files%\Cinemax Plus 1.9cV22.05\2d116309-19eb-4e1a-b5ab-ec28fa95adb4-4.exe
- %Program Files%\Cinemax Plus 1.9cV22.05\2d116309-19eb-4e1a-b5ab-ec28fa95adb4-5.exe
- %Program Files%\Cinemax Plus 1.9cV22.05\2d116309-19eb-4e1a-b5ab-ec28fa95adb4.xpi
- %Program Files%\Cinemax Plus 1.9cV22.05\Uninstall.exe
- %Program Files%\Cinemax Plus 1.9cV22.05\utils.exe
- %WinDir%\Tasks\2d116309-19eb-4e1a-b5ab-ec28fa95adb4-5.job