53172.xpi

The file 53172.xpi has been detected as a potentially unwanted program by 4 anti-malware scanners. It is built using the Crossrider cross-browser extension platform. While the file utilizes the Crossrider framework and delivery services, it is not owned by Crossrider.
Remove 53172.xpi - Powered by Reason Core Security
MD5:
1bdb15b803c571db783761f389651e7a

SHA-1:
4190c1cbbe115ef66dbc20f1198dc2cb491f84a2

SHA-256:
d3f9733ddd5cd67ed05dc2a65a80a98ffb806393719ac236abd02837d7e774f5

Scanner detections:
4 / 68

Status:
Potentially unwanted

Explanation:
The software may change the browser's home page and search provider settings as well as display advertisements.

Analysis date:
12/7/2016 11:46:30 AM UTC  (today)

Scan engine
Detection
Engine version

Dr.Web
infected with Trojan.Crossrider.17413
9.0.1.05190

ESET NOD32
JS/Toolbar.Crossrider.B potentially unwanted application
7.0.302.0

G Data
Script.Application.Plush
14.6.24

Reason Heuristics
Adware.Extension.Crossrider.I
14.6.13.1

Remove 53172.xpi - Powered by Reason Core Security
File size:
464.9 KB (476,080 bytes)

File type:
Cross-Platform Installer Module (XPI), used by Mozilla bundles

Common path:
C:\Program Files\hq-video-pro-1.9\53172.xpi

<RDF:RDF xmlns:em="http://www.mozilla.org/2004/em-rdf#" xmlns:NC="http://home.netscape.com/NC-rdf#" xmlns:RDF="http://www.w3.org/1999/02/22-rdf-syntax-ns#">
  <RDF:Description RDF:about="urn:mozilla:install-manifest" em:id="ee5ad154-f909-4cc0-aa51-d7e94e3fb0af@36204afd-f43e-4917-9c71-8384e2e4d3ad.com" em:unpack="true" em:name="HQ-Video-Pro-1.9" em:version="0.94.61" em:type="2" em:creator="HQ-Video" em:description="HQ Videos is an add-on for your Internet browser that enhances your online experience by displaying online videos in their highest quality format available." em:optionsURL="chrome://aee5ad154f9094cc0aa51d7e94e3fb0af36204afdf43e49179c718384e2e4d3adcom53172/content/options.xul" em:iconURL="chrome://aee5ad154f9094cc0aa51d7e94e3fb0af36204afdf43e49179c718384e2e4d3adcom53172/skin/icon24.png" em:updateURL="https://w9u6a2p6.ssl.hwcdn.net/plugin/ff/update/53172.rdf">
    <em:targetApplication RDF:resource="rdf:#$4d+Bj1" />
  </RDF:Description>
  <RDF:Description RDF:about="rdf:#$4d+Bj1" em:id="{ec8030f7-c20a-464f-9b0e-13a3a9e97384}" em:minVersion="3.5" em:maxVersion="40.*" />
</RDF:RDF>
Remove 53172.xpi - Powered by Reason Core Security