home

cinedpv2-bg.exe

CineDPV2

Robokid Technologies

By using the Crossrider framework, this web extension is loaded in the web browser and displays advertisments on web pages not affiliated by the extension or company. These unwanted advertisements are injected by the extension in the browser in the form of common ad types such as banners and text-links. The application cinedpv2-bg.exe by Robokid Technologies has been detected as adware by 26 anti-malware scanners. Part of the Corssrider web browser platform, the BG executable is a background process that manage various function of the installed extensions in user's browser including managing installation, updates and remote code downloads. It is distributed as part of the Brightcircle group of browser-extensions.
Publisher:
CineDP  (signed by Robokid Technologies)

Product:
CineDPV2

Description:
CineDPV2 exe

Version:
1000.1000.1000.1000

MD5:
f3e47b97e3717fd420820e66814c25b7

SHA-1:
f3908a1dff2fe1b642305a20da2f2ec706ab1595

SHA-256:
6c1e0363fba277e2f280a864ae35b830107c16c4345fe05710cd9ecfd5abb8a1

Scanner detections:
26 / 68

Status:
Adware

Explanation:
The software may change the browser's home page and search provider settings as well as display advertisements. Distributed through the Brightcircle investments brand.

Note:
Crossrider is the owner of a platform that enables the creation of cross-browser extensions by developers but is not the owner of this detected application. The owner/publisher of this file is Robokid Technologies.

Analysis date:
4/24/2024 6:26:04 AM UTC  (today)

Scan engine
Detection
Engine version

Lavasoft Ad-Aware
Gen:Variant.Adware.Plush.2
885

Avira AntiVirus
Adware/CrossRider.pl
7.11.169.68

AVG
Stampede
2015.0.3363

Baidu Antivirus
PUA.Win32.CrossRider
4.0.3.1492

Bitdefender
Gen:Variant.Adware.Plush.2
1.0.20.1225

Dr.Web
Trojan.Crossrider.28497
9.0.1.0245

Emsisoft Anti-Malware
Gen:Variant.Adware.Kazy.444130
9.0.0.4324

ESET NOD32
Win32/Toolbar.CrossRider.AL potentially unwanted application
7.0.302.0

Fortinet FortiGate
W32/GoogUpdate.AL!tr
9/2/2014

F-Secure
Gen:Variant.Adware.Plush.2
11.2014-02-09_3

G Data
Win32.Adware.Crossrider
14.9.24

IKARUS anti.virus
not-a-virus:WebToolbar.CroRi
t3scan.1.7.5.0

K7 AntiVirus
Trojan
13.183.13139

Kaspersky
Trojan.NSIS.GoogUpdate
14.0.0.3312

Malwarebytes
PUP.Optional.InfoHD.A
v2014.09.02.04

McAfee
Artemis!B27EFF50D73E
5600.7019

MicroWorld eScan
Gen:Variant.Adware.Plush.2
15.0.0.735

NANO AntiVirus
Riskware.Win32.Crossrider.dedsfq
0.28.2.61861

Panda Antivirus
Trj/Genetic.gen
14.09.02.04

Qihoo 360 Security
Win32/Virus.Adware.960
1.0.0.1015

Reason Heuristics
PUP.Crossrider.RobokidTechnologies.L
14.9.2.15

Rising Antivirus
PE:Malware.Obscure!1.9C59
23.00.65.14831

Sophos
Generic PUA BH
4.98

Trend Micro House Call
Suspicious_GEN.F47V0816
7.2.245

VIPRE Antivirus
Threat.4789396
32210

Zillya! Antivirus
Trojan.GoogUpdate.Win32.446
2.0.0.1901

File size:
601 KB (615,448 bytes)

Product version:
1000.1000.1000.1000

Copyright:
Copyright 2011

Original file name:
CineDPV2.exe

File type:
Executable application (Win32 EXE)

Language:
English (United States)

Common path:
C:\Program Files\cinedpv2\cinedpv2-bg.exe

Digital Signature
Signed by:
Robokid Technologies

Authority:
COMODO CA Limited

Valid from:
6/23/2014 1:00:00 AM

Valid to:
6/24/2015 12:59:59 AM

Subject:
CN=Robokid Technologies, O=Robokid Technologies, STREET=Athinodorou 3 Dasoupoli Strovolos, L=Nicosia, S=Cyprus, PostalCode=2025, C=CY

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00ECF35E880AD0F3BC6F82DFB1F2E84CC0

File PE Metadata
Compilation timestamp:
9/2/2014 11:06:32 AM

OS version:
5.1

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
11.0

CTPH (ssdeep):
12288:mvOt5gYE1EukfRTIkyqDA++pz1NoXydTHN:mGt5gRIWSNIQXmTt

Entry address:
0x50828

Entry point:
E8, 5F, CC, 00, 00, E9, 00, 00, 00, 00, 6A, 14, 68, 28, 03, 49, 00, E8, 52, 49, 00, 00, E8, C6, 1C, 00, 00, 0F, B7, F0, 6A, 02, E8, F2, CB, 00, 00, 59, B8, 4D, 5A, 00, 00, 66, 39, 05, 00, 00, 40, 00, 74, 04, 33, DB, EB, 33, A1, 3C, 00, 40, 00, 81, B8, 00, 00, 40, 00, 50, 45, 00, 00, 75, EB, B9, 0B, 01, 00, 00, 66, 39, 88, 18, 00, 40, 00, 75, DD, 33, DB, 83, B8, 74, 00, 40, 00, 0E, 76, 09, 39, 98, E8, 00, 40, 00, 0F, 95, C3, 89, 5D, E4, E8, 70, 51, 00, 00, 85, C0, 75, 08, 6A, 1C, E8, DC, 00, 00, 00, 59, E8...
 
[+]

Entropy:
6.4552

Code size:
477.5 KB (488,960 bytes)

Remove cinedpv2-bg.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.