Should I remove CinemaD-V1?
What percent of users and experts removed it?
87% remove it13% keep it
What do people think about it?
(click star to rate)
How common is it?
Reach 0.0001%
Lifespan of installation (until removal)
Average installed length: 0.84 days
Versions
Version | Distribution |
1.34.7.1 |
100.00% |
|
Other programs by Robokid Technologies
CinemaD-V1
from Robokid Technologies
What is CinemaD-V1?
CinemaD is an web browser advertisement extension that delivers ads to the user's web browser. Ads are in the form of traditional banners as well as context-hyper links. Ads delivered are injected on any web page the software decides to include it on and not just those affiliated with the software or its affiliates. The ads are not affiliated nor endorsed by the underlying websites on which they appear. The program periodically connects with its remote servers to download new ad feeds and will report back the domains and URLs the user visits as well as the links and advertisements the user clicks on while browsing the web. This adware is mostly bundled with 3rd party download managers that include a number of additional offers, all potentially unwanted programs.
Overview
During setup, the program registers itself to launch on boot through a Windows Schedule Task in order to automatically start-up (this is typically done to avoid any UAC prompts). It adds a Browser Helper Object (BHO) to Internet Explorer. Once installed, it will add an extension to both the Firefox and Chrome web browsers. The main program executable is CinemaD-V1-bg.exe. Typically most users end up uninstalling this just after a few days. The software installer includes 14 files and is usually about 3.29 MB (3,446,074 bytes).
The program is built using the Crossrider framework, a cross browser monetization platform used to deploy a toolbar and extension for modern web browsers with monetization features including browser search and homepage redirection, contextual coupons and in-line text advertising. Crossrider extensions include background processes to monitor, update and automatically download new features/code without direct user interaction.
- Possible malware installed by this program
- Starts automatically
- Runs in the Firefox, Chrome and Firefox web browsers
- Built on the Crossrider toolbar platform and potentially unwanted
- May inject ads in the web browser
- 'Offers' to modify the browser's home and search pages by default
- Installed as part of a co-bundle
- Injects advertisements unassociated with the underlying web page
- The experts agree, you should remove it!
Warning, multiple anti-virus scanners have detected possible malware in CinemaD-V1.
CinemaD-V1-bg.exe (8c826b3a8e2e310a0caac7edbba1292e) has been flagged by the following 13 scanners: |
Anti-Virus software | Version | Detection |
Avira AntiVir |
7.11.164.66 |
ADWARE/CrossRider.Gen2 |
Antiy-AVL |
1.0.0.1 |
RiskWare[WebToolbar:not-a-virus]/Win32.Agent |
AVG |
2015.0.3390 |
Generic |
AVware |
1.5.0.16 |
Crossrider (fs) |
ESET-NOD32 |
8.10165 |
a variant of Win32/Toolbar.CrossRider.AL |
F-Prot |
v6.4.7.1.166 |
W32/A-eb9ef301 |
IKARUS anti.virus |
t3scan.1.6.1.0 |
not-a-virus:WebToolbar.CrossRider |
NANO AntiVirus |
0.28.2.60990 |
Riskware.Win32.CrossRider.dclbxm |
Panda Antivirus |
14.08.06.10 |
Trj/Genetic.gen |
Rising Antivirus |
23.00.65.14804 |
PE:Malware.Obscure!1.9C59 |
Sophos |
4.98 |
AppRider |
Symantec |
8/6/2014 rev. 4 |
WS.Reputation |
VIPRE Antivirus |
31688 |
Crossrider (fs) |
ac6c7461-7cca-430e-86d4-3dd3fc0815e9-10.exe (bffa2baab01364aad87d1c5bb0d6a86d) has been flagged by the following 18 scanners: |
Anti-Virus software | Software version | Detection |
Avira AntiVir |
7.11.169.248 |
ADWARE/CrossRider.Gen2 |
AVG |
14.0.0.4015 |
Generic.332 |
AVware |
1.5.0.16 |
Crossrider (fs) |
Baidu-International |
3.5.1.41473 |
PUA.Win32.CrossRider.bAG |
Comodo Security |
19353 |
ApplicUnwnt |
ESET-NOD32 |
10337 |
a variant of Win32/Toolbar.CrossRider.AG |
Fortinet FortiGate |
5.1.152.0 |
Riskware/Toolbar_CrossRider |
IKARUS anti.virus |
T3.1.7.5.0 |
PUA.CrossRider |
K7 AntiVirus |
9.183.13198 |
Trojan ( 0049b45e1 ) |
K7GW |
9.183.13198 |
Trojan ( 0049b45e1 ) |
Malwarebytes |
1.75.0.1 |
PUP.Optional.Cinema.A |
McAfee |
6.0.4.564 |
Artemis!BFFA2BAAB013 |
McAfee-GW-Edition |
2013.2 |
Artemis!BFFA2BAAB013 |
Panda Antivirus |
10.0.3.5 |
Trj/Genetic.gen |
Sophos |
4.98.0 |
AppRider |
Symantec |
20141.1.0.330 |
Trojan.ADH.2 |
TrendMicro-HouseCall |
9.700.0.1001 |
Suspicious_GEN.F47V0720 |
VIPRE Antivirus |
32658 |
Crossrider (fs) |
ac6c7461-7cca-430e-86d4-3dd3fc0815e9-11.exe (a92d6ddc45f19110ffdeeed52814ec29) has been flagged by the following 16 scanners: |
Anti-Virus software | Software version | Detection |
Avira AntiVir |
7.11.164.52 |
ADWARE/CrossRider.Gen2 |
AVG |
14.0.0.3986 |
Generic.332 |
Baidu-International |
3.5.1.41473 |
Adware.Win32.CrossRider.BAK |
Comodo Security |
18995 |
ApplicUnwnt |
ESET-NOD32 |
10161 |
a variant of Win32/Toolbar.CrossRider.AK |
Fortinet FortiGate |
5.1.152.0 |
Riskware/Toolbar_CrossRider |
IKARUS anti.virus |
T3.1.6.1.0 |
not-a-virus:WebToolbar.CrossRider |
K7 AntiVirus |
9.181.12846 |
Trojan ( 0049c2ce1 ) |
K7GW |
9.181.12846 |
Trojan ( 0049c2ce1 ) |
McAfee |
6.0.4.564 |
Artemis!A92D6DDC45F1 |
McAfee-GW-Edition |
2013 |
Artemis!A92D6DDC45F1 |
Panda Antivirus |
10.0.3.5 |
Trj/Genetic.gen |
Sophos |
4.98.0 |
Generic PUA AA |
Symantec |
20131.1.5.61 |
Trojan.ADH.2 |
TrendMicro-HouseCall |
9.700.0.1001 |
Suspicious_GEN.F47V0720 |
VIPRE Antivirus |
31664 |
Crossrider (fs) |
CinemaD-V1-bho.dll (5dd18247c1d0dd1c0611f5ec74143032) has been flagged by the following 14 scanners: |
Anti-Virus software | Software version | Detection |
Lavasoft Ad-Aware |
12.0.163.0 |
Gen:Variant.Adware.Graftor.146232 |
Avira AntiVir |
7.11.163.22 |
ADWARE/CrossRider.Gen2 |
AVG |
14.0.0.3986 |
Generic.332 |
Bitdefender |
7.2 |
Gen:Variant.Adware.Graftor.146232 |
Dr.Web |
7.0.9.4080 |
DLOADER.Trojan |
Emsisoft Anti-Malware |
3.0.0.600 |
Gen:Variant.Adware.Graftor.146232 (B) |
ESET-NOD32 |
10126 |
a variant of Win32/Toolbar.CrossRider.AF |
F-Prot |
4.7.1.166 |
W32/A-eb9ef301!Eldorado |
F-Secure |
11.0.19100.45 |
Gen:Variant.Adware.Graftor.146232 |
G Data |
24 |
Gen:Variant.Adware.Graftor.146232 |
MicroWorld-eScan |
12.0.250.0 |
Gen:Variant.Adware.Graftor.146232 |
Rising Antivirus |
25.0.0.11 |
PE:Malware.Obscure!1.9C59 |
Sophos |
4.98.0 |
AppRider |
VIPRE Antivirus |
31442 |
Crossrider (fs) |
ac6c7461-7cca-430e-86d4-3dd3fc0815e9-4.exe (9f09fd805f475e788e8dc2a9a53efaf4) has been flagged by the following 14 scanners: |
Anti-Virus software | Software version | Detection |
Avira AntiVir |
7.11.164.52 |
ADWARE/CrossRider.Gen2 |
AVG |
14.0.0.3986 |
Generic.332 |
Baidu-International |
3.5.1.41473 |
Adware.Win32.CrossRider.BAK |
Comodo Security |
18995 |
ApplicUnwnt |
ESET-NOD32 |
10161 |
a variant of Win32/Toolbar.CrossRider.AK |
Fortinet FortiGate |
5.1.152.0 |
Riskware/Toolbar_CrossRider |
IKARUS anti.virus |
T3.1.6.1.0 |
AdWare.Adload |
McAfee |
6.0.4.564 |
Artemis!9F09FD805F47 |
McAfee-GW-Edition |
2013 |
Artemis!9F09FD805F47 |
Panda Antivirus |
10.0.3.5 |
Trj/Genetic.gen |
Sophos |
4.98.0 |
Generic PUA MA |
Symantec |
20131.1.5.61 |
Trojan.ADH.2 |
TrendMicro-HouseCall |
9.700.0.1001 |
Suspicious_GEN.F47V0720 |
VIPRE Antivirus |
31664 |
Crossrider (fs) |
dfd070af-6ca3-4301-b060-06acefa871ad-10.exe (b5288a64fa99e7302bb6f1b2e811f69a) has been flagged by the following 13 scanners: |
Anti-Virus software | Software version | Detection |
Avira AntiVir |
7.11.163.102 |
Adware/CrossRider.A.20152 |
AVG |
14.0.0.3986 |
Generic.332 |
Baidu-International |
3.5.1.41473 |
Adware.Win32.CrossRider.BAG |
ESET-NOD32 |
10136 |
a variant of Win32/Toolbar.CrossRider.AG |
Fortinet FortiGate |
5.1.152.0 |
Riskware/Toolbar_CrossRider |
IKARUS anti.virus |
T3.1.6.1.0 |
AdWare.Adload |
K7 AntiVirus |
9.181.12806 |
Trojan ( 0049b45e1 ) |
K7GW |
9.181.12806 |
Trojan ( 0049b45e1 ) |
Panda Antivirus |
10.0.3.5 |
Trj/Genetic.gen |
Sophos |
4.98.0 |
Generic PUA KD |
Symantec |
20131.1.5.61 |
WS.Reputation.1 |
TrendMicro-HouseCall |
9.700.0.1001 |
Suspicious_GEN.F47V0715 |
VIPRE Antivirus |
31502 |
Crossrider (fs) |
CinemaD-V1-bho64.dll (c0bbc3932436db1ec86ed1d78c4c5574) has been flagged by the following 13 scanners: |
Anti-Virus software | Software version | Detection |
Agnitum Outpost |
5.5.1.3 |
PUA.Toolbar.CroRi! |
Avira AntiVir |
7.11.165.34 |
ADWARE/CrossRider.Gen2 |
AVG |
14.0.0.3986 |
Generic.332 |
AVware |
1.5.0.16 |
Crossrider (fs) |
Comodo Security |
19081 |
ApplicUnwnt |
ESET-NOD32 |
10201 |
a variant of Win64/Toolbar.Crossrider.F |
Fortinet FortiGate |
5.1.152.0 |
Adware/Toolbar_CrossRider |
IKARUS anti.virus |
T3.1.6.1.0 |
PUA.CrossRider |
Kaspersky |
12.0.0.1225 |
not-a-virus:WebToolbar.Win32.CroRi.tr |
Panda Antivirus |
10.0.3.5 |
Trj/Chgt.C |
Sophos |
4.98.0 |
AppRider |
TrendMicro-HouseCall |
9.700.0.1001 |
Suspicious_GEN.F47V0728 |
VIPRE Antivirus |
31910 |
Crossrider (fs) |
dfd070af-6ca3-4301-b060-06acefa871ad-2.exe (e91e58abd0811304894630d35e1a8928) has been flagged by the following 11 scanners: |
Anti-Virus software | Software version | Detection |
Avira AntiVir |
7.11.164.66 |
ADWARE/CrossRider.Gen2 |
AVG |
14.0.0.3986 |
Generic.332 |
ESET-NOD32 |
10164 |
a variant of Win32/Toolbar.CrossRider.AJ |
F-Prot |
4.7.1.166 |
W32/A-eb9ef301!Eldorado |
IKARUS anti.virus |
T3.1.6.1.0 |
not-a-virus:WebToolbar.CrossRider |
NANO AntiVirus |
0.28.2.60990 |
Riskware.Win32.CrossRider.dcuuij |
Panda Antivirus |
10.0.3.5 |
Trj/Genetic.gen |
Rising Antivirus |
25.0.0.11 |
PE:Malware.Obscure!1.9C59 |
Sophos |
4.98.0 |
AppRider |
Symantec |
20131.1.5.61 |
WS.Reputation.1 |
VIPRE Antivirus |
31686 |
Crossrider (fs) |
ac6c7461-7cca-430e-86d4-3dd3fc0815e9-2.exe (7ac20ead133064528a6cad5cf7a94264) has been flagged by the following 8 scanners: |
Anti-Virus software | Software version | Detection |
Avira AntiVir |
7.11.163.22 |
ADWARE/CrossRider.Gen2 |
AVG |
14.0.0.3986 |
Generic.332 |
ESET-NOD32 |
10126 |
a variant of Win32/Toolbar.CrossRider.AJ |
F-Prot |
4.7.1.166 |
W32/A-eb9ef301!Eldorado |
Panda Antivirus |
10.0.3.5 |
Trj/Genetic.gen |
Rising Antivirus |
25.0.0.11 |
PE:Malware.Obscure!1.9C59 |
Sophos |
4.98.0 |
AppRider |
VIPRE Antivirus |
31442 |
Crossrider (fs) |
View all 120 all detections

CinemaD-V1 has been found to be bundled with 3rd party software. If you have not purposefully installed this, you should be safe uninstalling it.
Program details
Displayed publisher: CinemaD
Installation folder: C:\Program Files\CinemaD-V1
Uninstaller: C:\Program Files\CinemaD-V1\Uninstall.exe /fcp=1
Estimated size: 3.29 MB
Files installed by CinemaD-V1
Program executable: | CinemaD-V1-bg.exe (Malware detected) |
Name: | CinemaD-V1 |
| CinemaD-V1 exe |
Path: | C:\Program Files\CinemaD-V1\CinemaD-V1-bg.exe |
MD5: | 8c826b3a8e2e310a0caac7edbba1292e |
Additional files:
-
(Malware detected) ac6c7461-7cca-430e-86d4-3dd3fc0815e9-10.exe (by CinemaD) - CinemaD-V1 (CinemaD-V1 exe)
-
(Malware detected) ac6c7461-7cca-430e-86d4-3dd3fc0815e9-11.exe (by CinemaD)
-
(Malware detected) ac6c7461-7cca-430e-86d4-3dd3fc0815e9-2.exe
-
(Malware detected) ac6c7461-7cca-430e-86d4-3dd3fc0815e9-4.exe
-
(Malware detected) CinemaD-V1-bg.exe
-
(Malware detected) CinemaD-V1-bho.dll - CinemaD-V1 BHO
-
(Malware detected) CinemaD-V1-bho64.dll
-
(Malware detected) dfd070af-6ca3-4301-b060-06acefa871ad-10.exe
-
(Malware detected) dfd070af-6ca3-4301-b060-06acefa871ad-2.exe
-
Uninstall.exe
-
5dba589b-44c6-4e22-a92f-0698b62bbf4d.crx
-
86b35151-5def-4d02-ad7c-cf78828249ba.crx
-
ac6c7461-7cca-430e-86d4-3dd3fc0815e9.xpi
-
utils.exe
Behaviors exhibited
2 Internet Explorer BHOs
- CinemaD-V1-bho.dll is installed in Internet Explorer as a BHO (Browser Helper Object) under the name 'CinemaD-V1' with the class of {11111111-1111-1111-1111-110511951168} (CrossriderApp0059568).
- CinemaD-V1-bho64.dll is installed in Internet Explorer as a BHO (Browser Helper Object) under the name 'CinemaD-V1' with the class of {11111111-1111-1111-1111-110511951168} (CrossriderApp0059568).
6 Scheduled Tasks (Boot/Login)
- ac6c7461-7cca-430e-86d4-3dd3fc0815e9-4.exe is automatically launched at startup through a scheduled task named ac6c7461-7cca-430e-86d4-3dd3fc0815e9-4.
- ac6c7461-7cca-430e-86d4-3dd3fc0815e9-11.exe is automatically launched at startup through a scheduled task named ac6c7461-7cca-430e-86d4-3dd3fc0815e9-3.
- ac6c7461-7cca-430e-86d4-3dd3fc0815e9-2.exe is automatically launched at startup through a scheduled task named ac6c7461-7cca-430e-86d4-3dd3fc0815e9-2.
- ac6c7461-7cca-430e-86d4-3dd3fc0815e9-10.exe is automatically launched at startup through a scheduled task named ac6c7461-7cca-430e-86d4-3dd3fc0815e9-10.
- dfd070af-6ca3-4301-b060-06acefa871ad-2.exe is automatically launched at startup through a scheduled task named dfd070af-6ca3-4301-b060-06acefa871ad-2.
- dfd070af-6ca3-4301-b060-06acefa871ad-10.exe is automatically launched at startup through a scheduled task named dfd070af-6ca3-4301-b060-06acefa871ad-10.
How do I remove CinemaD-V1?
You can uninstall CinemaD-V1 from your computer by using the Add/Remove Program feature in the Window's Control Panel.
- On the Start menu (for Windows 8, right-click the screen's bottom-left corner), click Control Panel, and then, under Programs, do one of the following:
- Windows Vista/7/8/10: Click Uninstall a Program.
- Windows XP: Click Add or Remove Programs.
- When you find the program CinemaD-V1, click it, and then do one of the following:
- Windows Vista/7/8/10: Click Uninstall.
- Windows XP: Click the Remove or Change/Remove tab (to the right of the program).
- Follow the prompts. A progress bar shows you how long it will take to remove CinemaD-V1.
- If for some reason uninstallation fails, please install Microsoft's uninstall fixer utility which will help fix problems with programs that can't be uninstalled at support.microsoft.com.
How do I reset my web browser?
If your web browser homepage and search settings have been modfied by CinemaD-V1 you can restore them to their previous default settings.
Microsoft Internet Explorer
- Open Internet Explorer and click the Tools button, and then click Internet options.
- Click the Advanced tab, and then click Reset. Select the Delete personal settings check box if you would also like to remove search providers, Accelerators and home pages. When Internet Explorer finishes applying default settings, click Close, and then click OK.
- The changes will take effect the next time you open IE.
Mozilla Firefox
- At the top of the Firefox window, click the Firefox button, go over to the Help sub-menu and select Troubleshooting Information.
- To continue, click Reset Firefox in the confirmation window that opens. It will close and be reset.
- When it's done, a window will list the information that was imported. Click Finish and Firefox will open.
Google Chrome
- Open Chrome and click the Chrome menu on the browser toolbar.
- Select Settings. In the "Search" section, click Manage search engine. Check if (Default) is displayed next to your preferred search engine. If not, mouse over it and click Make default. Mouse over any other suspicious search engine entries that are not familiar and click X to remove them.
- When the "Show Home button" checkbox is selected, a web address appears below it. If you want the Homepage button to open up a different webpage, click Change to enter a link.
- Restart Google Chrome.
OS VERSIONS
Win XP 50%
Win 10 50%
|
|
HOW IT STARTS
Scheduled task? Yes
(Runs on Windows boot)
|
|
USER ACTIONS
 |
Uninstall it 87%
Keep it 13%
|
|
Windows
Which Windows OS versions does it run on?
Windows XP |
50.00% |
|
Windows 10 |
50.00% |
|
Geography
83.33% of installs come from the United States
Which countries install it?
United States |
83.33% |
Canada |
16.67% |
PC manufacturers
What PC manufacturers (OEMs) have it installed?
Hewlett-Packard |
50.00% |
|
ASUS |
50.00% |
|