We received the file SAFE-SAVER GENERIC-UPDATER.EXE and detected that SAFE-SAVER GENERIC-UPDATER.EXE is not good.
SAFE-SAVER GENERIC-UPDATER.EXE is Adware. You should remove the file SAFE-SAVER GENERIC-UPDATER.EXE.
Kill the process SAFE-SAVER GENERIC-UPDATER.EXE and remove SAFE-SAVER GENERIC-UPDATER.EXE from Windows.
Malware Analysis of SAFE-SAVER GENERIC-UPDATER.EXE
Full path on a computer: %Program Files%\Safe-Saver Generic\Safe-Saver Generic-updater.exe
Detected by UnHackMe:
SAFE-SAVER GENERIC-UPDATER.EXE
Default location: %Program Files%\Safe-Saver Generic\Safe-Saver Generic-updater.exe
Removal Results: Success
Number of reboot: 1
SAFE-SAVER GENERIC-UPDATER.EXE is known as:
Adware.Crossrider
SAFE-SAVER GENERIC-UPDATER.EXE hash:
- MD5: 9c122de35a491f00c4615be581b04738
The file is used for downloading and installing other malware, Trojans, viruses by the commands received from the Command Center.
How to quickly detect SAFE-SAVER GENERIC-UPDATER.EXE presence?
![]( "Registry")
Registry:
![]( "Folders")
Folders:
![]( "Files")
Files:
Registry:- HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110311391186}\InprocServer32\: “%Program Files%\Safe-Saver Generic\Safe-Saver Generic-bho.dll”
- HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220322392286}\InprocServer32\: “%Program Files%\Safe-Saver Generic\Safe-Saver Generic-bho.dll”
Folders:- %Appdata%\Mozilla\Firefox\Profiles\gi17c3pt.default\extensions\2f3f3b66-0070-47af-ab29-8d6732f74f35@ec7cdcfb-0ee9-44df-869f-a5f4e0c28e56.com
- %Local Appdata%\Google\Chrome\User Data\Default\Extensions\gdecomoeoinffmfpcihlmacjmlnjfbgm
- %Program Files%\Safe-Saver Generic
Files:- %Temp%\Safe-Saver GenericInstaller_1379084770.log
- %Program Files%\Safe-Saver Generic\33986.crx
- %Program Files%\Safe-Saver Generic\33986.xpi
- %Program Files%\Safe-Saver Generic\background.html
- %Program Files%\Safe-Saver Generic\Installer.log
- %Program Files%\Safe-Saver Generic\Safe-Saver Generic-bg.exe
- %Program Files%\Safe-Saver Generic\Safe-Saver Generic-bho.dll
- %Program Files%\Safe-Saver Generic\Safe-Saver Generic-buttonutil.dll
- %Program Files%\Safe-Saver Generic\Safe-Saver Generic-buttonutil.exe
- %Program Files%\Safe-Saver Generic\Safe-Saver Generic-buttonutil64.dll
- %Program Files%\Safe-Saver Generic\Safe-Saver Generic-buttonutil64.exe
- %Program Files%\Safe-Saver Generic\Safe-Saver Generic-chromeinstaller.exe
- %Program Files%\Safe-Saver Generic\Safe-Saver Generic-codedownloader.exe
- %Program Files%\Safe-Saver Generic\Safe-Saver Generic-enabler.exe
- %Program Files%\Safe-Saver Generic\Safe-Saver Generic-firefoxinstaller.exe
- %Program Files%\Safe-Saver Generic\Safe-Saver Generic-helper.exe
- %Program Files%\Safe-Saver Generic\Safe-Saver Generic-updater.exe
- %Program Files%\Safe-Saver Generic\Safe-Saver Generic.ico
- %Program Files%\Safe-Saver Generic\Uninstall.exe
- %WinDir%\Tasks\Safe-Saver Generic-chromeinstaller.job
- %WinDir%\Tasks\Safe-Saver Generic-codedownloader.job
- %WinDir%\Tasks\Safe-Saver Generic-enabler.job
- %WinDir%\Tasks\Safe-Saver Generic-firefoxinstaller.job
- %WinDir%\Tasks\Safe-Saver Generic-updater.job