I - Cinema

Known Adware

What is I - Cinema?

I - Cinema is software application developed by Bright circle investments Ltd.. It is most commonly found on computers running Windows 7 with nearly 74.11% of installations running this operating system. I - Cinema's installer is typically 15.00 MB in size and installs around 478 files. The most common release is 1.36.01.22 with 29.02% of all installations currently using this version.

I - Cinema is most popular in Brazil with 20.60% of installations residing in this country.

I - Cinema adds 1 scheduled task to the Windows Task Scheduler launching the program at randomly scheduled times.

About I - Cinema?

i - cinema is a web browser extension designed to inject display advertising into the user's browser experience. Ads are presented as banners and contextual text-links, strategically placed in the white space areas of HTML pages or over existing ads within the underlying website. The advertisements primarily promote PC optimization utilities, bundled malware, and other types of potentially harmful content.

Multiple virus scanners have detected malware in I - Cinema.

utils.exe (MD5: e8faaa8fa19605bfcadf0f0df2826b28) has been flagged by 50 scanners:

Scanner Software	Version	Result
AegisLab	1.5	AdWare.NSIS.Indirect
avast!	2014.9-141120	NSIS:InstMonetizer-BP [PUP]
Baidu-International	4.0.3.141120	PUA.Win32.VMDetector.BI
Bkav FE	1.3.0.4959	HW32.Packed
Dr.Web	9.0.0.0324	Trojan.Crossrider.33784
ESET-NOD32	8.10573	Win32/Packed.VMDetector.I
G Data	14.11.24	NSIS.Adware.Crossrider
Malwarebytes	v2014.11.20.03	PUP.Optional.CrossRider.A
McAfee	5600.6941	Artemis!E8FAAA8FA196
McAfee-GW-Edition	7.6941	Artemis
NANO AntiVirus	0.28.2.62671	Trojan.Win32.Crossrider.dftchh
Qihoo-360	1.0.0.1015	HEUR/Malware.QVM20.Gen
Symantec	11/20/2014 rev. 5	WS.Reputation
Vba32 AntiVirus	3.12.26.3	Trojan.GoogUpdate
Lavasoft Ad-Aware	12.0.163.0	Adware.AdWrapper.A
AhnLab-V3	2015.03.29.00	PUP/Win32.CrossRider
ALYac	1.0.1.4	Adware.AdWrapper.A
Antiy-AVL	1.0.0.1	GrayWare[AdWare:not-a-virus]/NSIS.Adwapper.do
AVG	15.0.0.4315	Generic.EC3
Avira	3.6.1.96	ADWARE/CrossRider.Gen7
AVware	1.5.0.21	Crossrider (fs)
Bitdefender	7.2	Adware.AdWrapper.A
CAT-QuickHeal	14.00	PUA.BrightCircle.OD6
Comodo Security	21573	ApplicUnwnt
Cyren	5.4.16.7	W32/S-a64d6097!Eldorado
Emsisoft Anti-Malware	3.0.0.600	Adware.AdWrapper.A (B)
Fortinet FortiGate	5.0.999.0	Adware/Adwapper
F-Prot	4.7.1.166	W32/S-a64d6097!Eldorado
F-Secure	11.0.19100.45	Adware.AdWrapper.A
IKARUS anti.virus	T3.1.8.9.0	not-a-virus:WebToolbar.CrossRider
Jiangmin	16.0.100	AdWare/NSIS.eaf
K7 AntiVirus	9.202.15414	Unwanted-Program ( 0040f9a31 )
K7GW	9.202.15414	Unwanted-Program ( 0040f9a31 )
Kaspersky	15.0.1.10	not-a-virus:AdWare.NSIS.Adwapper.do
Microsoft Security Essentials	1.1.11502.0	BrowserModifier:Win32/IeEnablerCby
MicroWorld-eScan	12.0.250.0	Adware.AdWrapper.A
nProtect	2015-03-27.01	Trojan-Clicker/W32.Agent.929248
Panda Antivirus	4.6.4.2	Trj/Genetic.gen
Rising Antivirus	25.0.0.17	PE:Malware.Obscure!1.9C59
Sophos	4.98.0	AppRider
Tencent	1.0.0.1	Win32.Adware.Bp-browser.Luqs
Trend Micro	9.740.0.1012	TROJ_GEN.R0C1C0VAA15
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.R0C1C0VAA15
VIPRE Antivirus	38850	Crossrider (fs)
Zillya	2.0.0.2119	Adware.Adwapper.Win32.1543
Agnitum Outpost	5.5.1.3	PUA.Toolbar.CrossRider!
Arcabit	1.0.0.425	Trojan.Adware.Graftor.D29ED5
Clam AntiVirus	0.98.5.0	Win.Adware.Graftor-752
SUPERAntiSpyware	5.6.0.1032	Adware.CrossRider/Variant
ViRobot	2014.3.20.0	Adware.CrossRider.2020328[h]

30e4fefd-94c4-42e7-891a-1095d00be41e-2.exe (MD5: ca55a8c8d5ad82e24ebeab413301cc60) has been flagged by 37 scanners:

Scanner Software	Version	Result
AhnLab-V3	2015.01.04.00	PUP/Win32.CrossRider
Antiy-AVL	1.0.0.1	RiskWare[WebToolbar:not-a-virus]/Win32.CrossRider
AVG	15.0.0.4253	Generic.95F
Avira	7.11.199.92	ADWARE/CrossRider.Gen4
Baidu-International	3.5.1.41473	PUA.Win32.CrossRider.bBM
Dr.Web	7.0.10.8210	Trojan.Crossrider.49260
ESET-NOD32	10960	a variant of Win32/Toolbar.CrossRider.BM
Fortinet FortiGate	5.0.999.0	Riskware/CrossRider
G Data	24	Win32.Adware.Crossrider.L
IKARUS anti.virus	T3.1.8.5.0	PUA.Toolbar.CrossRider
Kaspersky	15.0.1.10	not-a-virus:WebToolbar.Win32.CrossRider.kee
Malwarebytes	1.75.0.1	PUP.Optional.ICinema.A
McAfee	6.0.5.614	Artemis!CA55A8C8D5AD
McAfee-GW-Edition	v2014.2	Artemis
NANO AntiVirus	0.30.0.64448	Trojan.Win32.Crossrider.dlftec
Panda Antivirus	4.6.4.2	Trj/Genetic.gen
Qihoo-360	1.0.0.1015	HEUR/QVM10.1.Malware.Gen
Rising Antivirus	25.0.0.17	PE:Malware.Obscure!1.9C59
Symantec	20141.1.0.330	Adware.Crossid
Tencent	1.0.0.1	Win32.Adware.Bp-browser.Luqs
TrendMicro-HouseCall	9.700.0.1001	Suspicious_GEN.F47V1231
VIPRE Antivirus	36348	Adware.Crossid
Lavasoft Ad-Aware	12.0.163.0	Gen:Application.Heur.nz1@kOy9ECai
AVware	1.5.0.21	Crossrider (fs)
Bitdefender	7.2	Gen:Application.Heur.nz1@kOy9ECai
F-Secure	11.0.19100.45	Gen:Application.Heur.nz1@kOy9ECai
MicroWorld-eScan	12.0.250.0	Gen:Application.Heur.nz1@kOy9ECai
Sophos	4.98.0	Generic PUA DE
avast!	8.0.1489.320	Win32:Crossrider-AH [PUP]
Comodo Security	20345	Application.Win32.Plush.GRI
K7 AntiVirus	9.187.14319	Unwanted-Program ( 004b1bb21 )
K7GW	9.186.14314	Unwanted-Program ( 004b1bb21 )
F-Prot	4.7.1.166	W32/A-73a7935c!Eldorado
Clam AntiVirus	0.98.4.0	Win.Adware.Agent-14079
Emsisoft Anti-Malware	3.0.0.600	Gen:Variant.Adware.Plush.1 (B)
Zillya	2.0.0.1946	Trojan.GoogUpdate.Win32.3288
Vba32 AntiVirus	3.12.26.3	Trojan.GoogUpdate

30e4fefd-94c4-42e7-891a-1095d00be41e-11.exe (MD5: ea051c069a998f90cdf67e2276e81910) has been flagged by 47 scanners:

Scanner Software	Version	Result
Lavasoft Ad-Aware	12.0.163.0	Gen:Application.Heur.Xv1@mG@JLpaO
AhnLab-V3	2015.03.06.06	PUP/Win32.CrossRider
Antiy-AVL	1.0.0.1	GrayWare[WebToolbar:not-a-virus]/Win32.CrossRider.kti
avast!	8.0.1489.320	Win32:Crossrider-BX [PUP]
AVG	15.0.0.4299	Generic.95F
Avira	7.11.214.46	ADWARE/CrossRider.Gen7
AVware	1.5.0.21	Trojan.Win32.Generic!BT
Baidu-International	3.5.1.41473	PUA.Win32.CrossRider.BBV
Bitdefender	7.2	Gen:Application.Heur.Xv1@mG@JLpaO
Bkav FE	1.3.0.6379	W32.HfsAdware.CC58
CAT-QuickHeal	14.00	PUA.BrightCircle.OD6
Comodo Security	21311	Application.Win32.Plush.GRI
Cyren	5.4.16.7	W32/Application.XVLB-0263
Dr.Web	7.0.11.1300	Trojan.Crossrider.49258
ESET-NOD32	11279	a variant of Win32/Toolbar.CrossRider.CB potentially unwanted
Fortinet FortiGate	5.0.999.0	Riskware/CrossRider
F-Secure	11.0.19100.45	Gen:Application.Heur.Xv1@mG@JLpaO
G Data	25	Gen:Application.Heur.Xv1@mG@JLpaO
K7 AntiVirus	9.200.15179	Unwanted-Program ( 0040f9a31 )
K7GW	9.200.15177	Unwanted-Program ( 0040f9a31 )
Kaspersky	15.0.1.10	not-a-virus:WebToolbar.Win32.CrossRider.kti
Malwarebytes	1.75.0.1	PUP.Optional.ICinema.A
McAfee	6.0.5.614	Artemis!EA051C069A99
McAfee-GW-Edition	v2014.2	BehavesLike.Win32.PUP.th
MicroWorld-eScan	12.0.250.0	Gen:Application.Heur.Xv1@mG@JLpaO
NANO AntiVirus	0.30.0.296	Trojan.Win32.Crossrider.dlgwuv
Panda Antivirus	4.6.4.2	Trj/Genetic.gen
Qihoo-360	1.0.0.1015	HEUR/QVM10.1.Malware.Gen
Sophos	4.98.0	AppRider
Symantec	20141.2.0.56	Trojan.Gen
Tencent	1.0.0.1	Win32.Adware.Bp-browser.Luqs
Trend Micro	9.740.0.1012	TROJ_GEN.F0C2C00A515
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.F0C2C00A515
VIPRE Antivirus	38170	Trojan.Win32.Generic!BT
Zillya	2.0.0.2089	Adware.CrossRider.Win32.859
Agnitum Outpost	5.5.1.3	PUA.Toolbar.CrossRider!
Rising Antivirus	25.0.0.17	PE:Malware.Adwapper!6.23ED
SUPERAntiSpyware	5.6.0.1032	Adware.CrossRider/Variant
Clam AntiVirus	0.98.5.0	Win.Adware.Agent-39894
F-Prot	4.7.1.166	W32/A-6583813c!Eldorado
Jiangmin	16.0.100	AdWare/NSIS.dhh
Vba32 AntiVirus	3.12.26.3	AdWare.Adwapper
Microsoft Security Essentials	1.1.11602.0	BrowserModifier:Win32/IeEnablerCby
nProtect	2015-02-13.01	Trojan-Clicker/W32.Agent.1987032
IKARUS anti.virus	T3.1.8.5.0	PUA.Toolbar.CrossRider
Emsisoft Anti-Malware	3.0.0.600	Gen:Variant.Adware.Graftor.171733 (B)
ALYac	1.0.1.4	Gen:Variant.Adware.Graftor.171733

2170c3ed-5ded-4f8e-8b6b-5f470186e1b7-7.exe (MD5: b1de0ed79923f96d6836d75f69e46438) has been flagged by 39 scanners:

Scanner Software	Version	Result
Antiy-AVL	1.0.0.1	GrayWare[AdWare:not-a-virus]/NSIS.Adwapper
avast!	8.0.1489.320	Win32:Crossrider-AI [PUP]
AVG	15.0.0.4189	Morgan.7D2
Avira	7.11.183.186	ADWARE/CrossRider.Gen
AVware	1.5.0.21	Crossrider (fs)
Baidu-International	3.5.1.41473	PUA.Win32.CrossRider.bAY
CAT-QuickHeal	14.00	AdWare.NSIS.g5 (Not a Virus)
Dr.Web	7.0.10.8210	Trojan.Crossrider.36570
ESET-NOD32	10690	a variant of Win32/Toolbar.CrossRider.AY
Fortinet FortiGate	5.0.999.0	Adware/Adwapper
F-Prot	4.7.1.166	W32/A-1a27c920!Eldorado
G Data	24	Win32.Adware.Crossrider.R
K7 AntiVirus	9.185.13943	Unwanted-Program ( 004afade1 )
K7GW	9.185.13943	Unwanted-Program ( 004afade1 )
Kaspersky	12.0.0.1225	not-a-virus:AdWare.NSIS.Adwapper.cd
Malwarebytes	1.75.0.1	PUP.Optional.ICinema.A
McAfee	6.0.5.614	Artemis!B1DE0ED79923
McAfee-GW-Edition	v2014.2	BehavesLike.Win32.BadFile.th
NANO AntiVirus	0.28.6.62995	Trojan.Win32.Crossrider.dgzqor
Qihoo-360	1.0.0.1015	HEUR/QVM10.1.Malware.Gen
Sophos	4.98.0	Generic PUA AP
Symantec	20141.1.0.330	Trojan.Gen
Tencent	1.0.0.1	Nsis.Adware.Adwapper.Pfte
TrendMicro-HouseCall	9.700.0.1001	Suspicious_GEN.F47V1106
Vba32 AntiVirus	3.12.26.3	AdWare.Adwapper
VIPRE Antivirus	34616	Crossrider (fs)
Zillya	2.0.0.1977	Adware.Adwapper.Win32.688
Lavasoft Ad-Aware	12.0.163.0	Gen:Application.Heur.hv1@mqxZ12kO
Bitdefender	7.2	Gen:Application.Heur.hv1@mqxZ12kO
F-Secure	11.0.19100.45	Gen:Application.Heur.hv1@mqxZ12kO
IKARUS anti.virus	T3.1.8.5.0	PUA.Toolbar.CrossRider
MicroWorld-eScan	12.0.250.0	Gen:Application.Heur.hv1@mqxZ12kO
Panda Antivirus	4.6.4.2	Generic Suspicious
AhnLab-V3	2015.01.04.00	PUP/Win32.CrossRider
ALYac	1.0.1.4	Gen:Variant.Adware.Graftor.171733
Emsisoft Anti-Malware	3.0.0.600	Gen:Variant.Adware.Graftor.171733 (B)
Comodo Security	20210	Application.Win32.Plush.GRI
Rising Antivirus	25.0.0.17	PE:Malware.Obscure!1.9C59
Clam AntiVirus	0.98.4.0	Win.Adware.Agent-14079

2170c3ed-5ded-4f8e-8b6b-5f470186e1b7-6.exe (MD5: 1650aea6a4e8dc8f0f7517165453a501) has been flagged by 39 scanners:

Scanner Software	Version	Result
AhnLab-V3	2014.11.08.00	PUP/Win32.CrossRider
Antiy-AVL	1.0.0.1	GrayWare[AdWare:not-a-virus]/NSIS.Adwapper
avast!	8.0.1489.320	Win32:Crossrider-AI [PUP]
AVG	15.0.0.4189	Morgan.7D2
Avira	7.11.183.186	ADWARE/CrossRider.Gen4
AVware	1.5.0.21	Crossrider (fs)
Baidu-International	3.5.1.41473	PUA.Win32.CrossRider.bAY
Clam AntiVirus	0.98.4.0	Win.Adware.Crossrider-65
Comodo Security	20024	ApplicUnwnt
ESET-NOD32	10690	a variant of Win32/Toolbar.CrossRider.AY
Fortinet FortiGate	5.0.999.0	Adware/Adwapper
F-Prot	4.7.1.166	W32/A-865d81b8!Eldorado
G Data	24	Win32.Adware.Crossrider.R
K7 AntiVirus	9.185.13943	Unwanted-Program ( 004afade1 )
K7GW	9.185.13943	Unwanted-Program ( 004afade1 )
Kaspersky	12.0.0.1225	not-a-virus:AdWare.NSIS.Adwapper.cd
Malwarebytes	1.75.0.1	PUP.Optional.ICinema.A
McAfee	6.0.5.614	Artemis!1650AEA6A4E8
McAfee-GW-Edition	v2014.2	BehavesLike.Win32.BadFile.th
Qihoo-360	1.0.0.1015	Win32/Virus.Adware.de5
Sophos	4.98.0	Generic PUA LN
Symantec	20141.1.0.330	Trojan.Gen.2
Tencent	1.0.0.1	Nsis.Adware.Adwapper.Dxcy
TrendMicro-HouseCall	9.700.0.1001	Suspicious_GEN.F47V1106
Vba32 AntiVirus	3.12.26.3	AdWare.Adwapper
VIPRE Antivirus	34616	Crossrider (fs)
Zillya	2.0.0.1977	Adware.Adwapper.Win32.683
CAT-QuickHeal	14.00	AdWare.NSIS.g5 (Not a Virus)
Dr.Web	7.0.10.8210	Trojan.Crossrider.36570
NANO AntiVirus	0.28.6.62995	Trojan.Win32.Crossrider.dgzqor
Lavasoft Ad-Aware	12.0.163.0	Gen:Application.Heur.hv1@mqxZ12kO
Bitdefender	7.2	Gen:Application.Heur.hv1@mqxZ12kO
F-Secure	11.0.19100.45	Gen:Application.Heur.hv1@mqxZ12kO
IKARUS anti.virus	T3.1.8.5.0	PUA.Toolbar.CrossRider
MicroWorld-eScan	12.0.250.0	Gen:Application.Heur.hv1@mqxZ12kO
Panda Antivirus	4.6.4.2	Generic Suspicious
ALYac	1.0.1.4	Gen:Variant.Adware.Graftor.171733
Emsisoft Anti-Malware	3.0.0.600	Gen:Variant.Adware.Graftor.171733 (B)
Rising Antivirus	25.0.0.17	PE:Malware.Obscure!1.9C59

Software Behaviors

Scheduled tasks:: 30e4fefd-94c4-42e7-891a-1095d00be41e-5.exe is scheduled as a task named '30e4fefd-94c4-42e7-891a-1095d00be41e-5_user'.

Startup Entries

Startup tasks:: 378cb8d1-c404-45a3-a934-6b2413fae652-7.exe is automatically launched at startup through a scheduled task named 0150c948-3971-4b08-bbe1-3a800301f282-1.

378cb8d1-c404-45a3-a934-6b2413fae652-2.exe is automatically launched at startup through a scheduled task named 378cb8d1-c404-45a3-a934-6b2413fae652-2.

0150c948-3971-4b08-bbe1-3a800301f282-2.exe is automatically launched at startup through a scheduled task named 0150c948-3971-4b08-bbe1-3a800301f282-2.

I - Cinema-codedownloader.exe is automatically launched at startup through a scheduled task named a4992cdc-a0e9-4b1e-b435-5298c827136f-7.

a4992cdc-a0e9-4b1e-b435-5298c827136f-6.exe is automatically launched at startup through a scheduled task named a4992cdc-a0e9-4b1e-b435-5298c827136f-6.

a4992cdc-a0e9-4b1e-b435-5298c827136f-4.exe is automatically launched at startup through a scheduled task named a4992cdc-a0e9-4b1e-b435-5298c827136f-4.

Software Details

URL:: –
Support:: –
Installation path:: C:\Program Files\i - cinema
Uninstaller:: C:\Program Files\Common Files\ClaraUpdater\ClaraUpdater.exe /UNINSTALL=3c91fcc2-ce59-42b3-b901-f68079520898
Size:: 15.00 MB
Language:: English

I - Cinema Executable Details

Primary executable:: utils.exe
Name:: I - Cinema
Path:: C:\Program Files\i - cinema\utils.exe
MD5:: e8faaa8fa19605bfcadf0f0df2826b28
SHA-1:: –
SHA-256:: –

Files installed by I - Cinema

File Type	Filename	MD5
EXE	uninstall.exe	ab91a7350a5fddcdf0a7b0c60e8e4e71
EXE	utils.exe Adware	e8faaa8fa19605bfcadf0f0df2826b28
EXE	30e4fefd-94c4-42e7-891a-1095d00be41e-2.exe Malware	ca55a8c8d5ad82e24ebeab413301cc60
EXE	30e4fefd-94c4-42e7-891a-1095d00be41e-11.exe Adware	ea051c069a998f90cdf67e2276e81910
EXE	24f005b4-90d0-4d71-828a-5744674eac00-7.exe	811219bf6664c8fcbae054812e93dfe1
EXE	24f005b4-90d0-4d71-828a-5744674eac00-64.exe	886378c43fbbcdacdef2a63eefe3752c
EXE	24f005b4-90d0-4d71-828a-5744674eac00-6.exe	e633dfd558c1989a019bd86a6035452d
EXE	24f005b4-90d0-4d71-828a-5744674eac00-11.exe	70a6026d0a82c3d608182ba54fa98536
EXE	24f005b4-90d0-4d71-828a-5744674eac00-10.exe	a23dc295c8959ab6f4f0365924eaa25c
EXE	2222aa8c-1e26-416c-9bcd-760d1b299ce4-64.exe	0efc9fdb207e5284917dd446224fea7b

Repair I - Cinema

Having issues with I - Cinema?

We recommend Fortect System Repair to automatically fix these issues

Download Now

Popularity

12% of users keep I - Cinema installed

Overall Rating

Bad

Known Versions (10)

1.36.01.22: 29.02%
1.36.01.08: 17.41%
1.35.12.18: 20.98%
1.35.12.16: 0.45%
1.35.12.8: 5.80%
1.35.11.26: 12.05%
1.35.9.29: 10.71%
1.35.9.16: 2.68%
1.35.3.9: 0.45%
1.34.7.29: 0.45%

Geography Distribution