What is LyricsBuddy-1?

LyricsBuddy-1 is software application developed by CrossLyrics. It is most commonly found on computers running Windows 7 with nearly 63.24% of installations running this operating system. LyricsBuddy-1's installer is typically 7.00 MB in size and installs around 15 files. The most common release is 1.28.153.3 with 76.47% of all installations currently using this version.

LyricsBuddy-1 is most popular in the United States with 20.71% of installations residing in this country.

About LyricsBuddy-1?

LyricsBuddy-1 is a web browser extension that is designed to control the user's browser by redirecting web searches and injecting advertising. It operates as a Browser Helper Object in Internet Explorer and conducts various behaviors such as hijacking advertising on unrelated websites and injecting its own advertising in the form of contextual link ads, banner ads, popups, and pop-overs, including the hijacking of known ad serving sites. This malware is commonly bundled with unwanted third-party applications and spread through web browser exploits. While it does come with an uninstaller and is listed in the Windows Add/Remove Programs, fully removing it can be quite challenging and may require the use of an anti-malware product.

Multiple virus scanners have detected malware in LyricsBuddy-1.

utils.exe (MD5: ea90ab30cd0b9865fbfe53ded4597475) has been flagged by 31 scanners:

Scanner Software	Version	Result
Baidu-International	4.0.3.131024	Trojan.Win32.Packed.ScrambleWrapper.C
Bkav FE	1.3.0.4246	HW32.CDB
ESET-NOD32	7.8850	Win32/Packed.ScrambleWrapper.C
Kingsoft AntiVirus	331020.49267	Win32.Troj.Generic.a.(kcloud)
Malwarebytes	v2013.10.24.11	PUP.Optional.Lyrics.A
TrendMicro-HouseCall	7.2.297	TROJ_GEN.F47V0825
VIPRE Antivirus	21878	Adware.AddLyrics (fs)
Lavasoft Ad-Aware	12.0.163.0	Adware.Generic.608156
Antiy-AVL	2.0.3.7	AdWare/Win32.Lyckriks
avast!	8.0.1489.320	Win32:AddLyrics-AU [Adw]
AVG	13.0.0.3169	Generic5.AIKL
Bitdefender	7.2.5028.0	Adware.Generic.608156
CAT-QuickHeal	12.00	Adware.AddLyrics (Not a Virus)
Comodo Security	17545	UnclassifiedMalware
Dr.Web		Trojan.Crossrider.7
Emsisoft Anti-Malware	3.0.0.596	Adware.Generic.608156 (B)
Fortinet FortiGate	5.1.147.0	Adware/Lyckriks
G Data	22	Adware.Generic.608156
K7 AntiVirus	9.174.10720	Riskware ( 0040eff71 )
K7GW	9.174.10720	Riskware ( 0040eff71 )
Kaspersky	12.0.0.1221	not-a-virus:AdWare.Win32.Lyckriks.lb
McAfee	5.600.0.1067	Artemis!629DC76B3338
McAfee-GW-Edition	2013	Artemis!629DC76B3338
Microsoft Security Essentials	1.10201	Adware:Win32/AddLyrics
MicroWorld-eScan	12.0.250.0	Adware.Generic.608156
NANO AntiVirus	0.28.0.57029	Riskware.Win32.Lyckriks.cqrozn
Sophos	4.96.0	AppRider
Symantec	20131.1.5.61	Adware.Crossid
Trend Micro	9.740.0.1012	TROJ_SPNR.0BKD13
Vba32 AntiVirus	3.12.24.3	AdWare.Lyckriks
Jiangmin	16.0.100	AdWare/Lyckriks.dm

LyricsBuddy-1-updater.exe (MD5: 7cc630196deec8df90af4da5839cae5f) has been flagged by 8 scanners:

Scanner Software	Version	Result
ESET-NOD32	8852	probably a variant of Win32/Toolbar.CrossRider.I
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.Generic.a.(kcloud)
Malwarebytes	1.75.0.1	PUP.Optional.Lyrics.A
McAfee	5.600.0.1067	Artemis!7CC630196DEE
McAfee-GW-Edition	2013	Artemis!7CC630196DEE
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.F47V0927
VIPRE Antivirus	21890	Crossrider (fs)
avast!	8.0.1489.320	Win32:AddLyrics-AV [Adw]

LyricsBuddy-1-firefoxinstaller.exe (MD5: c6ae7182eafe044810f40bb0cc7ebdee) has been flagged by 20 scanners:

Scanner Software	Version	Result
Baidu-International	3.5.1.41473	HackTool.Win32.CrossRider.J
Bkav FE	1.3.0.4613	W32.Clodc54.Trojan.95ab
Comodo Security	17546	UnclassifiedMalware
ESET-NOD32	9245	a variant of Win32/Toolbar.CrossRider.J
K7 AntiVirus	9.174.10720	Trojan ( 0048e2ed1 )
K7GW	9.174.10720	Trojan ( 0048e2ed1 )
Malwarebytes	1.75.0.1	PUP.Optional.Lyrics.A
McAfee	5.600.0.1067	PUP-FEJ!C6AE7182EAFE
McAfee-GW-Edition	2013	PUP-FEJ!C6AE7182EAFE
Sophos	4.96.0	Generic PUA BJ
Symantec	20131.1.5.61	Adware.FindLyrics
Trend Micro	9.740.0.1012	TROJ_SPNR.3AKH13
TrendMicro-HouseCall	9.700.0.1001	TROJ_SPNR.3AKH13
VIPRE Antivirus	25042	Crossrider (fs)
Antiy-AVL	2.0.3.7	AdWare/Win32.Lyckriks
AVG	13.0.0.3169	Generic5.AIIQ
Jiangmin	16.0.100	AdWare/Lyckriks.dm
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.Generic.a.(kcloud)
Vba32 AntiVirus	3.12.24.3	AdWare.Lyckriks
avast!	8.0.1489.320	Win32:AddLyrics-AV [Adw]

LyricsBuddy-1-enabler.exe (MD5: 651f7cc04fd96d014c76c91f03ee26f7) has been flagged by 21 scanners:

Scanner Software	Version	Result
avast!	8.0.1489.320	Win32:AddLyrics-AV [Adw]
AVG	13.0.0.3169	Generic5.AJKB
Baidu-International	3.5.1.41473	Trojan.Win32.Toolbar.ay
ESET-NOD32	9028	a variant of Win32/Toolbar.CrossRider.J
K7 AntiVirus	9.173.10137	Riskware
K7GW	12.7.0.14	Riskware
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.Generic.a.(kcloud)
Malwarebytes	1.75.0.1	PUP.Optional.Lyrics.A
McAfee	5.600.0.1067	PUP-FEJ!651F7CC04FD9
McAfee-GW-Edition	2013	PUP-FEJ!651F7CC04FD9
Microsoft Security Essentials	1.10003	Adware:Win32/AddLyrics
Sophos	4.94.0	AppRider
Symantec	20131.1.5.61	Adware.BL
Trend Micro	9.740.0.1012	TROJ_GEN.R0CBC0SJT13
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.R0CBC0SJT13
VIPRE Antivirus	23230	Crossrider (fs)
Bkav FE	1.3.0.4613	W32.Clodc54.Trojan.95ab
Comodo Security	17546	UnclassifiedMalware
Antiy-AVL	2.0.3.7	AdWare/Win32.Lyckriks
Jiangmin	16.0.100	AdWare/Lyckriks.dm
Vba32 AntiVirus	3.12.24.3	AdWare.Lyckriks

LyricsBuddy-1-codedownloader.exe (MD5: b09677983317677c484e5d1a4ae65e66) has been flagged by 6 scanners:

Scanner Software	Version	Result
ESET-NOD32	8844	a variant of Win32/Toolbar.CrossRider.I
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.Generic.a.(kcloud)
Malwarebytes	1.75.0.1	PUP.Optional.Lyrics.A
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.R0C1H0AIE13
VIPRE Antivirus	21818	Crossrider (fs)
avast!	8.0.1489.320	Win32:AddLyrics-AV [Adw]

Startup Entries

Startup tasks:

LyricsBuddy-1-enabler.exe is automatically launched at startup through a scheduled task named LyricsBuddy-1-enabler.
LyricsBuddy-1-firefoxinstaller.exe is automatically launched at startup through a scheduled task named LyricsBuddy-1-firefoxinstaller.
LyricsBuddy-1-updater.exe is automatically launched at startup through a scheduled task named LyricsBuddy-1-updater.
LyricsBuddy-1-codedownloader.exe is automatically launched at startup through a scheduled task named LyricsBuddy-1-codedownloader.
LyricsBuddy-1-chromeinstaller.exe is automatically launched at startup through a scheduled task named LyricsBuddy-1-chromeinstaller.

Software Details

URL:

–

Support:

–

Installation path:

C:\Program Files\lyricsbuddy-1

Uninstaller:

C:\Program Files\LyricsBuddy-1\Uninstall.exe /fromcontrolpanel=1

Size:

7.00 MB

Language:

English

LyricsBuddy-1 Executable Details

Primary executable:

utils.exe

Name:

LyricsBuddy-1

Path:

C:\Program Files\lyricsbuddy-1\utils.exe

MD5:

ea90ab30cd0b9865fbfe53ded4597475

SHA-1:

–

SHA-256:

–

File Type

Filename

MD5

EXE

uninstall.exe

756f238d9d267a4a550f792f5522c68e

EXE

utils.exe

Adware

ea90ab30cd0b9865fbfe53ded4597475

EXE

LyricsBuddy-1-updater.exe

Malware

7cc630196deec8df90af4da5839cae5f

EXE

LyricsBuddy-1-firefoxinstaller.exe

Malware

c6ae7182eafe044810f40bb0cc7ebdee

EXE

LyricsBuddy-1-enabler.exe

Adware

651f7cc04fd96d014c76c91f03ee26f7

EXE

LyricsBuddy-1-codedownloader.exe

Malware

b09677983317677c484e5d1a4ae65e66

EXE

LyricsBuddy-1-chromeinstaller.exe

Malware

fb93c1238f40356c5d92efe64ac515f3

EXE

LyricsBuddy-1-buttonutil64.exe

344e05fd9794192ab4cb14db8365602d

EXE

LyricsBuddy-1-buttonutil.exe

7bfa95f433e95aa69f7daff894ce223b

DLL

LyricsBuddy-1-bho64.dll

Malware

bed70d00c92f02c697eca8d005fa11c9

File Type	Filename	MD5
EXE	uninstall.exe	756f238d9d267a4a550f792f5522c68e
EXE	utils.exe Adware	ea90ab30cd0b9865fbfe53ded4597475
EXE	LyricsBuddy-1-updater.exe Malware	7cc630196deec8df90af4da5839cae5f
EXE	LyricsBuddy-1-firefoxinstaller.exe Malware	c6ae7182eafe044810f40bb0cc7ebdee
EXE	LyricsBuddy-1-enabler.exe Adware	651f7cc04fd96d014c76c91f03ee26f7
EXE	LyricsBuddy-1-codedownloader.exe Malware	b09677983317677c484e5d1a4ae65e66
EXE	LyricsBuddy-1-chromeinstaller.exe Malware	fb93c1238f40356c5d92efe64ac515f3
EXE	LyricsBuddy-1-buttonutil64.exe	344e05fd9794192ab4cb14db8365602d
EXE	LyricsBuddy-1-buttonutil.exe	7bfa95f433e95aa69f7daff894ce223b
DLL	LyricsBuddy-1-bho64.dll Malware	bed70d00c92f02c697eca8d005fa11c9

LyricsBuddy-1

What is LyricsBuddy-1?

About LyricsBuddy-1?

Multiple virus scanners have detected malware in LyricsBuddy-1.

Startup Entries

Software Details

LyricsBuddy-1 Executable Details