What is LyricsMonkey-1?

LyricsMonkey-1 is software application developed by CrossLyrics. It is most commonly found on computers running Windows 7 with nearly 58.70% of installations running this operating system. LyricsMonkey-1's installer is typically 8.00 MB in size and installs around 15 files. The most common release is 1.28.153.3 with 81.16% of all installations currently using this version.

LyricsMonkey-1 is most popular in the United States with 68.86% of installations residing in this country.

About LyricsMonkey-1?

LyricsMonkey-1 is a web browser extension that has been found to engage in malicious behavior. It claims to display lyrics while watching YouTube videos, but in reality, it takes control of the user's browser to redirect web searches and inject advertising. It operates as a Browser Helper Object in Internet Explorer and injects its own advertising in various forms such as contextual link ads, banner ads, and popups. This malware is often bundled with unwanted third party applications and distributed through web browser exploits. While an uninstaller is provided and the program is listed in the Windows Add/Remove Programs, completely removing LyricsMonkey-1 may be challenging and could require the use of anti-malware software.

Multiple virus scanners have detected malware in LyricsMonkey-1.

utils.exe (MD5: 5a14a3bbd439d13f202408bb614ae520) has been flagged by 29 scanners:

Scanner Software	Version	Result
Baidu-International	4.0.3.131024	Trojan.Win32.Packed.ScrambleWrapper.C
Bkav FE	1.3.0.4246	HW32.CDB
ESET-NOD32	7.8809	Win32/Packed.ScrambleWrapper.C
TrendMicro-HouseCall	7.2.297	TROJ_GEN.F47V0825
VIPRE Antivirus	21552	Adware.AddLyrics (fs)
Lavasoft Ad-Aware	12.0.163.0	Adware.Generic.633271
Antiy-AVL	2.0.3.7	AdWare/Win32.Lyckriks
AVG	13.0.0.3169	Generic5.AIKL
Bitdefender	7.2.5028.0	Adware.Generic.633271
Dr.Web		Trojan.Crossrider.7
Emsisoft Anti-Malware	3.0.0.596	Adware.Generic.633271 (B)
Fortinet FortiGate	5.1.147.0	Adware/Lyckriks
G Data	22	Adware.Generic.633271
K7 AntiVirus	9.174.10689	Riskware ( 0040eff71 )
K7GW	9.174.10689	Riskware ( 0040eff71 )
Kaspersky	12.0.0.1221	not-a-virus:AdWare.Win32.Lyckriks.lb
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.Generic.a.(kcloud)
Malwarebytes	1.75.0.1	PUP.Optional.Lyrics.A
McAfee	5.600.0.1067	Artemis!55A5C22D6AFB
McAfee-GW-Edition	2013	Artemis!55A5C22D6AFB
Microsoft Security Essentials	1.10201	Adware:Win32/AddLyrics
MicroWorld-eScan	12.0.250.0	Adware.Generic.633271
NANO AntiVirus	0.28.0.57029	Trojan.Win32.Crossrider.cjzkzc
Sophos	4.96.0	Generic PUA CI
Symantec	20131.1.5.61	Adware.Crossid
Trend Micro	9.740.0.1012	TROJ_GEN.R0CBC0DKH13
Vba32 AntiVirus	3.12.24.3	AdWare.Lyckriks
Comodo Security	17533	UnclassifiedMalware
Panda Antivirus	10.0.3.5	Suspicious file

LyricsMonkey-1-updater.exe (MD5: c0939e0e40de4c54819498eddbd9267d) has been flagged by 6 scanners:

Scanner Software	Version	Result
ESET-NOD32	8836	probably a variant of Win32/Toolbar.CrossRider.I
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.Generic.a.(kcloud)
Malwarebytes	1.75.0.1	PUP.Optional.Lyrics.A
Symantec	20131.1.5.61	WS.Reputation.1
VIPRE Antivirus	21774	Crossrider (fs)
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.F47V0924

LyricsMonkey-1-firefoxinstaller.exe (MD5: 8d9f3643cc05ad8845745f2b71237f90) has been flagged by 6 scanners:

Scanner Software	Version	Result
Malwarebytes	1.75.0.1	PUP.Optional.Lyrics.A
Symantec	20131.1.5.61	WS.Reputation.1
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.F47V0924
VIPRE Antivirus	21810	Crossrider (fs)
ESET-NOD32	8836	a variant of Win32/Toolbar.CrossRider.I
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.Generic.a.(kcloud)

LyricsMonkey-1-enabler.exe (MD5: 9042a3341297505389511960ff845879) has been flagged by 18 scanners:

Scanner Software	Version	Result
AVG	13.0.0.3169	Generic5.AJKA
Baidu-International	3.5.1.41473	HackTool.Win32.CrossRider.J
Bkav FE	1.3.0.4613	W32.Clod0e6.Trojan.c944
Comodo Security	17533	UnclassifiedMalware
Dr.Web		Trojan.Crossrider.27
ESET-NOD32	9239	a variant of Win32/Toolbar.CrossRider.J
Fortinet FortiGate	5.1.147.0	Riskware/PUP_FEJ
K7 AntiVirus	9.174.10689	Trojan ( 0048c68d1 )
K7GW	9.174.10689	Trojan ( 0048c68d1 )
Malwarebytes	1.75.0.1	PUP.Optional.Lyrics.A
McAfee	5.600.0.1067	PUP-FEJ!9042A3341297
McAfee-GW-Edition	2013	PUP-FEJ!9042A3341297
Panda Antivirus	10.0.3.5	Suspicious file
Sophos	4.96.0	Generic PUA EJ
VIPRE Antivirus	25006	Crossrider (fs)
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.Generic.a.(kcloud)
Symantec	20131.1.5.61	Adware.FindLyrics
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.R0C1H05JL13

LyricsMonkey-1-codedownloader.exe (MD5: 9bd37e7e753a08600e8d7ff2d0450ce1) has been flagged by 5 scanners:

Scanner Software	Version	Result
ESET-NOD32	8836	a variant of Win32/Toolbar.CrossRider.I
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.Generic.a.(kcloud)
Malwarebytes	1.75.0.1	PUP.Optional.Lyrics.A
VIPRE Antivirus	21774	Crossrider (fs)
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.F47V0918

Startup Entries

Startup tasks:

LyricsMonkey-1-enabler.exe is automatically launched at startup through a scheduled task named LyricsMonkey-1-enabler.
LyricsMonkey-1-firefoxinstaller.exe is automatically launched at startup through a scheduled task named LyricsMonkey-1-firefoxinstaller.
LyricsMonkey-1-updater.exe is automatically launched at startup through a scheduled task named LyricsMonkey-1-updater.
LyricsMonkey-1-codedownloader.exe is automatically launched at startup through a scheduled task named LyricsMonkey-1-codedownloader.
LyricsMonkey-1-chromeinstaller.exe is automatically launched at startup through a scheduled task named LyricsMonkey-1-chromeinstaller.

Software Details

URL:

–

Support:

–

Installation path:

C:\Program Files\lyricsmonkey-1

Uninstaller:

C:\Program Files\LyricsMonkey-1\Uninstall.exe /fromcontrolpanel=1

Size:

8.00 MB

Language:

English

LyricsMonkey-1 Executable Details

Primary executable:

utils.exe

Name:

LyricsMonkey-1

Path:

C:\Program Files\lyricsmonkey-1\utils.exe

MD5:

5a14a3bbd439d13f202408bb614ae520

SHA-1:

–

SHA-256:

–

File Type

Filename

MD5

EXE

uninstall.exe

ab91a7350a5fddcdf0a7b0c60e8e4e71

EXE

utils.exe

Malware

5a14a3bbd439d13f202408bb614ae520

DLL

LyricsMonkey-1-buttonutil64.dll

fb6e47e6bae4cdd67c64b066d91bc892

EXE

LyricsMonkey-1-updater.exe

Malware

c0939e0e40de4c54819498eddbd9267d

EXE

LyricsMonkey-1-firefoxinstaller.exe

Malware

8d9f3643cc05ad8845745f2b71237f90

EXE

LyricsMonkey-1-enabler.exe

Malware

9042a3341297505389511960ff845879

EXE

LyricsMonkey-1-codedownloader.exe

Malware

9bd37e7e753a08600e8d7ff2d0450ce1

EXE

LyricsMonkey-1-chromeinstaller.exe

Malware

317e130b95fc421b8acc217aa60eec75

EXE

LyricsMonkey-1-buttonutil64.exe

c83fa57df58f50406e0cf6b5f3135fcd

EXE

LyricsMonkey-1-buttonutil.exe

32531dbd0d27fab8427dcfabc8e253a3

File Type	Filename	MD5
EXE	uninstall.exe	ab91a7350a5fddcdf0a7b0c60e8e4e71
EXE	utils.exe Malware	5a14a3bbd439d13f202408bb614ae520
DLL	LyricsMonkey-1-buttonutil64.dll	fb6e47e6bae4cdd67c64b066d91bc892
EXE	LyricsMonkey-1-updater.exe Malware	c0939e0e40de4c54819498eddbd9267d
EXE	LyricsMonkey-1-firefoxinstaller.exe Malware	8d9f3643cc05ad8845745f2b71237f90
EXE	LyricsMonkey-1-enabler.exe Malware	9042a3341297505389511960ff845879
EXE	LyricsMonkey-1-codedownloader.exe Malware	9bd37e7e753a08600e8d7ff2d0450ce1
EXE	LyricsMonkey-1-chromeinstaller.exe Malware	317e130b95fc421b8acc217aa60eec75
EXE	LyricsMonkey-1-buttonutil64.exe	c83fa57df58f50406e0cf6b5f3135fcd
EXE	LyricsMonkey-1-buttonutil.exe	32531dbd0d27fab8427dcfabc8e253a3

LyricsMonkey-1

What is LyricsMonkey-1?

About LyricsMonkey-1?

Multiple virus scanners have detected malware in LyricsMonkey-1.

Startup Entries

Software Details

LyricsMonkey-1 Executable Details