Malicious Youtube Browser Add-ons: YXH-youtube_player.crx and YXH-youtube_player.xpi

YXH-youtube_player.xpi and YXH-youtube_player.crx are fake YouTube plugins that spread via social network-based attacks. Although the full extent of their capabilities hasn't yet been analyzed, YXH-youtube_player.xpi and YXH-youtube_player.crx are capable of being used to hijack your web browser and redirect it to other websites. This, in turn, can be used to conduct DDoS crimes, steal information in phishing attacks or expose you to the installation of other PC threats. SpywareRemove.com malware researchers recommend that you familiarize yourself with common social engineering attacks for fake YouTube plugins to avoid them, and remove YXH-youtube_player.xpi and YXH-youtube_player.crx, if required, by using anti-malware software of good repute.

A Pair of YouTube Players That Deliver Browser Redirects Instead of Movies

YXH-youtube_player.xpi and YXH-youtube_player.crx are promoted on fake movie player sites in the form of YouTube updates, but even though these sites will automatically-request that you install them, you should never download or run either YXH-youtube_player.xpi or YXH-youtube_player.crx. The installation of either of these PC threats will merely result in your web browser being hijacked and redirected to malicious websites. However, SpywareRemove.com malware experts have noted that YXH-youtube_player.xpi and YXH-youtube_player.crx are especially-crafted extensions for specific web browsers - YXH-youtube_player.xpi for Firefox and YXH-youtube_player.crx for Chrome. Other web browsers may be unaffected by them, although chances are high that equivalents for each popular brand of browser are also in propagation.

Dangers that SpywareRemove.com malware researchers associate with fake YouTube plugins redirects include, but aren't limited to:

• Theft of personal information (social security numbers, e-mail addresses, credit card numbers, etc) by phishing attacks. Be careful to avoid inputting sensitive information on unusual sites or websites that display incorrect URLs.
• Poor PC performance due to excessive resources being consumed for clickjacking or DDoS attacks.
• Most notably, contact with other types of PC threats that YXH-youtube_player.xpi and YXH-youtube_player.crx sites may install without your consent.

Spying Out the Download That Conceals Fake YouTube Plugin Links

YXH-youtube_player.xpi and YXH-youtube_player.crx proliferate via social engineering attacks that use Facebook and Facebook-based features (such as its Wall and the Facebook Comments Box). Compromised accounts will post links with obfuscated URLs that, when clicked, redirect victims to a fake YouTube site that hosts YXH-youtube_player.xpi and YXH-youtube_player.crx downloads. The surest method of protecting yourself from YXH-youtube_player.xpi and YXH-youtube_player.crx is to avoid interaction with links that obscure their URLs.

However, if this solution is impractical, SpywareRemove.com malware experts can also recommend strong security settings that disable drive-by-downloads, avoidance of downloads from illegitimate websites and even possession of anti-malware software that can detect YXH-youtube_player.xpi and YXH-youtube_player.crx attacks. If your PC has been infected by either YXH-youtube_player.xpi or YXH-youtube_player.crx, you should also check your Facebook account to be certain that it hasn't been compromised to spread YXH-youtube_player.xpi and YXH-youtube_player.crx links throughout the web.