MPlayerPlusvideo4

MPlayerPlusvideo4

Known Malware

by BrightCircle Investments Limited

What is MPlayerPlusvideo4?

MPlayerPlusvideo4 is software application developed by BrightCircle Investments Limited. It is most commonly found on computers running Windows 10 with nearly 52.94% of installations running this operating system. MPlayerPlusvideo4's installer is typically 6.00 MB in size and installs around 44 files.

MPlayerPlusvideo4 is most popular in the United States with 50.00% of installations residing in this country.

MPlayerPlusvideo4 adds 2 scheduled tasks to the Windows Task Scheduler launching the program at randomly scheduled times.

Multiple virus scanners have detected malware in MPlayerPlusvideo4.

utils.exe (MD5: ef3037e9cd04e09b301e67bfa85cf824) has been flagged by 46 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Application.Parj.1
Agnitum Outpost Riskware.VMDetector
AhnLab-V3 Win-PUP/CrossRider
avast! NSIS:Crossrider-FD [PUP]
Avira ADWARE/CrossRider.96256.3
AVware Trojan.Win32.Generic!BT
Baidu-International Adware.Win32.CrossAd.CF
Bitdefender Gen:Application.Parj.1
Dr.Web Trojan.Crossrider1.6164
ESET-NOD32 Win32/Packed.VMDetector.I potentially unwanted
Fortinet FortiGate Riskware/CrossRider
F-Secure Gen:Application.Parj.1
G Data Gen:Application.Parj
K7 AntiVirus Trojan
K7GW Trojan ( 004af4411 )
Kaspersky not-a-virus:AdWare.Win32.Agent
Malwarebytes PUP.Optional.CrossRider.A
McAfee Artemis!EF3037E9CD04
McAfee-GW-Edition BehavesLike.Win32.Dropper.vc
MicroWorld-eScan Gen:Application.Parj.1
NANO AntiVirus Trojan.Win32.Crossrider1.dnzllt
Panda Antivirus Trj/Genetic.gen
Qihoo-360 HEUR/QVM20.1.Malware.Gen
Rising Antivirus PE:Malware.Obscure!1.9C59
Sophos Generic PUA FN
Symantec Trojan.Asprox.B
Tencent Win32.Adware.Agent.Ambw
Trend Micro TROJ_GEN.R021C0OBE15
TrendMicro-HouseCall TROJ_GEN.R021C0OBE15
VIPRE Antivirus Trojan.Win32.Generic!BT
Zillya Adware.Agent.Win32.53041
Antiy-AVL GrayWare[AdWare:not-a-virus]/NSIS.Adwapper.ec
Arcabit Application.Heur.EFF680
AVG Generic.520
Bkav FE W32.HfsAdware.1762
CAT-QuickHeal PUA.BrightCircle.OD6
Comodo Security Application.Win32.CrossRider.CK
Cyren W32/S-dbad4651!Eldorado
F-Prot W32/S-dbad4651!Eldorado
Jiangmin AdWare/NSIS.exq
SUPERAntiSpyware Adware.CrossRider/Variant
Vba32 AntiVirus AdWare.Adwapper
Microsoft Security Essentials BrowserModifier:Win32/IeEnablerCby
ALYac Gen:Variant.Adware.Kazy.133003
Emsisoft Anti-Malware Gen:Variant.Adware.Kazy.133003 (B)
Clam AntiVirus Win.Adware.Agent-36464
MPlayerPlusvideo4-bho.dll (MD5: 2000d4796f1dca0278ac6d534ab1718a) has been flagged by 46 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Application.Heur.Ly9@m8eFGmki
Agnitum Outpost PUA.Adwapper!
AhnLab-V3 PUP/Win32.CrossRider
Antiy-AVL GrayWare[AdWare:not-a-virus]/NSIS.Adwapper.ec
Arcabit Application.Heur.EDE35D
avast! Win32:Crossrider-DD [PUP]
AVG Toolbar.Crossrider.Y
Avira ADWARE/CrossRider.Gen
AVware Crossrider (fs)
Baidu-International Adware.Win32.CrossAd.BA
Bitdefender Gen:Application.Heur.Ly9@m8eFGmki
Bkav FE W32.HfsAdware.1762
CAT-QuickHeal PUA.BrightCircle.OD6
Comodo Security ApplicUnwnt
Cyren W32/S-c19140ac!Eldorado
Dr.Web Trojan.Crossrider1.23139
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.BA potentially unwanted
Fortinet FortiGate Riskware/CrossRider
F-Prot W32/S-c19140ac!Eldorado
F-Secure Gen:Application.Heur.Ly9@m8eFGmki
G Data Gen:Application.Heur.Ly9@m8eFGmki
Jiangmin AdWare/NSIS.emz
K7 AntiVirus Trojan ( 004af5321 )
K7GW Trojan ( 004af5321 )
Kaspersky not-a-virus:AdWare.NSIS.Adwapper.ec
Malwarebytes PUP.Optional.MPlayerPlusvideo.A
McAfee Artemis!2000D4796F1D
McAfee-GW-Edition Artemis!PUP
MicroWorld-eScan Gen:Application.Heur.Ly9@m8eFGmki
NANO AntiVirus Riskware.Win32.Crossrider1.dnpqgn
Panda Antivirus Trj/Genetic.gen
Qihoo-360 Win32/Application.714
Sophos AppRider
Symantec Adware.Crossid
Tencent Trojan.Win32.Qudamah.Gen.15
Trend Micro TROJ_GEN.F0C2C00B115
TrendMicro-HouseCall TROJ_GEN.F0C2C00B115
Vba32 AntiVirus AdWare.Adwapper
VIPRE Antivirus Crossrider (fs)
Zillya Adware.CrossRider.Win32.2210
Rising Antivirus PE:Trojan.Win32.Generic.1802DD73!402840947
SUPERAntiSpyware Adware.CrossRider/Variant
ALYac Gen:Variant.Adware.Kazy.133003
Emsisoft Anti-Malware Gen:Variant.Adware.Kazy.133003 (B)
Clam AntiVirus Win.Adware.Agent-36464
Microsoft Security Essentials BrowserModifier:Win32/IeEnablerCby
8b7a339d-84f0-44ea-8bc0-c9b1f0484b15-7.exe (MD5: 8f3644e68e02885f28bcee20d73e7b71) has been flagged by 46 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Application.Heur.!u1@muwOKocO
Agnitum Outpost PUA.Adwapper!
AhnLab-V3 PUP/Win32.CrossRider
Antiy-AVL GrayWare[AdWare:not-a-virus]/NSIS.Adwapper.ec
Arcabit Application.Heur.EFF680
avast! Win32:Crossrider-DD [PUP]
AVG Generic.520
Avira ADWARE/CrossRider.Gen7
AVware Crossrider (fs)
Baidu-International Adware.Win32.CrossAd.CD
Bitdefender Gen:Application.Heur.!u1@muwOKocO
Bkav FE W32.HfsAdware.1762
CAT-QuickHeal PUA.BrightCircle.OD6
Comodo Security Application.Win32.CrossRider.CK
Cyren W32/S-dbad4651!Eldorado
Dr.Web Trojan.Crossrider1.23139
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.CD potentially unwanted
Fortinet FortiGate Riskware/CrossRider
F-Prot W32/S-dbad4651!Eldorado
F-Secure Gen:Application.Heur.!u1@muwOKocO
G Data Gen:Application.Heur.!u1@muwOKocO
Jiangmin AdWare/NSIS.exq
K7 AntiVirus Unwanted-Program ( 0040f9a31 )
K7GW Unwanted-Program ( 0040f9a31 )
Kaspersky not-a-virus:AdWare.NSIS.Adwapper.ec
Malwarebytes PUP.Optional.MPlayerPlusvideo.A
McAfee Artemis!8F3644E68E02
McAfee-GW-Edition Artemis!PUP
MicroWorld-eScan Gen:Application.Heur.!u1@muwOKocO
NANO AntiVirus Riskware.Win32.Crossrider1.dswqdo
Panda Antivirus Trj/Genetic.gen
Qihoo-360 HEUR/QVM10.1.Malware.Gen
Rising Antivirus PE:Trojan.Win32.Generic.18019407!402756615
Sophos AppRider (PUA)
SUPERAntiSpyware Adware.CrossRider/Variant
Symantec Adware.Crossid
Tencent Win32.Adware.Bp-browser.Luqs
Trend Micro TROJ_GEN.F0C2C00AL15
Vba32 AntiVirus AdWare.Adwapper
VIPRE Antivirus Crossrider (fs)
Zillya Adware.Adwapper.Win32.3752
Microsoft Security Essentials BrowserModifier:Win32/IeEnablerCby
TrendMicro-HouseCall TROJ_GEN.F0C2C00B115
ALYac Gen:Variant.Adware.Kazy.133003
Emsisoft Anti-Malware Gen:Variant.Adware.Kazy.133003 (B)
Clam AntiVirus Win.Adware.Agent-36464
8b7a339d-84f0-44ea-8bc0-c9b1f0484b15-6.exe (MD5: 551aca4689f8d3cee3b81d7068796e8d) has been flagged by 46 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Application.Heur.yz1@mOXkbiki
Agnitum Outpost PUA.Toolbar.CrossRider!
AhnLab-V3 PUP/Win32.CrossRider
Antiy-AVL GrayWare[AdWare:not-a-virus]/NSIS.Adwapper.ec
Arcabit Application.Heur.E040D6
avast! Win32:Crossrider-DD [PUP]
AVG Generic.520
Avira ADWARE/CrossRider.Gen7
AVware Crossrider (fs)
Baidu-International Adware.Win32.CrossAd.CD
Bitdefender Gen:Application.Heur.yz1@mOXkbiki
Bkav FE W32.HfsAdware.1762
CAT-QuickHeal PUA.BrightCircle.OD6
Cyren W32/CrossRider.H.gen!Eldorado
Dr.Web Trojan.Crossrider1.23139
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.CD potentially unwanted
Fortinet FortiGate Riskware/CrossRider
F-Prot W32/CrossRider.H.gen!Eldorado
F-Secure Gen:Application.Heur.yz1@mOXkbiki
G Data Gen:Application.Heur.yz1@mOXkbiki
Jiangmin AdWare/NSIS.gbk
K7 AntiVirus Unwanted-Program ( 0040f9a31 )
K7GW Unwanted-Program ( 0040f9a31 )
Kaspersky not-a-virus:AdWare.NSIS.Adwapper.ec
Malwarebytes PUP.Optional.MPlayerPlusvideo.A
McAfee Artemis!551ACA4689F8
McAfee-GW-Edition Artemis
MicroWorld-eScan Gen:Application.Heur.yz1@mOXkbiki
NANO AntiVirus Riskware.Win32.Crossrider1.dnmwcs
Panda Antivirus Trj/Genetic.gen
Qihoo-360 Win32/Virus.Adware.de5
Rising Antivirus PE:Malware.Adwapper!6.23ED
Sophos AppRider (PUA)
SUPERAntiSpyware Adware.CrossRider/Variant
Symantec Adware.Crossid
Tencent Win32.Adware.Bp-browser.Luqs
Trend Micro TROJ_GEN.R0C2C0ECT15
Vba32 AntiVirus AdWare.Adwapper
VIPRE Antivirus Crossrider (fs)
Zillya Adware.Adwapper.Win32.3739
TrendMicro-HouseCall TROJ_GEN.F0C2C00AL15
ALYac Gen:Variant.Adware.Kazy.133003
Emsisoft Anti-Malware Gen:Variant.Adware.Kazy.133003 (B)
Clam AntiVirus Win.Adware.Agent-36464
Microsoft Security Essentials BrowserModifier:Win32/IeEnablerCby
Comodo Security Application.Win32.Plush.GRI
8b7a339d-84f0-44ea-8bc0-c9b1f0484b15-5.exe (MD5: 938c7ecff39cb57708b8c60c83a2e559) has been flagged by 46 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Application.Heur.av1@m4sbo9cO
Agnitum Outpost PUA.Adwapper!
AhnLab-V3 PUP/Win32.CrossRider
Antiy-AVL GrayWare[AdWare:not-a-virus]/NSIS.Adwapper.ec
Arcabit Application.Heur.ECC916
avast! Win32:Crossrider-DD [PUP]
AVG Generic.520
Avira ADWARE/CrossRider.Gen7
AVware Crossrider (fs)
Baidu-International Adware.Win32.CrossAd.CC
Bitdefender Gen:Application.Heur.av1@m4sbo9cO
Bkav FE W32.HfsAdware.1762
CAT-QuickHeal PUA.BrightCircle.OD6
Cyren W32/Application.OZCY-8143
Dr.Web Trojan.Crossrider1.23139
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.CC potentially unwanted
Fortinet FortiGate Riskware/CrossRider
F-Secure Gen:Application.Heur.av1@m4sbo9cO
G Data Gen:Application.Heur.av1@m4sbo9cO
Jiangmin AdWare/NSIS.etv
K7 AntiVirus Unwanted-Program ( 0040f9a31 )
K7GW Unwanted-Program ( 0040f9a31 )
Kaspersky not-a-virus:AdWare.NSIS.Adwapper.ec
Malwarebytes PUP.Optional.MPlayerPlusvideo.A
McAfee Artemis!938C7ECFF39C
McAfee-GW-Edition Artemis!PUP
MicroWorld-eScan Gen:Application.Heur.av1@m4sbo9cO
NANO AntiVirus Riskware.Win32.Crossrider1.dnettm
Panda Antivirus Trj/Genetic.gen
Qihoo-360 Win32/Virus.Adware.de5
Rising Antivirus PE:Malware.Adwapper!6.214C
Sophos AppRider
SUPERAntiSpyware Adware.CrossRider/Variant
Symantec Adware.Crossid
Tencent Trojan.Win32.Qudamah.Gen.7
Trend Micro TROJ_GEN.F0C2C00AL15
TrendMicro-HouseCall TROJ_GEN.F0C2C00AL15
Vba32 AntiVirus AdWare.Adwapper
VIPRE Antivirus Crossrider (fs)
Zillya Adware.Adwapper.Win32.3780
F-Prot W32/CrossRider.H.gen!Eldorado
ALYac Gen:Variant.Adware.Kazy.133003
Emsisoft Anti-Malware Gen:Variant.Adware.Kazy.133003 (B)
Clam AntiVirus Win.Adware.Agent-36464
Microsoft Security Essentials BrowserModifier:Win32/IeEnablerCby
Comodo Security Application.Win32.Plush.GRI

Software Behaviors

Scheduled tasks:
  • 45008f83-45f6-4cb3-bfb2-7e51f0750adf-6.exe is scheduled as a task named 'temp_45008f83-45f6-4cb3-bfb2-7e51f0750adf-6'.
  • 45008f83-45f6-4cb3-bfb2-7e51f0750adf-2.exe is scheduled as a task named 'temp_45008f83-45f6-4cb3-bfb2-7e51f0750adf-2'.

Startup Entries

Startup tasks:
  • 19953479-1d57-4f0e-85dc-c0809eeddf05-6.exe is automatically launched at startup through a scheduled task named 19953479-1d57-4f0e-85dc-c0809eeddf05-6.
  • 19953479-1d57-4f0e-85dc-c0809eeddf05-3.exe is automatically launched at startup through a scheduled task named 19953479-1d57-4f0e-85dc-c0809eeddf05-3.
  • 45008f83-45f6-4cb3-bfb2-7e51f0750adf-7.exe is automatically launched at startup through a scheduled task named 45008f83-45f6-4cb3-bfb2-7e51f0750adf-1.
  • 45008f83-45f6-4cb3-bfb2-7e51f0750adf-6.exe is automatically launched at startup through a scheduled task named 45008f83-45f6-4cb3-bfb2-7e51f0750adf-6.
  • 45008f83-45f6-4cb3-bfb2-7e51f0750adf-5.exe is automatically launched at startup through a scheduled task named 45008f83-45f6-4cb3-bfb2-7e51f0750adf-5_user.
  • 45008f83-45f6-4cb3-bfb2-7e51f0750adf-2.exe is automatically launched at startup through a scheduled task named 45008f83-45f6-4cb3-bfb2-7e51f0750adf-2.

Software Details

URL:
Support:
Installation path:
C:\Program Files\mplayerplusvideo4
Uninstaller:
C:\Program Files\MPlayerPlusvideo4\Uninstall.exe /fcp=1
Size:
6.00 MB
Language:
English

MPlayerPlusvideo4 Executable Details

Primary executable:
utils.exe
Name:
MPlayerPlusvideo4
Path:
C:\Program Files\mplayerplusvideo4\utils.exe
MD5:
ef3037e9cd04e09b301e67bfa85cf824
SHA-1:
SHA-256:
Files installed by MPlayerPlusvideo4
File Type Filename MD5
EXE
dfb44f3bab7f2204b6ee89e5e24f0254
EXE
ef3037e9cd04e09b301e67bfa85cf824
DLL
04797feb4e0cde026c3dd862d99e3210
DLL
b1fe4b5e43b155321192229cabb89e9f
DLL
a90632cb50f0809d527581a644721bb9
DLL
2000d4796f1dca0278ac6d534ab1718a
EXE
e5f60b30aa1e155830c13f5409b62b3a
EXE
8f3644e68e02885f28bcee20d73e7b71
EXE
c4f95f2fc5ee24caf8d50cd5ee2d11d9
EXE
551aca4689f8d3cee3b81d7068796e8d