SensePlus

SensePlus

Known Malware

by BrightCircle Investments Limited

What is SensePlus?

SensePlus is software application developed by BrightCircle Investments Limited. It is most commonly found on computers running Windows 7 with nearly 70.42% of installations running this operating system. SensePlus's installer is typically 12.00 MB in size and installs around 215 files. The most common release is 1.35.12.18 with 59.15% of all installations currently using this version.

SensePlus is most popular in the United States with 19.46% of installations residing in this country.

SensePlus adds 5 scheduled tasks to the Windows Task Scheduler launching the program at randomly scheduled times.

Multiple virus scanners have detected malware in SensePlus.

utils.exe (MD5: d92603a5ae9e23dd800e588f270fd712) has been flagged by 51 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Application.Parj.1
Agnitum Outpost Riskware.VMDetector
AhnLab-V3 Win-PUP/CrossRider
avast! NSIS:Crossrider-ES [PUP]
AVG Crossrider
AVware Trojan.Win32.Generic!BT
Baidu-International Adware.Win32.CrossAd.CF
Bitdefender Gen:Application.Parj.1
Dr.Web Trojan.Crossrider.49256
ESET-NOD32 Win32/Packed.VMDetector.I potentially unwanted
Fortinet FortiGate PossibleThreat
F-Secure Gen:Application.Parj.1
G Data Gen:Application.Parj
K7 AntiVirus Trojan
K7GW Trojan ( 004af4411 )
Malwarebytes PUP.Optional.CrossRider.A
McAfee Artemis!D92603A5AE9E
McAfee-GW-Edition BehavesLike.Win32.Dropper.vc
MicroWorld-eScan Gen:Application.Parj.1
NANO AntiVirus Trojan.Win32.Crossrider.dlfyun
Norman Troj_Generic.YAKZG
Panda Antivirus Trj/Genetic.gen
Qihoo-360 HEUR/QVM20.1.Malware.Gen
Sophos Generic PUA GE
Symantec Trojan.Asprox.B
TrendMicro-HouseCall TROJ_GEN.R047H05AA15
VIPRE Antivirus Trojan.Win32.Generic!BT
Antiy-AVL GrayWare[WebToolbar:not-a-virus]/Win32.CrossRider.kti
Arcabit Application.Heur.E5CA0A
Avira ADWARE/CrossRider.Gen7
Bkav FE W32.HfsAdware.B84E
CAT-QuickHeal PUA.BrightCircle.OD6
Comodo Security Application.Win32.CrossRider.KS
Cyren W32/S-95be3f30!Eldorado
F-Prot W32/S-95be3f30!Eldorado
Kaspersky not-a-virus:WebToolbar.Win32.CrossRider.kti
Microsoft Security Essentials BrowserModifier:Win32/IeEnablerCby
Rising Antivirus PE:Malware.Obscure!1.9C59
SUPERAntiSpyware Adware.CrossRider/Variant
Tencent Trojan.Win32.Qudamah.Gen.3
Total Defense Win32/Remex.ZAUP!suspicious
Trend Micro TROJ_GEN.F0C2C00A915
Zillya Adware.CrossRider.Win32.890
ALYac Adware.AdWrapper.A
Emsisoft Anti-Malware Adware.AdWrapper.A (B)
IKARUS anti.virus not-a-virus:WebToolbar.CrossRider
Jiangmin AdWare/NSIS.eaf
nProtect Trojan-Clicker/W32.Agent.929248
Vba32 AntiVirus AdWare.Adwapper
Clam AntiVirus Win.Adware.Agent-39330
Kingsoft AntiVirus Win32.Troj.Advert.ac.(kcloud)
3cd2f285-f6b7-45b8-94c6-b0f0888b836c-2.exe (MD5: 9d17c4d9d855eec5117995d564e79adb) has been flagged by 47 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Application.Heur.4u1@mGto4DkO
AhnLab-V3 PUP/Win32.CrossRider
Antiy-AVL GrayWare[WebToolbar:not-a-virus]/Win32.CrossRider.kti
avast! Win32:Adware-CNF [PUP]
AVG Generic.95F
AVware Trojan.Win32.Generic!BT
Baidu-International Adware.Win32.CrossAd.BM
Bitdefender Gen:Application.Heur.4u1@mGto4DkO
Bkav FE W32.HfsAdware.B84E
CAT-QuickHeal PUA.BrightCircle.OD6
Clam AntiVirus Win.Trojan.Crossrider-185
Cyren W32/S-95be3f30!Eldorado
Dr.Web Trojan.Crossrider1.23209
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.CK potentially unwanted
Fortinet FortiGate Riskware/CrossRider
F-Prot W32/S-95be3f30!Eldorado
F-Secure Gen:Application.Heur.4u1@mGto4DkO
G Data Gen:Application.Heur.4u1@mGto4DkO
K7 AntiVirus Unwanted-Program ( 0040f9a31 )
K7GW Unwanted-Program ( 0040f9a31 )
Kaspersky not-a-virus:WebToolbar.Win32.CrossRider.kti
Malwarebytes PUP.Optional.SensePlus.A
McAfee Artemis!9D17C4D9D855
Microsoft Security Essentials BrowserModifier:Win32/IeEnablerCby
MicroWorld-eScan Gen:Application.Heur.4u1@mGto4DkO
NANO AntiVirus Trojan.Win32.Crossrider.dllivz
Panda Antivirus Trj/Genetic.gen
Qihoo-360 HEUR/QVM10.1.Malware.Gen
Rising Antivirus PE:Malware.Obscure!1.9C59
Sophos AppRider
Symantec Adware.Crossid
Tencent Win32.Adware.Bp-browser.Luqs
Total Defense Win32/Remex.ZAUI!suspicious
Trend Micro TROJ_GEN.R0C1C0EAG15
TrendMicro-HouseCall TROJ_GEN.R0C1C0EAG15
VIPRE Antivirus Trojan.Win32.Generic!BT
Zillya Adware.CrossRider.Win32.897
Agnitum Outpost PUA.Toolbar.CrossRider!
Arcabit Application.Heur.ED8B6A
Avira ADWARE/CrossRider.Gen4
McAfee-GW-Edition Artemis
SUPERAntiSpyware Adware.CrossRider/Variant
Comodo Security Application.Win32.CrossRider.CK
IKARUS anti.virus not-a-virus:WebToolbar.CrossRider
Jiangmin AdWare/NSIS.crf
nProtect Trojan-Clicker/W32.Agent.1331168
Vba32 AntiVirus AdWare.Adwapper
3cd2f285-f6b7-45b8-94c6-b0f0888b836c-11.exe (MD5: 072873176121e82a18c977e921affa0f) has been flagged by 38 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Application.Heur.4v1@mqYKtEfO
AhnLab-V3 PUP/Win32.CrossRider
Antiy-AVL GrayWare[WebToolbar:not-a-virus]/Win32.CrossRider.kti
avast! Win32:Crossrider-BX [PUP]
AVG Generic.95F
Avira ADWARE/CrossRider.Gen7
AVware Trojan.Win32.Generic!BT
Baidu-International PUA.Win32.CrossRider.bBV
Bitdefender Gen:Application.Heur.4v1@mqYKtEfO
Bkav FE W32.HfsAdware.8EA5
CAT-QuickHeal PUA.BrightCircle.OD6
Comodo Security Application.Win32.Plush.GRI
Dr.Web Trojan.Crossrider.49951
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.CB potentially unwanted
F-Secure Gen:Application.Heur.4v1@mqYKtEfO
G Data Gen:Application.Heur.4v1@mqYKtEfO
K7 AntiVirus Unwanted-Program ( 0040f9a31 )
K7GW Unwanted-Program ( 0040f9a31 )
Kaspersky not-a-virus:WebToolbar.Win32.CrossRider.kti
Malwarebytes PUP.Optional.SensePlus.A
McAfee Artemis!072873176121
McAfee-GW-Edition BehavesLike.Win32.BadFile.th
MicroWorld-eScan Gen:Application.Heur.4v1@mqYKtEfO
NANO AntiVirus Trojan.Win32.Crossrider.dlllze
Panda Antivirus Trj/Genetic.gen
Qihoo-360 HEUR/QVM10.1.Malware.Gen
Sophos AppRider
Symantec Adware.Crossid
Tencent Win32.Adware.Bp-browser.Luqs
VIPRE Antivirus Trojan.Win32.Generic!BT
Zillya Adware.CrossRider.Win32.901
Fortinet FortiGate Riskware/CrossRider
IKARUS anti.virus Trojan.GoogUpdate
Trend Micro TROJ_GEN.F0C2C00A115
TrendMicro-HouseCall TROJ_GEN.F0C2C00A115
Cyren W32/Application.MBMW-5115
Rising Antivirus PE:Trojan.GoogUpdate!6.1E39
SUPERAntiSpyware Adware.CrossRider/Variant
3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-7.exe (MD5: 0641bb7e3f267b7f04ffd23f2d023b7a) has been flagged by 50 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Application.Heur.dv1@mOXENbjO
Agnitum Outpost PUA.Adwapper!
AhnLab-V3 PUP/Win32.CrossRider
Antiy-AVL GrayWare[AdWare:not-a-virus]/NSIS.Adwapper.do
Arcabit Application.Heur.EBAC52
avast! Win32:Crossrider-CG [PUP]
AVG Crossrider.KKO
Avira ADWARE/CrossRider.Gen7
AVware Crossrider (fs)
Baidu-International Adware.Win32.CrossAd.CD
Bitdefender Gen:Application.Heur.dv1@mOXENbjO
Bkav FE W32.HfsAdware.6397
CAT-QuickHeal PUA.BrightCircle.OD6
Comodo Security ApplicUnwnt
Cyren W32/S-a64d6097!Eldorado
Dr.Web Trojan.Crossrider1.22993
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.CD potentially unwanted
Fortinet FortiGate Adware/Adwapper
F-Prot W32/S-a64d6097!Eldorado
F-Secure Gen:Application.Heur.dv1@mOXENbjO
G Data Gen:Application.Heur.dv1@mOXENbjO
Jiangmin Trojan/NSIS.alx
K7 AntiVirus Unwanted-Program ( 0040f9a31 )
K7GW Unwanted-Program ( 0040f9a31 )
Kaspersky not-a-virus:AdWare.NSIS.Adwapper.do
Malwarebytes PUP.Optional.SensePlus.A
McAfee PUP-FTK
McAfee-GW-Edition PUP-FTK
MicroWorld-eScan Gen:Application.Heur.dv1@mOXENbjO
NANO AntiVirus Riskware.Win32.Crossrider.djywmf
nProtect Trojan-Clicker/W32.Agent.1109472
Panda Antivirus Trj/Genetic.gen
Qihoo-360 Win32/Virus.Adware.de5
Rising Antivirus PE:Trojan.Win32.Generic.17D71F7D!399974269
SUPERAntiSpyware Adware.Adwapper/Variant
Symantec Trojan.Gen
Tencent Win32.Adware.Bp-browser.Luqs
Trend Micro TROJ_GEN.F0C2C00LH14
Vba32 AntiVirus AdWare.Adwapper
VIPRE Antivirus Crossrider (fs)
Zillya Adware.Adwapper.Win32.1737
Sophos Generic PUA PA
TrendMicro-HouseCall TROJ_GEN.F0C2C00A215
Microsoft Security Essentials BrowserModifier:Win32/IeEnablerCby
Clam AntiVirus Win.Trojan.Application-674
ALYac Gen:Variant.Adware.Kazy.133003
Emsisoft Anti-Malware Gen:Variant.Adware.Kazy.133003 (B)
Total Defense Win32/Remex.ZAXW!suspicious
IKARUS anti.virus AdWare.CrossRider
Kingsoft AntiVirus Win32.Troj.Advert.ac.(kcloud)
3c97d2c2-5df3-4e61-b06a-4f118b3e81a0-6.exe (MD5: b064797ad5401be2c2dcdeab9a5cf43d) has been flagged by 50 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Application.Heur.pz1@mGes6@bi
Agnitum Outpost PUA.Adwapper!
AhnLab-V3 Adware/Win32.CrossRider
Antiy-AVL GrayWare[AdWare:not-a-virus]/NSIS.Adwapper.do
Arcabit Application.Heur.E3AC84
avast! Win32:Trojan-gen
AVG Crossrider.EC3
Avira ADWARE/CrossRider.Gen7
AVware Crossrider (fs)
Baidu-International Adware.Win32.CrossAd.CD
Bitdefender Gen:Application.Heur.pz1@mGes6@bi
Bkav FE W32.HfsAdware.6397
CAT-QuickHeal PUA.BrightCircle.OD6
Clam AntiVirus Win.Adware.Application-535
Comodo Security ApplicUnwnt
Cyren W32/CrossRider.H.gen!Eldorado
Dr.Web Trojan.Crossrider1.22993
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.CD potentially unwanted
Fortinet FortiGate Adware/Adwapper
F-Prot W32/CrossRider.H.gen!Eldorado
F-Secure Gen:Application.Heur.pz1@mGes6@bi
G Data Gen:Application.Heur.pz1@mGes6@bi
Jiangmin AdWare/NSIS.cow
K7 AntiVirus Unwanted-Program ( 0040f9a31 )
K7GW Unwanted-Program ( 0040f9a31 )
Kaspersky not-a-virus:AdWare.NSIS.Adwapper.do
Malwarebytes PUP.Optional.SensePlus.A
McAfee PUP-FTK
McAfee-GW-Edition BehavesLike.Win32.BrowseFox.th
MicroWorld-eScan Gen:Application.Heur.pz1@mGes6@bi
NANO AntiVirus Trojan.Win32.GoogUpdate.djtjwy
nProtect Trojan-Clicker/W32.Agent.1300960
Panda Antivirus Trj/Genetic.gen
Qihoo-360 Win32/Application.85b
Rising Antivirus PE:Trojan.Win32.Generic.17D97B20!400128800
SUPERAntiSpyware Adware.CrossRider/Variant
Symantec Trojan.Gen
Tencent Win32.Adware.Bp-browser.Luqs
Trend Micro TROJ_GEN.F0C2C00LH14
Vba32 AntiVirus AdWare.Adwapper
VIPRE Antivirus Crossrider (fs)
Zillya Adware.Adwapper.Win32.1736
IKARUS anti.virus AdWare.CrossRider
Sophos Generic PUA PA
TrendMicro-HouseCall TROJ_GEN.F0C2C00A215
Microsoft Security Essentials BrowserModifier:Win32/IeEnablerCby
ALYac Gen:Variant.Adware.Kazy.133003
Emsisoft Anti-Malware Gen:Variant.Adware.Kazy.133003 (B)
Total Defense Win32/Remex.ZAXW!suspicious
Kingsoft AntiVirus Win32.Troj.Advert.ac.(kcloud)

Software Behaviors

Scheduled tasks:
  • 87302643-f847-48ad-946d-579f8ab0600d-7.exe is scheduled as a task named '87302643-f847-48ad-946d-579f8ab0600d-1'.
  • 87302643-f847-48ad-946d-579f8ab0600d-6.exe is scheduled as a task named 'temp_87302643-f847-48ad-946d-579f8ab0600d-6'.
  • 87302643-f847-48ad-946d-579f8ab0600d-5.exe is scheduled as a task named '87302643-f847-48ad-946d-579f8ab0600d-5_user'.
  • 87302643-f847-48ad-946d-579f8ab0600d-4.exe is scheduled as a task named '87302643-f847-48ad-946d-579f8ab0600d-4'.
  • 87302643-f847-48ad-946d-579f8ab0600d-2.exe is scheduled as a task named 'temp_87302643-f847-48ad-946d-579f8ab0600d-2'.

Startup Entries

Startup tasks:
  • f372eb8f-43fb-4cfb-b40a-3e7648537edc-4.exe is automatically launched at startup through a scheduled task named f372eb8f-43fb-4cfb-b40a-3e7648537edc-4.
  • f372eb8f-43fb-4cfb-b40a-3e7648537edc-11.exe is automatically launched at startup through a scheduled task named f372eb8f-43fb-4cfb-b40a-3e7648537edc-11.
  • 5d169b1b-b6c8-4fec-9088-eb0387aac754-6.exe is automatically launched at startup through a scheduled task named 5d169b1b-b6c8-4fec-9088-eb0387aac754-6.
  • ef8bcc6b-f158-454d-9de2-00bd6de52bef-4.exe is automatically launched at startup through a scheduled task named ef8bcc6b-f158-454d-9de2-00bd6de52bef-4.
  • 87302643-f847-48ad-946d-579f8ab0600d-6.exe is automatically launched at startup through a scheduled task named 87302643-f847-48ad-946d-579f8ab0600d-6.
  • ef8bcc6b-f158-454d-9de2-00bd6de52bef-11.exe is automatically launched at startup through a scheduled task named ef8bcc6b-f158-454d-9de2-00bd6de52bef-11.

Software Details

URL:
Support:
Installation path:
C:\Program Files\senseplus
Uninstaller:
C:\Program Files\SensePlus\Uninstall.exe /fcp=1
Size:
12.00 MB
Language:
English

SensePlus Executable Details

Primary executable:
utils.exe
Name:
SensePlus
Path:
C:\Program Files\senseplus\utils.exe
MD5:
d92603a5ae9e23dd800e588f270fd712
SHA-1:
SHA-256:
Files installed by SensePlus
File Type Filename MD5
EXE
EXE
utils.exe
Malware
d92603a5ae9e23dd800e588f270fd712
EXE
9d17c4d9d855eec5117995d564e79adb
EXE
072873176121e82a18c977e921affa0f
EXE
0641bb7e3f267b7f04ffd23f2d023b7a
EXE
e413f2404f181b818c2136021f1db5cf
EXE
b064797ad5401be2c2dcdeab9a5cf43d
EXE
e94ca4e79c2e6691f7e811075e41a6d8
EXE
832405fcb8a771becea782db28df4195
EXE
7c2a439d30080dd9b100e2bfe00c9396