Plus-HD-4.8

Plus-HD-4.8

Known Adware

by FIRSERIA

What is Plus-HD-4.8?

Plus-HD-4.8 is software application developed by FIRSERIA. It is most commonly found on computers running Windows 7 with nearly 54.32% of installations running this operating system. Plus-HD-4.8's installer is typically 8.00 MB in size and installs around 17 files. The most common release is 1.30.153.0 with 50.00% of all installations currently using this version.

Plus-HD-4.8 is most popular in the United States with 47.09% of installations residing in this country.

Plus-HD-4.8 adds 1 scheduled task to the Windows Task Scheduler launching the program at randomly scheduled times.

About Plus-HD-4.8?

Plus HD is a web browser extension and Browser Helper Object designed to deliver contextual-based advertising to the user's web browser. It may also modify the browser's home and search pages as well as 'New Tab' pages to display advertising and promote certain search engines. However, it is important to note that this software is categorized as adware and is considered an unwanted application by many malware vendors. It is important to be aware that the software is marketed as a variation of DivX Plus HD, but it is not associated with DivX in any way.

Multiple virus scanners have detected malware in Plus-HD-4.8.

Plus-HD-4.8-updater.exe (MD5: 712c2e86711e4aaa997ab10fcfba7d06) has been flagged by 44 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Application.Heur.vu1@m4IMZQaO
AhnLab-V3 PUP/Win32.CrossRider
Antiy-AVL GrayWare[WebToolbar:not-a-virus]/Win32.CroRi.bei
Arcabit Application.Heur.E80A25
avast! Win32:Crossrider-AI [PUP]
AVG Generic5.AOCG
Avira ADWARE/CrossRider.Gen2
Baidu-International Adware.Win32.CrossAd.W
Bitdefender Gen:Application.Heur.vu1@m4IMZQaO
Bkav FE W32.HfsAdware.93C0
CAT-QuickHeal PUA.Kimahrisof.Gen
Comodo Security Application.Win32.CrossRider.KVA
Cyren W32/S-78f5579c!Eldorado
Dr.Web Trojan.Crossrider1.23056
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.W potentially unwanted
Fortinet FortiGate Riskware/Toolbar_CrossRider
F-Prot W32/S-78f5579c!Eldorado
F-Secure Gen:Application.Heur.vu1@m4IMZQaO
G Data Gen:Application.Heur.vu1@m4IMZQaO
IKARUS anti.virus AdWare.CrossRider
Jiangmin Adware/Agent.apvz
K7 AntiVirus Adware ( 004c90f31 )
K7GW Adware ( 004c90f31 )
Kaspersky not-a-virus:WebToolbar.Win32.CroRi.bei
Kingsoft AntiVirus Win32.Troj.Generic.a.(kcloud)
Malwarebytes PUP.Optional.HDPlus.A
McAfee Artemis!712C2E86711E
McAfee-GW-Edition Artemis!PUP
MicroWorld-eScan Gen:Application.Heur.vu1@m4IMZQaO
NANO AntiVirus Riskware.Win32.CrossRider.deropl
Panda Antivirus PUP/PlusHD
Qihoo-360 Win32/Virus.Adware.5ec
Rising Antivirus PE:Trojan.Win32.Generic.16C22DFF!381824511
Sophos AppRider (PUA)
SUPERAntiSpyware Adware.CrossRider/Variant
Symantec Adware.Crossid
Trend Micro TROJ_GEN.R0C1C0EGS15
Zillya Adware.CroRi.Win32.161
Avira AntiVir Adware/CrossRider.A.20875
AVware Crossrider (fs)
Emsisoft Anti-Malware Gen:Adware.Plush.1 (B)
VIPRE Antivirus Crossrider (fs)
Agnitum Outpost PUA.Toolbar.Crossrider!
TrendMicro-HouseCall TROJ_GEN.F47V0101
Plus-HD-4.8-firefoxinstaller.exe (MD5: 2ff48d337d99d4d64bf06370a4ad1a29) has been flagged by 42 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Application.Heur.2u1@m0YGSfpO
AhnLab-V3 Win-PUP/CrossRider
Antiy-AVL GrayWare[WebToolbar:not-a-virus]/Win32.CroRi.bei
Arcabit Application.Heur.EDD99
avast! Win32:Crossrider-AI [PUP]
AVG Generic5.AOBX
Avira ADWARE/CrossRider.Gen2
Baidu-International Adware.Win32.CrossAd.Y
Bitdefender Gen:Application.Heur.2u1@m0YGSfpO
Bkav FE W32.HfsAdware.93C0
CAT-QuickHeal PUA.Kimahrisof.Gen
Comodo Security Application.Win32.CrossRider.KVA
Cyren W32/S-721e1cba!Eldorado
Dr.Web Trojan.Crossrider1.23056
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.Y potentially unwanted
Fortinet FortiGate Riskware/Toolbar_CrossRider
F-Prot W32/S-721e1cba!Eldorado
F-Secure Gen:Application.Heur.2u1@m0YGSfpO
G Data Gen:Application.Heur.2u1@m0YGSfpO
K7 AntiVirus Unwanted-Program ( 004a9d061 )
K7GW Unwanted-Program ( 004a9d061 )
Kaspersky not-a-virus:WebToolbar.Win32.CroRi.bei
Kingsoft AntiVirus Win32.Troj.Generic.a.(kcloud)
Malwarebytes PUP.Optional.HDPlus.A
McAfee Artemis!2FF48D337D99
McAfee-GW-Edition BehavesLike.Win32.PUP.ch
MicroWorld-eScan Gen:Application.Heur.2u1@m0YGSfpO
NANO AntiVirus Trojan.Win32.Crossrider.cvzzlj
Panda Antivirus PUP/PlusHD
Qihoo-360 Win32/Virus.Adware.4a0
Rising Antivirus PE:Trojan.Win32.Generic.16C22D30!381824304
Sophos Generic PUA AE (PUA)
SUPERAntiSpyware Adware.CrossRider/Variant
Symantec Adware.Crossid
Trend Micro TROJ_GEN.R0C1C0EGT15
Zillya Backdoor.PePatch.Win32.39226
Avira AntiVir Adware/CrossRider.A.20875
AVware Crossrider (fs)
Emsisoft Anti-Malware Gen:Adware.Plush.1 (B)
VIPRE Antivirus Crossrider (fs)
Agnitum Outpost PUA.Toolbar.Crossrider!
TrendMicro-HouseCall TROJ_GEN.F47V0101
Plus-HD-4.8-enabler.exe (MD5: 6403062e6adcdf12df6da73c7378bad1) has been flagged by 25 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Adware.Plush.1
Avira AntiVir Adware/CrossRider.A.20875
AVG Generic5.ASPB
AVware Crossrider (fs)
Bitdefender Gen:Adware.Plush.1
Emsisoft Anti-Malware Gen:Adware.Plush.1 (B)
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.K
F-Prot W32/A-eb9ef301!Eldorado
F-Secure Gen:Adware.Plush.1
G Data Gen:Adware.Plush.1
Malwarebytes PUP.Optional.PlusHD.A
MicroWorld-eScan Gen:Adware.Plush.1
Panda Antivirus PUP/PlusHD
Qihoo-360 Malware.QVM10.Gen
Sophos AppRider
Symantec WS.Reputation.1
VIPRE Antivirus Crossrider (fs)
Baidu-International Adware.Win32.CrossRider.T
Dr.Web Trojan.Crossrider.7652
Fortinet FortiGate Riskware/Toolbar_CrossRider
NANO AntiVirus Trojan.Win32.PUP.csscah
Agnitum Outpost PUA.Toolbar.Crossrider!
McAfee Artemis!25C5ED5F29E7
McAfee-GW-Edition Artemis!25C5ED5F29E7
TrendMicro-HouseCall TROJ_GEN.F47V0101
Plus-HD-4.8-codedownloader.exe (MD5: a208326c2cc6a85852b776e911a5681c) has been flagged by 24 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Adware.Plush.1
AVG Generic5.ANGZ
Baidu-International Adware.Win32.CrossRider.T
Bitdefender Gen:Adware.Plush.1
Dr.Web Trojan.Crossrider.7652
Emsisoft Anti-Malware Gen:Adware.Plush.1 (B)
ESET-NOD32 Win32/Toolbar.CrossRider.T
Fortinet FortiGate Riskware/Toolbar_CrossRider
F-Secure Gen:Adware.Plush.1
G Data Gen:Adware.Plush.1
Malwarebytes PUP.Optional.PlusHD.A
MicroWorld-eScan Gen:Adware.Plush.1
Panda Antivirus PUP/PlusHD
Sophos AppRider
Symantec Adware.Crossid
VIPRE Antivirus Crossrider (fs)
Avira AntiVir Adware/CrossRider.A.20877
AVware Crossrider (fs)
F-Prot W32/A-eb9ef301!Eldorado
NANO AntiVirus Trojan.Win32.PUP.csscah
Agnitum Outpost PUA.Toolbar.Crossrider!
McAfee Artemis!25C5ED5F29E7
McAfee-GW-Edition Artemis!25C5ED5F29E7
TrendMicro-HouseCall TROJ_GEN.F47V0101
Plus-HD-4.8-chromeinstaller.exe (MD5: 20b32db072d355809dc167f766a5749b) has been flagged by 21 scanners:
Scanner Software Result
Lavasoft Ad-Aware Gen:Adware.Plush.1
Avira AntiVir Adware/CrossRider.A.20877
AVware Crossrider (fs)
Bitdefender Gen:Adware.Plush.1
Emsisoft Anti-Malware Gen:Adware.Plush.1 (B)
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.K
F-Prot W32/A-eb9ef301!Eldorado
F-Secure Gen:Adware.Plush.1
G Data Gen:Adware.Plush.1
Malwarebytes PUP.Optional.PlusHD.A
MicroWorld-eScan Gen:Adware.Plush.1
NANO AntiVirus Trojan.Win32.PUP.csscah
Panda Antivirus PUP/PlusHD
Sophos AppRider
VIPRE Antivirus Crossrider (fs)
Agnitum Outpost PUA.Toolbar.Crossrider!
Baidu-International Adware.Win64.Crossrider.C
Dr.Web Adware.Toolbar.232
McAfee Artemis!25C5ED5F29E7
McAfee-GW-Edition Artemis!25C5ED5F29E7
TrendMicro-HouseCall TROJ_GEN.F47V0101

Software Behaviors

Scheduled tasks:
  • Plus-HD-4.8-enabler.exe is scheduled as a task named 'temp_Plus-HD-4.8-enabler'.

Startup Entries

Startup tasks:
  • Plus-HD-4.8-updater.exe is automatically launched at startup through a scheduled task named Plus-HD-4.8-updater.
  • Plus-HD-4.8-firefoxinstaller.exe is automatically launched at startup through a scheduled task named Plus-HD-4.8-firefoxinstaller.
  • Plus-HD-4.8-enabler.exe is automatically launched at startup through a scheduled task named Plus-HD-4.8-enabler.
  • Plus-HD-4.8-codedownloader.exe is automatically launched at startup through a scheduled task named Plus-HD-4.8-codedownloader.
  • Plus-HD-4.8-chromeinstaller.exe is automatically launched at startup through a scheduled task named Plus-HD-4.8-chromeinstaller.

Software Details

URL:
https://plus-hd.com
Support:
–
Installation path:
C:\Program Files\plus-hd-4.8
Uninstaller:
C:\Program Files\Plus-HD-4.8\Uninstall.exe /fromcontrolpanel=1
Size:
8.00 MB
Language:
English

Plus-HD-4.8 Executable Details

Primary executable:
utils.exe
Name:
Plus-HD-4.8
Path:
C:\Program Files\plus-hd-4.8\utils.exe
MD5:
–
SHA-1:
–
SHA-256:
–
Files installed by Plus-HD-4.8
File Type Filename MD5
EXE
uninstall.exe
a2106d16f20aa8fead09fdeaf135e097
EXE
utils.exe
a0bdc8051a740904d9e5f24d697f6875
EXE
Plus-HD-4.8-updater.exe
Malware
712c2e86711e4aaa997ab10fcfba7d06
EXE
Plus-HD-4.8-firefoxinstaller.exe
Malware
2ff48d337d99d4d64bf06370a4ad1a29
EXE
Plus-HD-4.8-enabler.exe
Malware
6403062e6adcdf12df6da73c7378bad1
EXE
Plus-HD-4.8-codedownloader.exe
Malware
a208326c2cc6a85852b776e911a5681c
EXE
Plus-HD-4.8-chromeinstaller.exe
Malware
20b32db072d355809dc167f766a5749b
EXE
Plus-HD-4.8-buttonutil64.exe
2db7e8e33fa7aa4a2afd8a013c656df0
EXE
Plus-HD-4.8-buttonutil.exe
4832b5c66475f6f3e8e61bf1eedf1f81
DLL
Plus-HD-4.8-bho64.dll
Malware
25c5ed5f29e7e5fc96ff4dd99954023d