Plus-HD-9.6

Known Adware

What is Plus-HD-9.6?

Plus-HD-9.6 is software application developed by Kimahri Software inc.. It is most commonly found on computers running Windows 7 with nearly 59.72% of installations running this operating system. Plus-HD-9.6's installer is typically 9.00 MB in size and installs around 41 files. The most common release is 1.34.5.29 with 56.19% of all installations currently using this version.

Plus-HD-9.6 is most popular in India with 10.65% of installations residing in this country.

Plus-HD-9.6 adds 2 scheduled tasks to the Windows Task Scheduler launching the program at randomly scheduled times.

About Plus-HD-9.6?

Plus HD is a web browser extension and Browser Helper Object designed to enhance the user's interaction with various websites by rendering graphics, text, or interactive content in the browser. This software is sponsored by advertising and may cause additional ads to appear while browsing certain websites, including price comparison ads, coupons, pop-ups, banners, inline text, or transitional ads. However, it is important to note that Plus HD is commonly identified as an unwanted application by various malware vendors due to its adware-like behavior, which includes injecting a significant number of advertisements into the user's web browser and modifying the browser's home and search pages as well as 'New Tab' pages to serve advertising and search content.

Multiple virus scanners have detected malware in Plus-HD-9.6.

utils.exe (MD5: 155d4c15a2618880475b329aa2c505c3) has been flagged by 50 scanners:

Scanner Software	Version	Result
Baidu-International	4.0.3.14620	PUA.Win32.VMDetector.bE
Bkav FE	1.3.0.4959	HW32.CDB
ESET-NOD32	8.9945	probably a variant of Win32/Packed.VMDetector.E
Malwarebytes	v2014.06.20.09	PUP.Optional.CrossRider.A
TrendMicro-HouseCall	7.2.171	TROJ_GEN.F47V0603
Lavasoft Ad-Aware	12.0.163.0	Win32.Ramnit.N
Agnitum Outpost	5.5.1.3	Win32.Nimnul.Gen.2
AhnLab-V3	None	Win32/Ramnit.F
Avira AntiVir	7.11.152.90	W32/Ramnit.C
Antiy-AVL	0.1.0.1	Virus/Win32.Nimnul.a
avast!	8.0.1489.320	Win32:RmnDrp
AVG	14.0.0.3955	Win32/Zbot.G
Bitdefender	7.2	Win32.Ramnit.N
CAT-QuickHeal	14.00	W32.Ramnit.BA
Clam AntiVirus	0.98.3	W32.Ramnit-1
CMC Antivirus	1.1.0.977	Virus.Win32.Ramit.1!O
Commtouch SDK	5.4.1.7	W32/Ramnit.D
Comodo Security	18402	Virus.Win32.Ramnit.K
Dr.Web	7.00.9.04080	Win32.Siggen.7
Emsisoft Anti-Malware	3.0.0.599	Win32.Ramnit.N (B)
Fortinet FortiGate	4	W32/Ramnit.C
F-Prot	4.7.1.166	W32/Ramnit.D
F-Secure	11.0.19100.45	Win32.Ramnit.N
G Data	24	Win32.Ramnit.N
IKARUS anti.virus	T3.1.6.1.0	Virus.Win32.Ramnit
Jiangmin	16.0.100	Win32/IRCNite.wi
K7 AntiVirus	9.178.12257	Virus ( 001d9d511 )
K7GW	9.178.12257	Virus ( 001d9d511 )
Kaspersky	12.0.0.1225	Virus.Win32.Nimnul.a
Kingsoft AntiVirus	2013.04.09.267	Win32.Ramnit.lx.30720
McAfee	6.0.4.564	W32/Ramnit.a
McAfee-GW-Edition	2013	Heuristic.LooksLike.Win32.SuspiciousPE.N
Microsoft Security Essentials	1.10600	Virus:Win32/Ramnit.I
MicroWorld-eScan	12.0.250.0	Win32.Ramnit.N
NANO AntiVirus	0.28.0.59921	Virus.Win32.Nimnul.bmnup
Norman	7.04.04	Virut.HL
nProtect	2014-06-01.01	Virus/W32.SpyEye
Panda Antivirus	10.0.3.5	W32/Cosmu.C
Qihoo-360	1.0.0.1015	Virus.Win32.Ramnit.A
Rising Antivirus	25.0.0.11	PE:Win32.Ramnit.i!1075353400
Sophos	4.98.0	W32/Ramnit-A
Symantec	20131.1.5.61	W32.Ramnit.B!inf
Tencent	1.0.0.1	Virus.Win32.Dropper.k
Total Defense	37.0.10973	Win32/Ramnit.C
Trend Micro	9.740-1012	PE_RAMNIT.DEN
Vba32 AntiVirus	3.12.26.0	Virus.Win32.Nimnul.b
VIPRE Antivirus	29846	Virus.Win32.Ramnit.b (v)
ViRobot	2011.4.7.4223	Win32.Nimnul.A
Zillya	2.0.0.1809	Virus.Nimnul.Win32.2
The Hacker		W32/Virtob.Gen(F)

Plus-HD-9.6-novainstaller.exe (MD5: 1cee95ea2fb844353bfd72aad0a9760d) has been flagged by 22 scanners:

Scanner Software	Version	Result
Lavasoft Ad-Aware	12.0.163.0	Gen:Adware.Plush.1
Avira AntiVir	7.11.152.248	Adware/CrossRider.A.571
Bitdefender	7.2	Gen:Adware.Plush.1
Emsisoft Anti-Malware	3.0.0.599	Gen:Adware.Plush.1 (B)
ESET-NOD32	9892	a variant of Win32/Toolbar.CrossRider.AC
F-Secure	11.0.19100.45	Gen:Adware.Plush.1
G Data	24	Gen:Adware.Plush.1
Kingsoft AntiVirus	2013.04.09.267	Win32.Troj.Generic.a.(kcloud)
Malwarebytes	1.75.0001	PUP.Optional.PlusHD.A
MicroWorld-eScan	12.0.250.0	Gen:Adware.Plush.1
Qihoo-360	1.0.0.1015	Win32/Virus.Adware.bc4
Sophos	4.98.0	AppRider
VIPRE Antivirus	29930	Crossrider (fs)
Antiy-AVL	1.0.0.1	Trojan/Win32.TSGeneric
AVG	14.0.0.3972	Generic.BEF
Fortinet FortiGate	5.1.152.0	Riskware/Toolbar_CrossRider
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.F47V0603
Baidu-International	3.5.1.41473	Adware.Win32.CrossRider.AA
Symantec	20131.1.5.61	WS.Reputation.1
IKARUS anti.virus	T3.1.6.1.0	AdWare.Agent
McAfee	6.0.4.564	Artemis!9D88E714440E
McAfee-GW-Edition	2013	Artemis!9D88E714440E

Plus-HD-9.6-nova.exe (MD5: a234bc5ec2a3972746386fdbfb3d624b) has been flagged by 48 scanners:

Scanner Software	Version	Result
Lavasoft Ad-Aware	12.0.163.0	Win32.Virtob.Gen.12
Agnitum Outpost	5.5.1.3	Win32.Virut.AB.Gen
AhnLab-V3	None	Win32/Virut.F
Avira AntiVir	7.11.152.90	W32/Virut.Gen
Antiy-AVL	0.1.0.1	Virus/Win32.Virut.ce
avast!	8.0.1489.320	Win32:Vitro
AVG	14.0.0.3955	Win32/Virut.AN
Bitdefender	7.2	Win32.Virtob.Gen.12
Bkav FE	1.3.0.4959	W32.Vetor.PE
CAT-QuickHeal	14.00	W32.Virut.G
CMC Antivirus	1.1.0.977	Virus.Win32.Virut.1!O
Commtouch SDK	5.4.1.7	W32/Injector.A.gen!Eldorado
Dr.Web	7.00.9.04080	Win32.Virut.56
Emsisoft Anti-Malware	3.0.0.599	Win32.Virtob.Gen.12 (B)
ESET-NOD32	9877	Win32/Virut.NBP
Fortinet FortiGate	4	W32/FakeAV.RQ!tr
F-Prot	4.7.1.166	W32/Injector.A.gen!Eldorado
F-Secure	11.0.19100.45	Win32.Virtob.Gen.12
G Data	24	Win32.Virtob.Gen.12
IKARUS anti.virus	T3.1.6.1.0	Virus.Win32.Virut
Jiangmin	16.0.100	Win32/Virut.bt
K7 AntiVirus	9.178.12257	Virus ( f10002001 )
K7GW	9.178.12257	Virus ( f10002001 )
Kaspersky	12.0.0.1225	Virus.Win32.Virut.ce
Malwarebytes	1.75.0001	PUP.Optional.HDPlus.A
McAfee	6.0.4.564	W32/Virut.n.gen
McAfee-GW-Edition	2013	Heuristic.LooksLike.Win32.Suspicious.J!80
Microsoft Security Essentials	1.10600	Virus:Win32/Virut.BO
MicroWorld-eScan	12.0.250.0	Win32.Virtob.Gen.12
NANO AntiVirus	0.28.0.59921	Virus.Win32.Virut.hpeg
Norman	7.04.04	Virut.HL
nProtect	2014-06-01.01	Virus/W32.Virut.Gen
Panda Antivirus	10.0.3.5	W32/Sality.AO
Qihoo-360	1.0.0.1015	Virus.Win32.Virut.O
Rising Antivirus	25.0.0.11	PE:Win32.Virut.cx!1553679
Sophos	4.98.0	W32/Scribble-B
Symantec	20131.1.5.61	W32.Virut.CF
Tencent	1.0.0.1	Virus.Win32.Virut.Gen.200006
The Hacker		W32/Virtob.Gen(F)
Total Defense	37.0.10973	Win32/Virut.17408
Trend Micro	9.740-1012	PE_VIRUX.R-3
TrendMicro-HouseCall	9.700-1001	PE_VIRUX.R-3
Vba32 AntiVirus	3.12.26.0	Virus.Virut.14
VIPRE Antivirus	29840	Virus.Win32.Virut.ce (v)
ViRobot	2011.4.7.4223	Win32.Virut.AM
Baidu-International	3.5.1.41473	Adware.Win32.CrossRider.bAC
Comodo Security	18575	ApplicUnwnt
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.Generic.a.(kcloud)

Plus-HD-9.6-codedownloader.exe (MD5: 97061a03e82b7e08c2c12489eb18f339) has been flagged by 50 scanners:

Scanner Software	Version	Result
Lavasoft Ad-Aware	12.0.163.0	Win32.Ramnit.N
Agnitum Outpost	5.5.1.3	Win32.Nimnul.Gen.2
AhnLab-V3	None	Win32/Ramnit.F
Avira AntiVir	7.11.152.90	W32/Ramnit.C
Antiy-AVL	0.1.0.1	Virus/Win32.Nimnul.a
avast!	8.0.1489.320	Win32:RmnDrp
AVG	14.0.0.3955	Win32/Zbot.G
Baidu-International	3.5.1.41473	Virus.Win32.Nimnul.$a
Bitdefender	7.2	Win32.Ramnit.N
Bkav FE	1.3.0.4959	W32.Tmgrtext.PE
CAT-QuickHeal	14.00	W32.Ramnit.BA
Clam AntiVirus	0.98.3	W32.Ramnit-1
CMC Antivirus	1.1.0.977	Virus.Win32.Ramit.1!O
Commtouch SDK	5.4.1.7	W32/Ramnit.D
Comodo Security	18402	Virus.Win32.Ramnit.K
Dr.Web	7.00.9.04080	Win32.Siggen.7
Emsisoft Anti-Malware	3.0.0.599	Win32.Ramnit.N (B)
ESET-NOD32	9877	Win32/Ramnit.H
Fortinet FortiGate	4	W32/Ramnit.C
F-Prot	4.7.1.166	W32/Ramnit.D
F-Secure	11.0.19100.45	Win32.Ramnit.N
G Data	24	Win32.Ramnit.N
IKARUS anti.virus	T3.1.6.1.0	Virus.Win32.Ramnit
Jiangmin	16.0.100	Win32/IRCNite.wi
K7 AntiVirus	9.178.12257	Virus ( 001d9d511 )
K7GW	9.178.12257	Virus ( 001d9d511 )
Kaspersky	12.0.0.1225	Virus.Win32.Nimnul.a
Kingsoft AntiVirus	2013.04.09.267	Win32.Ramnit.lx.30720
Malwarebytes	1.75.0001	Virus.Ramnit
McAfee	6.0.4.564	W32/Ramnit.a
McAfee-GW-Edition	2013	Heuristic.LooksLike.Win32.SuspiciousPE.J
Microsoft Security Essentials	1.10600	Virus:Win32/Ramnit.I
MicroWorld-eScan	12.0.250.0	Win32.Ramnit.N
NANO AntiVirus	0.28.0.59921	Virus.Win32.Nimnul.bmnup
Norman	7.04.04	Virut.HL
nProtect	2014-06-01.01	Virus/W32.SpyEye
Panda Antivirus	10.0.3.5	W32/Cosmu.C
Qihoo-360	1.0.0.1015	Virus.Win32.Ramnit.A
Rising Antivirus	25.0.0.11	PE:Win32.Ramnit.i!1075353400
Sophos	4.98.0	W32/Ramnit-A
Symantec	20131.1.5.61	W32.Ramnit.B!inf
Tencent	1.0.0.1	Virus.Win32.Dropper.k
Total Defense	37.0.10973	Win32/Ramnit.C
Trend Micro	9.740-1012	PE_RAMNIT.DEN
TrendMicro-HouseCall	9.700-1001	PE_RAMNIT.DEN
Vba32 AntiVirus	3.12.26.0	Virus.Win32.Nimnul.b
VIPRE Antivirus	29846	Virus.Win32.Ramnit.b (v)
ViRobot	2011.4.7.4223	Win32.Nimnul.A
Zillya	2.0.0.1809	Virus.Nimnul.Win32.2
The Hacker		W32/Virtob.Gen(F)

Plus-HD-9.6-bho64.dll (MD5: 9d88e714440e853680f180d46a4e7312) has been flagged by 9 scanners:

Scanner Software	Version	Result
Antiy-AVL	1.0.0.1	Trojan/Win32.TSGeneric
Baidu-International	3.5.1.41473	Adware.Win64.Crossrider.BE
ESET-NOD32	9916	a variant of Win64/Toolbar.Crossrider.E
IKARUS anti.virus	T3.1.6.1.0	AdWare.Agent
Malwarebytes	1.75.0.1	PUP.Optional.HDPlus.A
McAfee	6.0.4.564	Artemis!9D88E714440E
McAfee-GW-Edition	2013	Artemis!9D88E714440E
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.F47V0515
VIPRE Antivirus	30112	Crossrider (fs)

Software Behaviors

Scheduled tasks:: Plus-HD-9.6-nova.exe is scheduled as a task named 'temp_bd69fe80-f1b1-4f8f-b1a7-9e87900f7877-7'.

bd69fe80-f1b1-4f8f-b1a7-9e87900f7877-2.exe is scheduled as a task named 'temp_bd69fe80-f1b1-4f8f-b1a7-9e87900f7877-2'.

Startup Entries

Startup tasks:: 3cfa399a-1ff4-480c-9750-a200a41bf35a-5.exe is automatically launched at startup through a scheduled task named 05c44d44-a188-434a-91e3-0b3d4fc15d44-5.

3cfa399a-1ff4-480c-9750-a200a41bf35a-4.exe is automatically launched at startup through a scheduled task named 05c44d44-a188-434a-91e3-0b3d4fc15d44-4.

Plus-HD-9.6-codedownloader.exe is automatically launched at startup through a scheduled task named f8ed2ea5-d2ce-448f-8f39-00d0cdd359dc-6.

Plus-HD-9.6-nova.exe is automatically launched at startup through a scheduled task named f8ed2ea5-d2ce-448f-8f39-00d0cdd359dc-7.

964d7bdd-91f3-416c-b74a-1489f42d35d2-5.exe is automatically launched at startup through a scheduled task named f8ed2ea5-d2ce-448f-8f39-00d0cdd359dc-5.

964d7bdd-91f3-416c-b74a-1489f42d35d2-4.exe is automatically launched at startup through a scheduled task named f8ed2ea5-d2ce-448f-8f39-00d0cdd359dc-4.

Software Details

URL:: https://www.plus-hd.com
Support:: –
Installation path:: C:\Program Files\plus-hd-9.6
Uninstaller:: C:\Program Files\Plus-HD-9.6\Uninstall.exe /fcp=1
Size:: 9.00 MB
Language:: English

Plus-HD-9.6 Executable Details

Primary executable:: utils.exe
Name:: Plus-HD-9.6
Path:: C:\Program Files\plus-hd-9.6\utils.exe
MD5:: 155d4c15a2618880475b329aa2c505c3
SHA-1:: –
SHA-256:: –

Files installed by Plus-HD-9.6

File Type	Filename	MD5
EXE	uninstall.exe	d6e02a5c81f46d3afdc995879e7dc181
EXE	utils.exe Malware	155d4c15a2618880475b329aa2c505c3
DLL	Plus-HD-9.6-nova.dll	b7e7656a1df842c2b9894ee9308f3f85
XPI	57304.xpi	8f6881b6c838af594da8bc629e37e366
CRX	57304.crx	f0ab1ba1fc823e1efc946e27ca7076af
CRX	360-57304.crx	4702167a853f888e04c47d996ead2f4a
EXE	Plus-HD-9.6-novainstaller.exe Malware	1cee95ea2fb844353bfd72aad0a9760d
EXE	Plus-HD-9.6-nova.exe Malware	a234bc5ec2a3972746386fdbfb3d624b
EXE	Plus-HD-9.6-codedownloader.exe Malware	97061a03e82b7e08c2c12489eb18f339
DLL	Plus-HD-9.6-bho64.dll Malware	9d88e714440e853680f180d46a4e7312

Repair Plus-HD-9.6

Having issues with Plus-HD-9.6?

We recommend Fortect System Repair to automatically fix these issues

Download Now

Popularity

13% of users keep Plus-HD-9.6 installed

Overall Rating

Bad

Known Versions (3)

1.34.5.29: 56.19%
1.34.5.12: 28.60%
1.34.5.4: 15.21%

Geography Distribution