Kimahri Software inc.

Publisher Information

Kimahri Software inc. is a software developer located in Montreal, Quebec in Canada*. The company is a primary distributor of adware type software. There is one additional code signing certificate issued to this publisher.
Authority:
COMODO CA Limited

Valid from:
3/7/2013 5:30:00 AM

Valid to:
3/7/2016 5:29:59 AM

Subject:
CN=Kimahri Software inc., O=Kimahri Software inc., STREET=666 Sherbrooke Rue w, L=Montreal, S=Quebec, PostalCode=H3A 1E7, C=CA

Issuer:
CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:
00a1bb8569950c0b2080a11a0e2f618b33

Scanner detections:
Detections  (96% detected)

Scan engine
Details
Detections

Reason Heuristics
PUP.Crossrider.KimahriSoftwareinc.R, PUP.Crossrider.KimahriSoftwareinc.M, PUP.KimahriSoftwareinc.J, PUP.Crossrider.KimahriSoftwareinc.N, PUP.KimahriSoftwareinc.O, PUP.Installer.KimahriSoftwareinc.F, PUP.KimahriSoftwareinc.h, PUP.ResignedInterop.KimahriSoftwareinc.Z, Common.PUP.KimahriSoftwareinc.O, PUP.KimahriSoftwareinc.N, PUP.KimahriSoftwareinc.g, PUP.Crossrider.KimahriSoftwareinc.Q, PUP.KimahriSoftwareinc.P, PUP.KimahriSoftwareinc.DD, PUP.KimahriSoftwareinc.BB, PUP.KimahriSoftwareinc.FF
100.00%

VIPRE Antivirus
Crossrider, Threat.4789396
80.00%

G Data
Adware.Agent.OAS, Gen:Variant.Adware.Kazy.374109, Win32.Application.Plush, Gen:Adware.Plush, Adware.Generic.585693, Gen:Variant.Adware.Kazy.374062
78.00%

Panda Antivirus
PUP/PlusHD
74.00%

Baidu Antivirus
Adware.Win64.Crossrider, Adware.Win32.CrossRider, Adware.Win32.AddLyrics, Adware.Win32.CrossAd, Adware.Win32.Lyrics
62.00%

Malwarebytes
PUP.Optional.Feven.A, PUP.Optional.PlusHD.A, PUP.Optional.ScramblePacker.A, PUP.Optional.HQQuality.A, PUP.Optional.CrossRider.A
54.00%

ESET NOD32
Win64/Toolbar.Crossrider (variant), Win32/Toolbar.CrossRider.AA (variant), Win32/Toolbar.CrossRider (variant), Win32/Toolbar.CrossRider.AC (variant)
54.00%

Avira AntiVir
TR/Trash.Gen, Adware/CrossRider.A.4881, ADWARE/CrossRider.Gen2, Adware/CrossRider.AD, Adware/CrossRider.A.3361, Adware/CrossRider.A.3393
44.00%

IKARUS anti.virus
AdWare.PlusHD, AdWare.Plush, PUA.Plush, Virus.Win32.Virut, PUA.PlusHD, AdWare.Adload, Gen.AdWare.Plush, AdWare.Agent, Virus.Win32.Sality
42.00%

McAfee
Artemis!3D9C3B5B02C0, Artemis!09E1271B51C6, Adware-CrossR!D1D38EA62434, Adware-CrossR!36258C6B3B8E, Artemis!7E46C4DBF1A8, Artemis!67408832A700, Artemis!BA9908E5BB17, Artemis!52DFBE30C30C, Artemis!09BE87381F8A
38.00%

15 / 68    (Adware)
hqvideo-brinstaller.exe (by Fokclzcqimub)  (09be87381f8a4d322b7ab019b951aeb9)

3 / 68      (Adware)
plus-hd-1-3.exe (Ltpyxf by Virkmjoyplaqzo)  (d78acbbdb1857b671c68280172def1af)

13 / 68    (Adware)
hqquality_2606_br-c0929347.exe  (52dfbe30c30caa5c053d984d2b7a2e8f)

8 / 68      (Adware)
uninstall.exe  (70a180f7f5301ce75add759a7ec0e9f7)

47 / 68    (Adware)
plus-hd-9.4-bg.exe (Plus-HD-9.4 by Plus HD)  (7b1b829ceeb68d8ef42f6a57e7aa0681)

22 / 68    (Adware)

1 / 68      (Adware)
uninstall.exe  (80e79c770f18e2052feded7886cce086)

5 / 68      (Adware)
plus-hd-4.1-helper.exe  (59d6f3e2288116210aa14b5513bd63e8)

23 / 68    (Adware)
plus-hd-4.1-buttonutil.exe (Plus-HD-4.1 by Plus HD)  (4b2177624a376cc1ddda0bd825f41757)

5 / 68      (Adware)

5 / 68      (Adware)

5 / 68      (Adware)

11 / 68    (Adware)
plus-hd-9.5-nova.dll  (339ec40905d3fe91ee4d25b0750cb915)

22 / 68    (Adware)
plus-hd-9.5-bho64.dll (Plus-HD-9.5 by Plus HD)  (3e29095b69c0b57659fa577ae656a0ea)

1 / 68      (Adware)
uninstall.exe  (07719f5f90475f405219890445541a14)

5 / 68      (Adware)
cb407228-9b99-4257-b13b-e0ea64cb3ddb-9.exe  (2e55a0e6fccd1f7110f16710117b7f59)

23 / 68    (Adware)
plus-hd-9.5-nova.exe (Plus-HD-9.5 by Plus HD)  (b928cb223e6064af5b0b4eaf5d590223)

15 / 68    (Adware)

15 / 68    (Adware)

14 / 68    (Adware)

8 / 68      (Adware)
WebSocket4Net.dll (WebSocket4Net)  (7e596dc3834b9501ef00a90b92b820a1)

1 / 68      (inconclusive)
Newtonsoft.Json.dll (Json.NET by Newtonsoft)  (fc7ef76acef66ac2f0b7fad013a1e785)

1 / 68      (inconclusive)

5 / 68      (Adware)
cb407228-9b99-4257-b13b-e0ea64cb3ddb-11.exe (Torpedo)  (0f1171937b7e08777133261cf51ab66c)

14 / 68    (Adware)
hq_quality_v1.1-bho.dll (HQ_Quality_v1.1)  (735ff2dd82f5dd50e8ca595996114dfb)

17 / 68    (Adware)
hq_quality_v1.1-nova.exe (HQ_Quality_v1.1)  (ba9908e5bb17e932273ce1f52bb7db92)

23 / 68    (Adware)

10 / 68    (Adware)

12 / 68    (Adware)

19 / 68    (Adware)

 
Latest 30 of 6,399 files

The following certificate is also signed by Kimahri Software inc..

07C63B61BAA996BF90FF340CD94B17DA  (Jun 20, 2012 to Jun 21, 2013)

The following publishers (by Authenticode signature organization name) are related.

Detection Incidence by Country
* Note, the details and description above are based on the code signing digital signature issued to Kimahri Software inc. by COMODO CA Limited on March 07, 2013 with the serial number '00a1bb8569950c0b2080a11a0e2f618b33'.