HD_Quality_v2

HD_Quality_v2

Known Adware

by Evangelion Group

What is HD_Quality_v2?

HD_Quality_v2 is software application developed by Evangelion Group. It is most commonly found on computers running Windows Vista with nearly 50.00% of installations running this operating system. HD_Quality_v2's installer is typically 12.00 MB in size and installs around 88 files. The most common release is 1.35.3.9 with 50.00% of all installations currently using this version.

HD_Quality_v2 is most popular in the United States with 71.43% of installations residing in this country.

HD_Quality_v2 adds 1 scheduled task to the Windows Task Scheduler launching the program at randomly scheduled times.

Multiple virus scanners have detected malware in HD_Quality_v2.

utils.exe (MD5: e6441d248f1e2b850460ba1ef9c3b39a) has been flagged by 40 scanners:
Scanner Software Result
AhnLab-V3 PUP/Win32.Solimba
Bkav FE HW32.CDB
G Data NSIS.Adware.Crossrider
IKARUS anti.virus PUA.PlusHD
Malwarebytes PUP.Optional.CrossRider.A
Rising Antivirus PE:Malware.Obscure!1.9C59
Symantec WS.Reputation
AegisLab Troj.W32.Gen
Agnitum Outpost PUA.Toolbar.CrossRider!
Antiy-AVL Trojan/Win32.TSGeneric
AVG Generic.332
Avira ADWARE/CrossRider.Gen2
AVware Crossrider (fs)
Baidu-International PUA.Win32.CrossRider.bAE
Comodo Security ApplicUnwnt
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.AE
Fortinet FortiGate Riskware/Toolbar_CrossRider
K7 AntiVirus Trojan ( 0049ee4b1 )
K7GW Trojan ( 0049ee4b1 )
Kaspersky not-a-virus:WebToolbar.Win32.CroRi.btj
McAfee Artemis!1ADFE7BB30D1
McAfee-GW-Edition BehavesLike.Win32.BadFile.hh
Qihoo-360 Win32/Virus.Adware.5c3
Sophos AppRider
TrendMicro-HouseCall Suspicious_GEN.F47V0716
VIPRE Antivirus Crossrider (fs)
Zillya Adware.CroRi.Win32.527
SUPERAntiSpyware Trojan.Agent/Gen-Plush
Lavasoft Ad-Aware Gen:Variant.Adware.Kazy.374062
Avira AntiVir ADWARE/CrossRider.Gen2
Bitdefender Gen:Variant.Adware.Kazy.374062
Dr.Web Trojan.Crossrider.27043
Emsisoft Anti-Malware Gen:Variant.Adware.Kazy.374062 (B)
F-Secure Gen:Variant.Adware.Kazy.374062
MicroWorld-eScan Gen:Variant.Adware.Kazy.374062
NANO AntiVirus Trojan.Win32.Crossrider.ddmrxj
Panda Antivirus Trj/Genetic.gen
F-Prot W32/A-eb9ef301!Eldorado
Jiangmin Adware/Adload.ayk
Vba32 AntiVirus AdWare.AdLoad
HD-Quality-v2-novainstaller.exe (MD5: e55ab499fd44e55d3b8796db36c32bd0) has been flagged by 24 scanners:
Scanner Software Result
Avira AntiVir ADWARE/CrossRider.Gen2
AVG Generic.332
Baidu-International Adware.Win32.CrossRider.BAJ
Comodo Security ApplicUnwnt
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.AJ
Fortinet FortiGate Riskware/Toolbar_CrossRider
IKARUS anti.virus AdWare.Adload
K7 AntiVirus Trojan ( 0049bec01 )
K7GW Trojan ( 0049bec01 )
McAfee Artemis!E55AB499FD44
McAfee-GW-Edition Artemis!E55AB499FD44
NANO AntiVirus Riskware.Win32.CrossRider.dcisqj
Panda Antivirus Trj/Genetic.gen
Sophos Generic PUA OA
TrendMicro-HouseCall Suspicious_GEN.F47V0717
VIPRE Antivirus Crossrider (fs)
Symantec Trojan.ADH.2
AVware Crossrider (fs)
Jiangmin Adware/Adload.ayn
Qihoo-360 Win32/Virus.Adware.b3d
F-Prot W32/A-eb9ef301!Eldorado
Rising Antivirus PE:Malware.Obscure!1.9C59
AhnLab-V3 PUP/Win32.CrossRider
Vba32 AntiVirus AdWare.AdLoad
HD-Quality-v2-nova.exe (MD5: 1adfe7bb30d1bc7f529509d8a79d3609) has been flagged by 39 scanners:
Scanner Software Result
AegisLab Troj.W32.Gen
Agnitum Outpost PUA.Toolbar.CrossRider!
AhnLab-V3 PUP/Win32.Toolbar
Antiy-AVL Trojan/Win32.TSGeneric
AVG Generic.332
Avira ADWARE/CrossRider.Gen2
AVware Crossrider (fs)
Baidu-International PUA.Win32.CrossRider.bAE
Comodo Security ApplicUnwnt
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.AE
Fortinet FortiGate Riskware/Toolbar_CrossRider
G Data Win32.Adware.Crossrider.N
IKARUS anti.virus AdWare.CrossRider
K7 AntiVirus Trojan ( 0049ee4b1 )
K7GW Trojan ( 0049ee4b1 )
Kaspersky not-a-virus:WebToolbar.Win32.CroRi.btj
Malwarebytes PUP.Optional.HDQuality.A
McAfee Artemis!1ADFE7BB30D1
McAfee-GW-Edition BehavesLike.Win32.BadFile.hh
Qihoo-360 Win32/Virus.Adware.5c3
Sophos AppRider
Symantec Adware.Crossid
TrendMicro-HouseCall Suspicious_GEN.F47V0716
VIPRE Antivirus Crossrider (fs)
Zillya Adware.CroRi.Win32.527
SUPERAntiSpyware Trojan.Agent/Gen-Plush
Lavasoft Ad-Aware Gen:Variant.Adware.Kazy.374062
Avira AntiVir ADWARE/CrossRider.Gen2
Bitdefender Gen:Variant.Adware.Kazy.374062
Dr.Web Trojan.Crossrider.27043
Emsisoft Anti-Malware Gen:Variant.Adware.Kazy.374062 (B)
F-Secure Gen:Variant.Adware.Kazy.374062
MicroWorld-eScan Gen:Variant.Adware.Kazy.374062
NANO AntiVirus Trojan.Win32.Crossrider.ddmrxj
Panda Antivirus Trj/Genetic.gen
F-Prot W32/A-eb9ef301!Eldorado
Jiangmin Adware/Adload.ayk
Rising Antivirus PE:Malware.Obscure!1.9C59
Vba32 AntiVirus AdWare.AdLoad
HD-Quality-v2-codedownloader.exe (MD5: 9d47b4e0371352534cb08b10b1905834) has been flagged by 29 scanners:
Scanner Software Result
Avira AntiVir ADWARE/CrossRider.Gen2
AVG Generic.332
AVware Crossrider (fs)
Baidu-International Adware.Win32.CrossRider.bAK
Comodo Security ApplicUnwnt
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.AK
Fortinet FortiGate Riskware/Toolbar_CrossRider
IKARUS anti.virus not-a-virus:WebToolbar.CrossRider
K7 AntiVirus Trojan ( 0049c2ce1 )
K7GW Trojan ( 0049c2ce1 )
McAfee Artemis!9D47B4E03713
McAfee-GW-Edition Artemis!9D47B4E03713
NANO AntiVirus Riskware.Win32.CrossRider.dcqess
Panda Antivirus Trj/Genetic.gen
Sophos AppRider
Symantec WS.Reputation.1
TrendMicro-HouseCall Suspicious_GEN.F47V0724
VIPRE Antivirus Crossrider (fs)
Dr.Web Trojan.Crossrider.27073
Antiy-AVL RiskWare[WebToolbar:not-a-virus]/Win32.CrossRider
AhnLab-V3 PUP/Win32.BHO
Avira ADWARE/CrossRider.Gen2
F-Prot W32/A-eb9ef301!Eldorado
G Data Win32.Adware.Crossrider.K
Zillya Backdoor.PePatch.Win32.39761
Jiangmin Adware/Adload.ayk
Qihoo-360 Win32/Virus.Adware.b3d
Rising Antivirus PE:Malware.Obscure!1.9C59
Vba32 AntiVirus AdWare.AdLoad
HD-Quality-v2-bho.dll (MD5: 04f35bf6f13e525fb912ad40928d8497) has been flagged by 28 scanners:
Scanner Software Result
AhnLab-V3 PUP/Win32.BHO
AVG Generic.332
Avira ADWARE/CrossRider.Gen2
AVware Crossrider (fs)
Baidu-International PUA.Win32.CrossRider.bAF
ESET-NOD32 a variant of Win32/Toolbar.CrossRider.AF
F-Prot W32/A-eb9ef301!Eldorado
G Data Win32.Adware.Crossrider.K
IKARUS anti.virus not-a-virus:WebToolbar.CroRi
K7 AntiVirus Unwanted-Program ( 004a8e8b1 )
K7GW Unwanted-Program ( 004a8e8b1 )
Panda Antivirus Trj/Genetic.gen
Sophos AppRider
Symantec WS.Reputation.1
VIPRE Antivirus Crossrider (fs)
Zillya Backdoor.PePatch.Win32.39761
Avira AntiVir ADWARE/CrossRider.Gen2
Comodo Security ApplicUnwnt
Fortinet FortiGate Riskware/Toolbar_CrossRider
McAfee Artemis!2339188DC036
McAfee-GW-Edition Artemis!2339188DC036
TrendMicro-HouseCall Suspicious_GEN.F47V0722
Jiangmin Adware/Adload.ayk
NANO AntiVirus Riskware.Win32.AdLoad.dbdtre
Antiy-AVL RiskWare[WebToolbar:not-a-virus]/Win32.CrossRider
Qihoo-360 Win32/Virus.Adware.b3d
Rising Antivirus PE:Malware.Obscure!1.9C59
Vba32 AntiVirus AdWare.AdLoad

Software Behaviors

Scheduled tasks:
  • d7af74c2-d713-4817-aef3-2be3a9ff7824-4.exe is scheduled as a task named '34365513-71a2-4547-92cd-fc83c144ecb0'.

Startup Entries

Startup tasks:
  • HD_Quality_v2-codedownloader.exe is automatically launched at startup through a scheduled task named d7af74c2-d713-4817-aef3-2be3a9ff7824-1.
  • d7af74c2-d713-4817-aef3-2be3a9ff7824-5.exe is automatically launched at startup through a scheduled task named d7af74c2-d713-4817-aef3-2be3a9ff7824-5_user.
  • d7af74c2-d713-4817-aef3-2be3a9ff7824-4.exe is automatically launched at startup through a scheduled task named d7af74c2-d713-4817-aef3-2be3a9ff7824-4.
  • d7af74c2-d713-4817-aef3-2be3a9ff7824-11.exe is automatically launched at startup through a scheduled task named d7af74c2-d713-4817-aef3-2be3a9ff7824-3.
  • d7af74c2-d713-4817-aef3-2be3a9ff7824-2.exe is automatically launched at startup through a scheduled task named d7af74c2-d713-4817-aef3-2be3a9ff7824-2.

Software Details

URL:
Support:
Installation path:
C:\Program Files\hd_quality_v2
Uninstaller:
C:\Program Files\HD_Quality_v2\Uninstall.exe /fcp=1
Size:
12.00 MB
Language:
English

HD_Quality_v2 Executable Details

Primary executable:
utils.exe
Name:
HD_Quality_v2
Path:
C:\Program Files\hd_quality_v2\utils.exe
MD5:
e6441d248f1e2b850460ba1ef9c3b39a
SHA-1:
SHA-256:
Files installed by HD_Quality_v2
File Type Filename MD5
DLL
newtonsoft.json.dll
0900b6c72905788aca613f89fe739bd3
EXE
uninstall.exe
dc34899269950145d3ffa5f8874ac966
DLL
Interop.IWshRuntimeLibrary.dll
4e0ca22568d16b30316e01a222fadd89
DLL
WebSocket4Net.dll
e8fd9829cdd84a1166a21987f9cc6c0c
EXE
utils.exe
Adware
e6441d248f1e2b850460ba1ef9c3b39a
DLL
SuperSocket.ClientEngine.Protocol.dll
4802de6398df1a5ed11acb5cc3a400f5
DLL
SuperSocket.ClientEngine.Core.dll
b5f078905787bdf3508fb37f3e798af7
DLL
SuperSocket.ClientEngine.Common.dll
a1a5603cda9c9ec88b12db3878c5d095
DLL
HD-Quality-v2-nova.dll
42a3fac59359146f2c74d4e0a592f4ae
EXE
HD-Quality-v2-novainstaller.exe
Adware
e55ab499fd44e55d3b8796db36c32bd0