Home
Library
Evangelion Group
HDQuali2y-v2

HDQuali2y-v2

Known Malware

What is HDQuali2y-v2?

HDQuali2y-v2 is software application developed by Evangelion Group. It is most commonly found on computers running Windows 7 with nearly 69.23% of installations running this operating system. HDQuali2y-v2's installer is typically 9.00 MB in size and installs around 119 files. The most common release is 1.34.7.29 with 88.46% of all installations currently using this version.

HDQuali2y-v2 is most popular in the United States with 97.83% of installations residing in this country.

About HDQuali2y-v2?

HDQuali2y is a web browser advertisement extension designed to deliver ads to the user's web browser. The ads may come in the form of traditional banners or context-hyperlinks. It is important to note that the ads are injected on various web pages chosen by the software, not limited to those affiliated with the software or its affiliates. These ads are not endorsed by the underlying websites on which they appear. The software also periodically connects to remote servers to download new ad feeds and may track the domains and URLs visited by the user, as well as the links and advertisements they interact with while browsing the web.

Multiple virus scanners have detected malware in HDQuali2y-v2.

utils.exe (MD5: c5ed7c251f02392f8c1342b892ff9795) has been flagged by 43 scanners:

Scanner Software	Version	Result
Bkav FE	1.3.0.4959	HW32.CDB
IKARUS anti.virus	t3scan.1.6.1.0	PUA.PlusHD
Malwarebytes	v2014.08.06.10	PUP.Optional.CrossRider.A
Rising Antivirus	23.00.65.14804	PE:Malware.Obscure!1.9C59
Symantec	8/6/2014 rev. 4	WS.Reputation
AhnLab-V3	2014.11.06.00	PUP/Win32.CrossRider
avast!	8.0.1489.320	Win32:Crossrider-AI [PUP]
AVG	15.0.0.4189	Generic.727
Avira	7.11.183.118	ADWARE/CrossRider.Gen2
AVware	1.5.0.21	Crossrider (fs)
Baidu-International	3.5.1.41473	Adware.Win32.GoogUpdate.AlLB
CAT-QuickHeal	14.00	Trojan.NSIS.r5
Comodo Security	20002	ApplicUnwnt
Dr.Web	7.0.10.8210	Trojan.Crossrider.27798
ESET-NOD32	10678	a variant of Win32/Toolbar.CrossRider.AG
Fortinet FortiGate	5.0.999.0	Riskware/CrossRider
F-Prot	4.7.1.166	W32/S-9ad4719b!Eldorado
G Data	24	Win32.Adware.Crossrider.R
K7 AntiVirus	9.185.13888	Unwanted-Program ( 004a9d081 )
K7GW	9.185.13922	Unwanted-Program ( 004a9d081 )
Kaspersky	12.0.0.1225	Trojan.NSIS.GoogUpdate.ck
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.NSIS.ck.(kcloud)
McAfee	6.0.5.614	Artemis!B2DBE34C634A
McAfee-GW-Edition	v2014.2	BehavesLike.Win32.BadFile.fh
NANO AntiVirus	0.28.6.62995	Trojan.Win32.Crossrider.deaixn
Qihoo-360	1.0.0.1015	Win32/Trojan.921
Sophos	4.98.0	AppRider
Tencent	1.0.0.1	Nsis.Trojan.Googupdate.Pgcx
Trend Micro	9.740.0.1012	TROJ_GEN.R001C0EK214
TrendMicro-HouseCall	9.700.0.1001	TROJ_GEN.R001C0EK214
Vba32 AntiVirus	3.12.26.3	Trojan.GoogUpdate
VIPRE Antivirus	34554	Crossrider (fs)
Zillya	2.0.0.1976	Trojan.GoogUpdate.Win32.943
Lavasoft Ad-Aware	12.0.163.0	Gen:Variant.Adware.Kazy.374062
Avira AntiVir	7.11.164.214	ADWARE/CrossRider.Gen2
Antiy-AVL	1.0.0.1	Trojan/Win32.TSGeneric
Bitdefender	7.2	Gen:Variant.Adware.Kazy.374062
Emsisoft Anti-Malware	3.0.0.600	Gen:Variant.Adware.Kazy.374062 (B)
F-Secure	11.0.19100.45	Gen:Variant.Adware.Kazy.374062
MicroWorld-eScan	12.0.250.0	Gen:Variant.Adware.Kazy.374062
Panda Antivirus	10.0.3.5	Trj/Genetic.gen
Agnitum Outpost	5.5.1.3	PUA.Toolbar.CrossRider!
nProtect	2014-08-21.01	Trojan/W32.Agent.546160.D

d2f9d2f1-9dc6-4579-8ec5-b82208b3d9d0-11.exe (MD5: 5bf9a18b2c547c521fe192594f8693a9) has been flagged by 35 scanners:

Scanner Software	Version	Result
Lavasoft Ad-Aware	12.0.163.0	Gen:Variant.Adware.Kazy.374062
avast!	8.0.1489.320	Win32:Adware-gen [Adw]
AVG	14.0.0.3986	Generic.727
AVware	1.5.0.16	Crossrider (fs)
Bitdefender	7.2	Gen:Variant.Adware.Kazy.374062
Dr.Web	7.0.9.4080	Trojan.Crossrider.27302
Emsisoft Anti-Malware	3.0.0.600	Gen:Variant.Adware.Kazy.374062 (B)
ESET-NOD32	10202	a variant of Win32/Toolbar.CrossRider.AK
F-Secure	11.0.19100.45	Gen:Variant.Adware.Kazy.374062
G Data	24	Gen:Variant.Adware.Kazy.374062
IKARUS anti.virus	T3.1.6.1.0	not-a-virus:WebToolbar.CrossRider
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.Generic.a.(kcloud)
McAfee	6.0.4.564	Artemis!5BF9A18B2C54
McAfee-GW-Edition	2013.2	Artemis!5BF9A18B2C54
MicroWorld-eScan	12.0.250.0	Gen:Variant.Adware.Kazy.374062
Qihoo-360	1.0.0.1015	HEUR/Malware.QVM10.Gen
VIPRE Antivirus	31924	Crossrider (fs)
Kaspersky	12.0.0.1225	Trojan.NSIS.GoogUpdate.ck
Panda Antivirus	10.0.3.5	Trj/Chgt.C
Sophos	4.98.0	Generic PUA IH
Antiy-AVL	1.0.0.1	RiskWare[WebToolbar:not-a-virus]/Win32.CrossRider
Baidu-International	3.5.1.41473	PUA.Win32.CrossRider.bAJ
Fortinet FortiGate	5.1.152.0	Riskware/CrossRider
NANO AntiVirus	0.28.2.61349	Trojan.Win32.Crossrider.ddrrpp
Rising Antivirus	25.0.0.11	PE:Malware.Obscure!1.9C59
TrendMicro-HouseCall	9.700.0.1001	Suspicious_GEN.F47V0803
Avira AntiVir	7.11.166.100	ADWARE/CrossRider.Gen2
Comodo Security	19144	ApplicUnwnt
Tencent	1.0.0.1	Nsis.Trojan.Googupdate.Sxyk
nProtect	2014-08-21.01	Trojan/W32.Agent.350064.B
Symantec	20141.1.0.330	Trojan.ADH
Vba32 AntiVirus	3.12.26.3	Trojan.GoogUpdate
Zillya	2.0.0.1897	Trojan.GoogUpdate.Win32.201
AhnLab-V3	2014.08.01.00	PUP/Win32.Toolbar
F-Prot	4.7.1.166	W32/A-7d811582!Eldorado

b81a2ae5-07bf-4b28-b16b-d08080aa8a54-7.exe (MD5: 5a96f28d78f046038d9ee2f777d071de) has been flagged by 35 scanners:

Scanner Software	Version	Result
Avira AntiVir	7.11.166.100	ADWARE/CrossRider.Gen2
AVG	14.0.0.4007	Generic.727
AVware	1.5.0.16	Crossrider (fs)
Comodo Security	19144	ApplicUnwnt
Dr.Web	7.0.9.4080	Trojan.Crossrider.27505
ESET-NOD32	10232	a variant of Win32/Toolbar.CrossRider.AG
Fortinet FortiGate	5.1.152.0	Riskware/CrossRider
IKARUS anti.virus	T3.1.6.1.0	not-a-virus:WebToolbar.CrossRider
Kaspersky	12.0.0.1225	Trojan.NSIS.GoogUpdate.ck
McAfee	6.0.4.564	Artemis!5A96F28D78F0
McAfee-GW-Edition	2013.2	Artemis!5A96F28D78F0
NANO AntiVirus	0.28.2.61349	Trojan.Win32.Crossrider.ddrpek
Panda Antivirus	10.0.3.5	Trj/Genetic.gen
Sophos	4.98.0	Generic PUA BP
Tencent	1.0.0.1	Nsis.Trojan.Googupdate.Sxyk
TrendMicro-HouseCall	9.700.0.1001	Suspicious_GEN.F47V0803
VIPRE Antivirus	32092	Crossrider (fs)
Antiy-AVL	1.0.0.1	Trojan/NSIS.GoogUpdate
avast!	8.0.1489.320	Win32:Crossrider-M [PUP]
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.NSIS.ck.(kcloud)
nProtect	2014-08-21.01	Trojan/W32.Agent.350064.B
Symantec	20141.1.0.330	Trojan.ADH
Vba32 AntiVirus	3.12.26.3	Trojan.GoogUpdate
Zillya	2.0.0.1897	Trojan.GoogUpdate.Win32.201
AhnLab-V3	2014.08.01.00	PUP/Win32.Toolbar
F-Prot	4.7.1.166	W32/A-7d811582!Eldorado
Qihoo-360	1.0.0.1015	Win32/Trojan.e1c
Baidu-International	3.5.1.41473	PUA.Win32.CrossRider.bAG
G Data	24	Win32.Trojan.Agent.NDHGJE
Lavasoft Ad-Aware	12.0.163.0	Gen:Variant.Adware.Kazy.374062
Bitdefender	7.2	Gen:Variant.Adware.Kazy.374062
Emsisoft Anti-Malware	3.0.0.600	Gen:Variant.Adware.Kazy.374062 (B)
F-Secure	11.0.19100.45	Gen:Variant.Adware.Kazy.374062
MicroWorld-eScan	12.0.250.0	Gen:Variant.Adware.Kazy.374062
Rising Antivirus	25.0.0.11	PE:Malware.Obscure!1.9C59

b81a2ae5-07bf-4b28-b16b-d08080aa8a54-6.exe (MD5: cb7b11b49a086d47b24be12e90a9858b) has been flagged by 30 scanners:

Scanner Software	Version	Result
AhnLab-V3	2014.08.11.00	PUP/Win32.Toolbar
Avira AntiVir	7.11.166.100	ADWARE/CrossRider.Gen2
AVG	14.0.0.4007	Generic.727
AVware	1.5.0.16	Crossrider (fs)
ESET-NOD32	10231	a variant of Win32/Toolbar.CrossRider.AE
Fortinet FortiGate	5.1.152.0	Riskware/CrossRider
Kaspersky	12.0.0.1225	Trojan.NSIS.GoogUpdate.ck
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.NSIS.ck.(kcloud)
McAfee	6.0.4.564	Artemis!CB7B11B49A08
McAfee-GW-Edition	2013.2	Artemis!CB7B11B49A08
Panda Antivirus	10.0.3.5	Trj/Genetic.gen
Sophos	4.98.0	Generic PUA FJ
TrendMicro-HouseCall	9.700.0.1001	Suspicious_GEN.F47V0803
VIPRE Antivirus	32092	Crossrider (fs)
avast!	8.0.1489.320	Win32:Adware-gen [Adw]
Dr.Web	7.0.9.4080	Trojan.Crossrider.27284
F-Prot	4.7.1.166	W32/A-eb9ef301!Eldorado
IKARUS anti.virus	T3.1.6.1.0	not-a-virus:WebToolbar.CrossRider
NANO AntiVirus	0.28.2.61349	Trojan.Win32.Crossrider.ddiuus
Rising Antivirus	25.0.0.11	PE:Malware.Obscure!1.9C59
Symantec	20131.1.5.61	WS.Reputation.1
Antiy-AVL	1.0.0.1	Trojan/NSIS.GoogUpdate
Lavasoft Ad-Aware	12.0.163.0	Gen:Variant.Adware.Kazy.374109
Bitdefender	7.2	Gen:Variant.Adware.Kazy.374109
Emsisoft Anti-Malware	3.0.0.600	Gen:Variant.Adware.Kazy.374109 (B)
F-Secure	11.0.19100.45	Gen:Variant.Adware.Kazy.374109
G Data	24	Gen:Variant.Adware.Kazy.374109
MicroWorld-eScan	12.0.250.0	Gen:Variant.Adware.Kazy.374109
Qihoo-360	1.0.0.1015	Win32/Trojan.921
Tencent	1.0.0.1	Nsis.Trojan.Googupdate.Ljtk

b81a2ae5-07bf-4b28-b16b-d08080aa8a54-5.exe (MD5: 5da7317d227708117e11d3ce616f14f8) has been flagged by 26 scanners:

Scanner Software	Version	Result
Lavasoft Ad-Aware	12.0.163.0	Gen:Variant.Adware.Kazy.374109
avast!	8.0.1489.320	Win32:Adware-gen [Adw]
AVG	14.0.0.3986	Generic.727
AVware	1.5.0.16	Crossrider (fs)
Bitdefender	7.2	Gen:Variant.Adware.Kazy.374109
Emsisoft Anti-Malware	3.0.0.600	Gen:Variant.Adware.Kazy.374109 (B)
ESET-NOD32	10195	a variant of Win32/Toolbar.CrossRider.AH
F-Secure	11.0.19100.45	Gen:Variant.Adware.Kazy.374109
G Data	24	Gen:Variant.Adware.Kazy.374109
IKARUS anti.virus	T3.1.6.1.0	AdWare.Adload
MicroWorld-eScan	12.0.250.0	Gen:Variant.Adware.Kazy.374109
Rising Antivirus	25.0.0.11	PE:Malware.Obscure!1.9C59
VIPRE Antivirus	31872	Crossrider (fs)
Antiy-AVL	1.0.0.1	Trojan/NSIS.GoogUpdate
Dr.Web	7.0.9.4080	Trojan.Crossrider.27652
Kaspersky	12.0.0.1225	Trojan.NSIS.GoogUpdate.ck
Kingsoft AntiVirus	2013.4.9.267	Win32.Troj.NSIS.ck.(kcloud)
Panda Antivirus	10.0.3.5	Trj/Chgt.C
Qihoo-360	1.0.0.1015	Win32/Trojan.921
Symantec	20131.1.5.61	Trojan.ADH
Fortinet FortiGate	5.1.152.0	Riskware/CrossRider
McAfee	6.0.4.564	Artemis!A2443C40DFFF
Tencent	1.0.0.1	Nsis.Trojan.Googupdate.Ljtk
TrendMicro-HouseCall	9.700.0.1001	Suspicious_GEN.F47V0803
Sophos	4.98.0	Generic PUA GK
Avira AntiVir	7.11.165.42	ADWARE/CrossRider.Gen2

Startup Entries

Startup tasks:: f6fc667b-2894-459a-b9d6-381725717547-5.exe is automatically launched at startup through a scheduled task named f6fc667b-2894-459a-b9d6-381725717547-5_user.

b81a2ae5-07bf-4b28-b16b-d08080aa8a54-7.exe is automatically launched at startup through a scheduled task named b81a2ae5-07bf-4b28-b16b-d08080aa8a54-1.

b81a2ae5-07bf-4b28-b16b-d08080aa8a54-6.exe is automatically launched at startup through a scheduled task named b81a2ae5-07bf-4b28-b16b-d08080aa8a54-6.

b81a2ae5-07bf-4b28-b16b-d08080aa8a54-5.exe is automatically launched at startup through a scheduled task named b81a2ae5-07bf-4b28-b16b-d08080aa8a54-5_user.

b81a2ae5-07bf-4b28-b16b-d08080aa8a54-4.exe is automatically launched at startup through a scheduled task named e267594c-af4f-40de-95cf-e0051fb92c09.

b81a2ae5-07bf-4b28-b16b-d08080aa8a54-11.exe is automatically launched at startup through a scheduled task named b81a2ae5-07bf-4b28-b16b-d08080aa8a54-3.

Software Details

URL:: –
Support:: –
Installation path:: C:\Program Files\hdquali2y-v2
Uninstaller:: C:\Program Files\HDQuali2y-v2\Uninstall.exe /fcp=1
Size:: 9.00 MB
Language:: English

HDQuali2y-v2 Executable Details

Primary executable:: utils.exe
Name:: HDQuali2y-v2
Path:: C:\Program Files\hdquali2y-v2\utils.exe
MD5:: c5ed7c251f02392f8c1342b892ff9795
SHA-1:: –
SHA-256:: –

Files installed by HDQuali2y-v2

File Type	Filename	MD5
DLL	newtonsoft.json.dll	0900b6c72905788aca613f89fe739bd3
EXE	uninstall.exe	ab91a7350a5fddcdf0a7b0c60e8e4e71
DLL	Interop.IWshRuntimeLibrary.dll	5e8e81170731f5521bf540e5e374b011
DLL	WebSocket4Net.dll	06bef001533cc9b2aee78e0315432f94
EXE	utils.exe Malware	c5ed7c251f02392f8c1342b892ff9795
DLL	SuperSocket.ClientEngine.Protocol.dll	054eb97126c57f5476abc3c6f8586eab
DLL	SuperSocket.ClientEngine.Core.dll	55bbde7f48a5ef7a8254bfeb3a5a39d7
DLL	SuperSocket.ClientEngine.Common.dll	9161b2db6facc5aa59f5eae689ec05af
EXE	d2f9d2f1-9dc6-4579-8ec5-b82208b3d9d0-11.exe Malware	5bf9a18b2c547c521fe192594f8693a9
EXE	bbfaa962-37b1-4464-a714-7cee0f7eb4a6-7.exe	b3fae9e34c13540e272707795a7a8991

Repair HDQuali2y-v2

Having issues with HDQuali2y-v2?

We recommend Fortect System Repair to automatically fix these issues

Download Now

Popularity

18% of users keep HDQuali2y-v2 installed

Overall Rating

Bad

Known Versions (2)

1.34.7.29: 88.46%
1.34.7.1: 11.54%

Geography Distribution