What is hdshop?

hdshop is software application developed by InstalleRex-WebPick. It is most commonly found on computers running Windows 7 with nearly 47.62% of installations running this operating system. hdshop's installer is typically 8.00 MB in size and installs around 12 files.

hdshop is most popular in the United States with 74.75% of installations residing in this country.

About hdshop?

This software is an adware browser extension associated with the JustPlug.It platform. It is commonly distributed through the WebPick (InstalleRex) download and install manager, often bundled with various adware offers. The extension functions across multiple browsers and is comprised of several components, including a Windows service, an auto-starting feature, and a browser toolbar/plugin. Its primary purpose is to inject various forms of advertisements, such as banner ads, hyper-text links, and pop-ups, into the user's browsing experience. Furthermore, some iterations of this software may also intercept existing website advertising and insert affiliate codes into links to offer coupons. Users may encounter deceptive advertisements, including those promoting fake updates for popular programs and unwanted pop-up ads. Additionally, the installation of this software typically results in the inclusion of other adware utilities and browser extensions. Please note that specific software details and distribution methods may vary over time. It is important to stay informed about the latest developments and potential security risks associated with this software.

Multiple virus scanners have detected malware in hdshop.

utils.exe (MD5: 27d714e75dbd9de32393ffbedbf6aca6) has been flagged by 28 scanners:

Scanner Software	Version	Result
AhnLab-V3	N	PUP/Win32.Adware
avast!	2014.9-140422	Win32:Dropper-gen [Drp]
Baidu-International	4.0.3.14422	Trojan.Win32.VMDetector.E
Bkav FE	1.3.0.4959	HW32.CDB
Dr.Web	9.0.0.0112	Trojan.Crossrider.4794
ESET-NOD32	8.9704	Win32/Toolbar.CrossRider.AB
K7 AntiVirus	13.176.11833	Trojan
K7GW	13.176.11833	Trojan ( 004973ed1 )
Malwarebytes	v2014.04.22.10	PUP.Optional.CrossRider.A
McAfee	5600.7153	Artemis!27D714E75DBD
McAfee-GW-Edition	7.7153	Artemis!27D714E75DBD
Symantec	4/22/2014 rev. 3	WS.Reputation
TrendMicro-HouseCall	7.2.112	TROJ_GEN.F47V0319
Lavasoft Ad-Aware	12.0.163.0	Trojan.Generic.11159310
AVG	13.0.0.3169	Generic5.APUZ
Bitdefender	7.2	Trojan.Generic.11159310
Emsisoft Anti-Malware	3.0.0.596	Trojan.Generic.11159310 (B)
Fortinet FortiGate	4	Riskware/Toolbar_CrossRider
F-Secure	11.0.19100.45	Trojan.Generic.11159310
G Data	24	Trojan.Generic.11159310
IKARUS anti.virus	T3.1.6.1.0	Trojan.SuspectCRC
MicroWorld-eScan	12.0.250.0	Trojan.Generic.11159310
nProtect	2014-04-21.01	Trojan.Generic.11159310
VIPRE Antivirus	28474	Crossrider (fs)
NANO AntiVirus	0.28.0.59492	Trojan.Win32.Crossrider.cwhmph
Norman	7.03.02	Suspicious_Gen4.GBYYM
Sophos	4.98.0	AppRider
SUPERAntiSpyware	5.6.0.1032	Trojan.Agent/Gen-Crossrider

hdshop-updater.exe (MD5: 68754894d391aa3d94e8866265b52c6c) has been flagged by 4 scanners:

Scanner Software	Version	Result
avast!	8.0.1489.320	Win32:Malware-gen
Malwarebytes	1.75.0001	PUP.Optional.HDShop.A
SUPERAntiSpyware	5.6.0.1032	Trojan.Agent/Gen-Crossrider
VIPRE Antivirus	27544	Crossrider (fs)

hdshop-firefoxinstaller.exe (MD5: 8c8acd27dacee4c974d1907cb64ce75e) has been flagged by 2 scanners:

Scanner Software	Version	Result
Malwarebytes	1.75.0001	PUP.Optional.HDShop.A
VIPRE Antivirus	27544	Crossrider (fs)

hdshop-enabler.exe (MD5: dd8d6f8dec3fda976b0fb811d5fb53f1) has been flagged by 26 scanners:

Scanner Software	Version	Result
Lavasoft Ad-Aware	12.0.163.0	Trojan.Generic.11159310
avast!	8.0.1489.320	Win32:Rootkit-gen [Rtk]
AVG	13.0.0.3169	Generic5.APUZ
Baidu-International	3.5.1.41473	Adware.Win32.Lyrics.71
Bitdefender	7.2	Trojan.Generic.11159310
Dr.Web	7.00.9.04080	Trojan.Crossrider.950
Emsisoft Anti-Malware	3.0.0.596	Trojan.Generic.11159310 (B)
ESET-NOD32	9704	a variant of Win32/Toolbar.CrossRider.AC
Fortinet FortiGate	4	Riskware/Toolbar_CrossRider
F-Secure	11.0.19100.45	Trojan.Generic.11159310
G Data	24	Trojan.Generic.11159310
IKARUS anti.virus	T3.1.6.1.0	Trojan.SuspectCRC
K7 AntiVirus	9.176.11833	Trojan ( 004984e91 )
K7GW	9.176.11833	Trojan ( 004984e91 )
Malwarebytes	1.75.0001	PUP.Optional.HDShop.A
McAfee	6.0.4.564	Artemis!DD8D6F8DEC3F
McAfee-GW-Edition	2013	Artemis!DD8D6F8DEC3F
MicroWorld-eScan	12.0.250.0	Trojan.Generic.11159310
nProtect	2014-04-21.01	Trojan.Generic.11159310
TrendMicro-HouseCall	9.700-1001	TROJ_GEN.F47V0308
VIPRE Antivirus	28474	Crossrider (fs)
NANO AntiVirus	0.28.0.59492	Trojan.Win32.Crossrider.cwhmph
Norman	7.03.02	Suspicious_Gen4.GBYYM
Sophos	4.98.0	AppRider
Symantec	20131.1.5.61	Adware.Crossid
SUPERAntiSpyware	5.6.0.1032	Trojan.Agent/Gen-Crossrider

hdshop-codedownloader.exe (MD5: e78d8f4c7b509616300da9f0a497ffee) has been flagged by 24 scanners:

Scanner Software	Version	Result
Lavasoft Ad-Aware	12.0.163.0	Trojan.Generic.11160541
AVG	13.0.0.3169	Generic5.APUU
Baidu-International	3.5.1.41473	Adware.Win32.CrossAd.45
Bitdefender	7.2	Trojan.Generic.11160541
Dr.Web	7.00.9.04080	Trojan.Crossrider.7193
Emsisoft Anti-Malware	3.0.0.596	Trojan.Generic.11160541 (B)
ESET-NOD32	9704	a variant of Win32/Toolbar.CrossRider.AA
Fortinet FortiGate	4	Riskware/Toolbar_CrossRider
F-Secure	11.0.19100.45	Trojan.Generic.11160541
G Data	24	Trojan.Generic.11160541
IKARUS anti.virus	T3.1.6.1.0	Trojan.SuspectCRC
Malwarebytes	1.75.0001	PUP.Optional.HDShop.A
McAfee	6.0.4.564	Artemis!E78D8F4C7B50
McAfee-GW-Edition	2013	Artemis!E78D8F4C7B50
MicroWorld-eScan	12.0.250.0	Trojan.Generic.11160541
NANO AntiVirus	0.28.0.59492	Trojan.Win32.Crossrider.cwhmph
Norman	7.03.02	Suspicious_Gen4.GBYYM
nProtect	2014-04-21.01	Trojan.Generic.11160541
VIPRE Antivirus	28474	Crossrider (fs)
Sophos	4.98.0	AppRider
Symantec	20131.1.5.61	Adware.Crossid
TrendMicro-HouseCall	9.700-1001	TROJ_GEN.R092H05D414
avast!	8.0.1489.320	Win32:Malware-gen
SUPERAntiSpyware	5.6.0.1032	Trojan.Agent/Gen-Crossrider

Startup Entries

Startup tasks:

hdshop-updater.exe is automatically launched at startup through a scheduled task named hdshop-updater.
hdshop-firefoxinstaller.exe is automatically launched at startup through a scheduled task named hdshop-firefoxinstaller.
hdshop-enabler.exe is automatically launched at startup through a scheduled task named hdshop-enabler.
hdshop-codedownloader.exe is automatically launched at startup through a scheduled task named hdshop-codedownloader.
hdshop-chromeinstaller.exe is automatically launched at startup through a scheduled task named hdshop-chromeinstaller.

Software Details

URL:

–

Support:

–

Installation path:

C:\Program Files\hdshop

Uninstaller:

C:\Program Files\hdshop\Uninstall.exe /fromcontrolpanel=1

Size:

8.00 MB

Language:

English

hdshop Executable Details

Primary executable:

utils.exe

Name:

hdshop

Path:

C:\Program Files\hdshop\utils.exe

MD5:

27d714e75dbd9de32393ffbedbf6aca6

SHA-1:

–

SHA-256:

–

File Type

Filename

MD5

EXE

uninstall.exe

ab91a7350a5fddcdf0a7b0c60e8e4e71

EXE

utils.exe

Malware

27d714e75dbd9de32393ffbedbf6aca6

XPI

52800.xpi

8df659e4b1aaa2cfe5bb222490310e3e

CRX

52800.crx

87f7ac147645a91756460fdabde3041d

EXE

hdshop-updater.exe

Malware

68754894d391aa3d94e8866265b52c6c

EXE

hdshop-firefoxinstaller.exe

Malware

8c8acd27dacee4c974d1907cb64ce75e

EXE

hdshop-enabler.exe

Malware

dd8d6f8dec3fda976b0fb811d5fb53f1

EXE

hdshop-codedownloader.exe

Malware

e78d8f4c7b509616300da9f0a497ffee

EXE

hdshop-chromeinstaller.exe

Malware

196b5a487fb970c3b49fc3c0de51f8fe

DLL

hdshop-bho64.dll

Malware

2ff2e982fe45921511b38f004ad2600a

File Type	Filename	MD5
EXE	uninstall.exe	ab91a7350a5fddcdf0a7b0c60e8e4e71
EXE	utils.exe Malware	27d714e75dbd9de32393ffbedbf6aca6
XPI	52800.xpi	8df659e4b1aaa2cfe5bb222490310e3e
CRX	52800.crx	87f7ac147645a91756460fdabde3041d
EXE	hdshop-updater.exe Malware	68754894d391aa3d94e8866265b52c6c
EXE	hdshop-firefoxinstaller.exe Malware	8c8acd27dacee4c974d1907cb64ce75e
EXE	hdshop-enabler.exe Malware	dd8d6f8dec3fda976b0fb811d5fb53f1
EXE	hdshop-codedownloader.exe Malware	e78d8f4c7b509616300da9f0a497ffee
EXE	hdshop-chromeinstaller.exe Malware	196b5a487fb970c3b49fc3c0de51f8fe
DLL	hdshop-bho64.dll Malware	2ff2e982fe45921511b38f004ad2600a

hdshop

What is hdshop?

About hdshop?

Multiple virus scanners have detected malware in hdshop.

Startup Entries

Software Details

hdshop Executable Details