Threat research notebook

Gridinsoft Security Lab

Fresh malware notes, phishing samples, scam redirects, ransomware observations, and field reports from Gridinsoft research. No gallery, no filler: date, case, finding, next read.

302 lab records

Field note ·

Trojan.Malware.300983.susgen

Learn what Trojan.Malware.300983.susgen means in VirusTotal results, when it is likely a false positive, and when...

Research log

01

Neshta.Virus.FileInfector.DDS

Record ·

Neshta.Virus.FileInfector.DDS is a file-infector alert. Learn what a Recycle Bin hit means, what to check, when it may be a false positive, and how...

02

Notepad++ XML File Risk

Record ·

Notepad++ 8.9.6.1 fixes config.xml and shortcuts.xml code execution flaws. Learn who is affected, how to update, and what to inspect after suspicious shortcuts or...

04

Extension Keeps Returning?

Record ·

If a browser extension keeps reinstalling itself, remove the source that restores it: sync, browser policy, startup tasks, companion apps, or PUA/adware persistence.

05

VFXmed Virus Warning

Record ·

Downloaded a VFXmed installer? Learn why cracked VFX software is risky, what Themida/DLL-hijack/infostealer alerts mean, and what to scan or secure next.

06

VectorGatewa.exe Removal

Record ·

VectorGatewa.exe keeps coming back after a game download? Learn what the file means, how to remove persistence safely, and which accounts to secure.

08

Lively.Watchdog.exe Check

Record ·

Lively.Watchdog.exe is usually part of Lively Wallpaper, but suspicious copies can be malware. Check the path, source, hash, and behavior before deleting it.

09

sdaCollector.vbs: Is It Safe?

Record ·

sdaCollector.vbs is usually tied to Slate Digital Connect, but path, startup entry, hash, and Possible Threat detections decide whether to keep or remove it.

10

Search1.me Redirect Fix

Record ·

Search1.me redirects usually point to a browser hijacker, unwanted extension, or policy leftover. Use this cleanup order to remove the redirect source and restore...

11

Are PnP Windows Drivers Safe?

Record ·

Plug-and-play Windows drivers are usually safer than random driver installers, but not risk-free. Learn when to trust Windows drivers and when to verify or...

13

WebWebWeb Redirect Fix

Record ·

WebWebWeb.com redirects can take over browser search, homepage, or new tab settings. Remove suspicious extensions, policies, notifications, apps, and leftovers safely.

15

Pulse Browser: Is It Safe? Removal Guide

Record ·

Detected PUP.Win64.PulseBrowser.dd!c or Pulse Browser setup.exe? Learn what it means, how to uninstall Pulse Browser, reset browser settings, and scan for leftovers.

16

Kiicvoq Apps Removal Guide

Record ·

Kiicvoq Apps appeared on your PC? Learn why it is treated as a PUA, how to remove the app and fake browser extension, and...

AI Assistant

Hello! 👋 How can I help you today?