svchost.exe is the generic name of a legitimate Microsoft Windows process that can be found running in the Task Manager. Typically, there is more than one Service Host process running at once, since separate processes handle separate groups of services. For example, one svchost.exe process might
First discovered by malware security researcher, Sandor Nemes, Ghost (Jamper) is new variant of high-risk ransomware called Jamper. Once infiltrated, Ghost (Jamper) encrypts most stored files and appends filenames with a random string, probably comprising the victim's unique ID (e.g., "sample.jpg
Discovered by Michael Gillespie, DDT is part of GlobeImposter, a family of ransomware-type programs. Like most programs of this type, DDT encrypts files stored on computers and keeps them locked unless a ransom is paid (victims purchase a decryption tool that can decode files encrypted by DDT). I
The Heroset program belongs to the Djvu ransomware family and was discovered by Michael Gillespie. The main purpose of Heroset is to encrypt files (rendering them unusable) and force victims to pay a ransom (in effect, purchase a decryption tool). Heroset places the "_readme.txt" file (containin
Discovered by Michael Gillespie, Euclid is high-risk ransomware designed to encrypt most stored files, thereby rendering them unusable. During encryption, Euclid appends filenames with the ".euclid" extension. For instance, "sample.jpg" is renamed to "sample.jpg.euclid". Euclid also delivers a ra
Advanced Driver Booster is advertised as a useful device driver updater. Since it is important to keep installed drivers up-to-date, Advanced Driver Booster may seem to be a useful tool, however, developers distribute it by bundling it into set-ups of other software. People often download and ins
According to QBIT (Clean Pro's developers), this program cleans, optimizes and improves computer performance. It can supposedly remove malware, unwanted programs, invalid registry items, and so on. In fact, the developers promote QBIT Clean Pro by bundling it into other software setups. This incr
Belonging to the Djvu ransomware family, Poret is a high-risk file-encryption virus discovered by Michael Gillespie. Poret infiltrates the system and encrypts most stored data, thereby rendering it unusable. Additionally, Poret appends filenames with the ".poret" extension (e.g., "sample.jpg" is
The Pidom program belongs to the Djvu ransomware family and was discovered by Michael Gillespie. Malicious programs of this type encrypt files (rendering them unusable) and keep them locked unless a decryption tool is purchased. Pidom creates a ransom message in the "_readme.txt" file and renames
The moviestreamhd[.]org website allows users to stream online movies free of charge and without having to register. Note that this site streams movies illegally, since developers use rogue ad networks. Therefore, people who use this website risk being redirected to dubious websites that might be d