How to Find cdgrab.exe Malware

What is cdgrab.exe?

cdgrab.exe is a legitimate process file popularly known as dBpoweramp CD Ripper. It belongs to dBpowerapm, developed by Illustrate, Inc. It is located in C:\Program Files by default.

Malware programmers write virus files with malicious scripts and save them as cdgrab.exe with an intention to spread virus on the internet.

Affected Platform: Windows OS

How to check if your computer is infected with cdgrab.exe malware?

If your system is affected by cdgrab.exe malware, you will notice one or several of the symptoms below:

cdgrab.exe occupies an unusually large CPU memory
Erratic internet connection
Your browser is bombarded with annoying popup ads
Computer screen freezes
PC's processing speed suffers
You are redirected to unknown websites

To pinpoint the virus file location, take the following steps:

Step 1: Press CTRL+ALT+DEL keys at once to open Task Manager.

Step 2: If you notice the file located outside C:\Program Files, you should run an antivirus scan to get rid of the malware.

How to remove cdgrab.exe malware from system using Comodo Cleaning Essentials?

You can either choose to remove cdgrab.exe and other malwares using Comodo Antivirus, or Comodo Cleaning Essentials (CCE) – both of which are absolutely free to download! CCE is a set of computer security tools designed to help you identify and remove malwares and unsafe processes from an infected computer.

To remove malwares using CCE, take the following steps:

1. Check the system requirements and download the feature-rich CCE suite for free.

2. After installation, choose the type of scan you want to perform. CCE offers 3 scan options to get rid of malwares from a PC:

Smart Scan: Does a scan on critical areas of your system.
Full Scan: Does a complete scan of your system.
Custom Scan: Does a scan only on selected items.

The process to initiate the above mentioned scans are self-explanatory and thus, easy-to-use.
Additionally, it's recommended that you approve of any updates that the CCE will prompt you about to ensure it does a better job of identifying all the latest threats.

3. Click 'Next' to view the results.

Regardless of the type of scan you choose, the results will sometimes show false positive (flagging files that are actually safe), which has to be ignored. Only select the files you want to get rid of.

4. Click 'Apply' to apply the selected operations to the threats. The selected operations will be applied.

Malware Entries

Safe Entries

First Seen: 08 February 2010 at 12:01 am

No.	Company	File Type	SHA1	MD5	Malware Name	Digitally Signed	File Version	Product Version	Submitted From	Malware Behavior
1	Illustrate	Executable	ea86dbdb3a1afabf 305ec7c7bc044c3f 92ef8941	8b579393304d9eda 83c915deaa0ef042	P2PWorm.Win3 2.Polip.A	No	12, 2, 0, 4	12, 2, 0, 4	India	N/A
2	N/A	Executable	d9a79083bb35b9c9 a1ce4e884f69018a 5db138bc	1154d19fcb95f464 c3ab8f0f4fae3488	Win32.Viking .CH~clean	No	N/A	N/A	Malaysia	N/A
3	Illustrate	Executable	204e90854c9d4263 2bf32af65dbcf081 a68e7db9	e2e176f802bf9c08 427a71091a9177bb	Virus.Win32. Virut.BV	No	4, 0, 0, 28	4, 0, 0, 28	Italy	N/A
4	Microsoft	Executable	73c7d82db6e4c635 af651456e8821995 09681db7	13a27694b7213dcb 8857d72d91277322	TrojWare.Win 32.VB.OSKB	No	1.00	1.00	Spain	N/A
5	Illustrate	Executable	c6f7717531844aa0 541989f2940b9e0f 8d3c5019	0f915a15e6bd1a9d 801deba37b8c1161	Virus.Win32. Sality.gen	No	4, 0, 0, 53	4, 0, 0, 53	Romania	N/A
6	Illustrate	Executable	cce11ec9c2c7f626 92d60aff8087894b cc743225	b6496ad96b08829d 51e950bd1d4059a7	Virus.Win32. Sality.gen	No	4, 2, 1, 2	4, 2, 1, 2	Russian Federation	N/A
7	Illustrate	Executable	e47a1bfdf3796b10 a479cf0e4431ea4c 3891de54	a1b747379778e7dc 77af1a094fcc4f1d	Virus.Win32. Virut.Ce	No	13, 3, 0, 2	13, 3, 0, 2	Australia	N/A
8	Illustrate	Executable	5b278aeecdddaa53 4d735b4a7b2ac604 89eed072	eb42fab54201bc54 9927ba5f8ee547e6	Virus.Win32. Parite.gen	No	13, 4, 0, 2	13, 4, 0, 2	Japan	N/A
9	N/A	Executable	14320c2d0fca80bb 7b2b3419ebcfcbf2 b574922c	1352463c9d57b657 8d7a06722dcfebfd	Worm.Win32.D elf.nj	No	N/A	N/A	United States	N/A
10	Illustrate	Executable	c064fdf72196d9d2 b96bd3dba9ebdb5e c68d9715	4ab83a5d3a4e6c48 1fd08bb2eff03afe	Packed.Win32 .MUPX.Gen	No	16.2.0.2	16.2.0.2	United States	N/A
11	N/A	Executable	f87266e6bf6e2d57 559d64f14c3b8f08 4d8da47f	6054e42de2937e2d d387cfedc8181ebb	Virus.Win32. Sality.gen	No	N/A	N/A	Moldova, Republic of	N/A

Prev 1 2 3 Next

Display 4 items per page

4 items per page
8 items per page
16 items per page
32 items per page

Safe Entries

First Seen: 17 August 2008 at 4:49 pm

No.	Company	File Type	SHA1	MD5	Digitally Signed	File Version	Product Version	Submitted From
1	Illustrate	Executable	a96a687ebddec710 c6cc16b7e838e051 c38c80c3	7cdc760862385a0b 01b34298d6c21628	No	13, 2, 0, 0	13, 2, 0, 0	Internal Submission
2	Illustrate	Executable	c75c1deb046997bb 9ba2cd3a837ffc31 909fbc41	6b7ef20c5c064e17 fa2e6b16e87a6b8e	No	4, 0, 0, 33	4, 0, 0, 33	Germany
3	Illustrate	Executable	a96a687ebddec710 c6cc16b7e838e051 c38c80c3	7cdc760862385a0b 01b34298d6c21628	No	13, 2, 0, 0	13, 2, 0, 0	Finland
4	Illustrate	Executable	1ddbc7469f775467 cfd06cd112e77d98 4c41363f	23c4250884a69dea fe306573bb064784	No	13, 5, 0, 0	13, 5, 0, 0	Internal Submission
5	Illustrate	Executable	454e8c6da6f70d2f a6efd4f4bcc1c714 254cdbe8	a14e85785420cab4 9693d86a98f36e7b	No	14, 0, 0, 0	14, 0, 0, 0	Macedonia
6	Illustrate	Executable	642b23e2741e1ef8 cc6ac8262dd6e970 fa631ad8	4175e0df81896978 0df6d080df117214	No	12, 0, 1, 2	12, 0, 1, 2	Netherlands
7	Illustrate	Executable	157283ae34610abe 71264c59abf01043 4cc90a0b	003334e50333bc9c 4cdd5fcf51cf9a6e	No	4, 2, 1, 2	4, 2, 1, 2	France
8	Illustrate	Executable	7574fb5d2064d3ba a1ad63b2d31e8e91 90e8163d	c03493d70a9bae3f 480c7d15eab7a0f7	No	15.0.0.0	15.0.0.0	10.224.1.62/32
9	Illustrate	Executable	49b9f290e34f61c1 4ff3eda94d304c3e 4a0a4b15	dcafdfad4ff9c89e c153e3b3c7984e6a	Yes	2024.11.4. 0	2024.11.4. 0	104.238.128.144/32
10	Illustrate	Executable	eebd121e57b47e98 69b78d79b3dbb874 083a9a0a	f44e123aaca70b11 5d7e8b11ee2671bf	No	13, 2, 0, 2	13, 2, 0, 2	United Kingdom
11	Illustrate	Executable	aacaca7726594c7a 3b1b7577c6b97106 a4f90a61	b0cf71f10744ba00 65bbcfb361a278a6	No	12, 1, 0, 1	12, 1, 0, 1	Internal Submission
12	Illustrate	Executable	211fb0b0dc80fbbd 9fb8c823cbc1f8cb a70c4dd7	7e32cb2020dd1464 effbd81c4b706769	No	13, 3, 0, 1	13, 3, 0, 1	Italy
13	Illustrate	Executable	a4208c2f1a4cdd52 d6fc21348deedb9e d7f8fb27	16c2fca8288bb967 3f9d09a76c727581	No	4, 1, 0, 0	4, 1, 0, 0	Brazil
14	Illustrate	Executable	775df48424efd93f 09c9ec1d43fe62f9 64ffe29c	10fb2d1a4f26f6c6 8be8fdb64ef3ce3b	No	13, 3, 0, 0	13, 3, 0, 0	Finland
15	Illustrate	Executable	89d8db51b12c428a 2cd062e41031f9f0 a4034077	99f9a73663adf72b 4a212d1255f9a9d3	No	12, 4, 0, 0	12, 4, 0, 0	Internal Submission
16	Illustrate	Executable	5cfc1051b28c0d18 8fca061845c3a755 22e4c0fd	2134b5160ff86542 9c852f110c9a4083	No	13, 4, 0, 1	13, 4, 0, 1	United States
17	Illustrate	Executable	775df48424efd93f 09c9ec1d43fe62f9 64ffe29c	10fb2d1a4f26f6c6 8be8fdb64ef3ce3b	No	13, 3, 0, 0	13, 3, 0, 0	Internal Submission
18	Illustrate	Executable	fd5b4596834787ad 1748a98c9ed5b1ee d0289f39	0e090713b35c9a85 5d9154f26c300feb	Yes	16.5.0.1	16.5.0.1	10.224.25.45/32
19	Illustrate	Executable	860b36c9ef17ae13 6e73e570f05217ce 2beae37a	ae3ef278fe17cf0a 096924ae3cf0ed03	No	12, 3, 0, 2	12, 3, 0, 2	United States
20	Illustrate	Executable	b011b0beb12ab656 bc905755561f4880 13eee05a	ef1f081aea78768f 5c4860e66c935e2f	No	12, 0, 1, 0	12, 0, 1, 0	Internal Submission
21	Illustrate	Executable	6a23bf1b97f96911 1f61f0e1660f951d 809257d4	1ef2dbf735a2b67f 9bd74a3fb996c638	No	12, 2, 0, 4	12, 2, 0, 4	Netherlands
22	N/A	Executable	ec02e5173bd0d181 271391cff57625e8 da150b80	8fbc6d6f2e0b1997 56b70b2417d21298	No	N/A	N/A	Internal Submission
23	Illustrate	Executable	f3e06131e913e22e 94ced41f92d6a2e8 fdcf12fd	bf67e644e3af71c9 b4b989e307ddeb2e	No	4, 0, 0, 64	4, 0, 0, 64	France
24	Illustrate	Executable	1d451448f1f4d882 d7aae49e62d40107 ead2939a	a0544a4242578e84 502c656c5597fbec	No	13, 0, 0, 0	13, 0, 0, 0	Internal Submission
25	N/A	Executable	0e35aedb3944ed62 9b797c56ad9fc351 43c1ba18	6e624dca9a232bea 47eb9b7c9e2a6c2f	No	N/A	N/A	Internal Submission
26	Illustrate	Executable	3fb087454df5d28d 2fa16a019ee4aba4 bd9b67dd	b6146a3a187b3057 8fb5856eb54609e2	No	4, 0, 0, 34	4, 0, 0, 34	Canada
27	Illustrate	Executable	93dd8cb83c3bdda4 bd10b2c4c79c09d1 094cecb7	c1a64b56e4193164 32da46ce73c7206a	No	13, 5, 0, 1	13, 5, 0, 1	Norway
28	Illustrate	Executable	6dc1c566335e9e59 221863a353220e63 8891a678	dfe8f48a248c9a6e ec4f29ed87628bb5	No	4, 2, 0, 0	4, 2, 0, 0	Hong Kong
29	Illustrate	Executable	57c8fd88346793c6 e0c2f0b995d8087b a69e911c	f63ae0d23d4b1737 1e43858286990eb1	No	13, 3, 0, 2	13, 3, 0, 2	Sweden
30	Illustrate	Executable	2eb7e0029ad29699 abf96ee4e015a984 cb20ebd6	0c63da3fe400d736 33d38930ca3896cb	No	12, 2, 0, 2	12, 2, 0, 2	Internal Submission
31	Illustrate	Executable	c263991dd54e92dd 607dd24579277722 8ba98480	c60bd89ddac2b77a 2b4c21ac5b2d8618	No	13, 4, 0, 2	13, 4, 0, 2	Taiwan
32	Illustrate	Executable	dbf477344281868e a0f9c3698fc7feae f313c0cb	863b744028d95c50 f6477ef05ad02637	No	15.0.0.10	15.0.0.10	Internal Submission
33	Illustrate	Executable	16db88f24d295302 dc800ccb2be78144 da87d14a	9d3ae29d75e6098f 5a18576ecb8bbf94	No	14.0.0.4	14.0.0.4	Poland
34	Illustrate	Executable	dd4f4a226f9a4d6a bae04c68e44fbe48 90a4fb99	dbbe9c050a069040 465a4b5272114142	No	13, 4, 0, 0	13, 4, 0, 0	Internal Submission
35	Illustrate	Executable	62aa2bc2c7fefc70 0af2169e1bddeb78 8003a914	a5da022f715567aa 964ad65fa1a14fdc	No	6, 4, 0, 0	6, 4, 0, 0	Internal Submission
36	Illustrate	Executable	c6a06b696e9b429b 53a41baead032e26 f8fbe7e0	ed62fc60edf2097b b83aac07892251b6	Yes	2024.4.1.0	2024.4.1.0	United States
37	Illustrate	Executable	fbb1176790d70760 8e4fb16b4d1420cd 2fd3c44d	6975449b7e2edaae 9e52f6e0fd8c1623	No	13.1.0.0	13, 1, 0, 0	Internal Submission
38	Illustrate	Executable	68b997a9dcbdff27 db95383425852f02 5013aacc	246caadfb645a578 72be7a3f0199b73a	No	13, 1, 0, 1	13, 1, 0, 1	United States
39	Illustrate	Executable	5787dbb875cf226c 99365e51f1200d5c abf309a7	f46e6eb9d61bdbfb 8ccfcd22d518ebdf	No	4, 0, 0, 34	4, 0, 0, 34	United States
40	Illustrate	Executable	cdacb7f69bbe0317 a019929fa9ddfc36 76a3d325	1042da347f0bb88d aa00f95a902a13b4	No	13, 2, 0, 1	13, 2, 0, 1	Italy
41	Illustrate	Executable	1cf4b2a6b92e1877 d006e63a1a91ae3b 5ce949c0	b5d59e1832afaa0f 991ad2ca8cc200aa	No	13, 5, 0, 2	13, 5, 0, 2	Germany
42	Illustrate	Executable	45f68a3d8e496629 3b7e26bcafaab9f6 edcf45eb	b6e49ae98b413681 2bd2157d8b765eb9	No	14.3.0.8	14.3.0.8	10.224.1.60/32
43	Illustrate	Executable	1d424970d7d6b177 e5d37bb3af58d3fe e1db2f0c	9b183e2b6fc90892 e14e56842df3ac1c	No	4, 0, 0, 39	4, 0, 0, 39	Ukraine
44	Illustrate	Executable	5bc1747aa5149480 2f228fea396a1cef 019fd042	f5e996c579517eda 01701d7de2c0fd4c	No	13, 0, 0, 2	13, 0, 0, 2	Spain
45	Illustrate	Executable	107660d720e20f49 18460d84aa9a81e6 ebd413d9	84d800ee9b987db1 dbb0a7d65775ed71	No	6, 0, 0, 1	6, 0, 0, 1	Internal Submission