Follow:

 

HackTool:Win32/BrowserPassview


Microsoft security software detects and removes this threat.

This hacktool can be used to retrieve the passwords stored in your web browser cache. Malware can also use this tool to steal your personal information.

You might have downloaded this onto your PC as "WebBrowserPassView", or malware may have installed it on your PC.

Find out ways that malware can get on your PC



What to do now

Hacktools are often installed intentionally. Deleting their installed components will remove them.

The following free Microsoft software also detect and remove this threat:

Even if we've already detected and removed this particular threat, running a full scan might find other malware that is hiding on your PC.

Get more help

You can also visit our advanced troubleshooting page or search the Microsoft virus and malware community for more help.

If you’re using Windows XP, see our Windows XP end of support page.

Threat behavior

This is a tool that is used to retrieve passwords stored in your web browser's cache.

The tool shows your user names and passwords for websites that you have saved in Internet Explorer, Firefox, Chrome, Opera, Safari and Sea Monkey:

The tool can also be run in hidden mode and can put the passwords it finds into a text file.

We have seen the following malware use this tool to steal passwords:

Analysis by Mihai Calota


Symptoms

The following could indicate that you have this threat on your PC:
  • You have the tool "WebBrowserPassView" installed on your PC

Prevention


Alert level: Medium
First detected by definition: 1.165.2745.0
Latest detected by definition: 1.187.44.0 and higher
First detected on: Jan 27, 2014
This entry was first published on: May 15, 2014
This entry was updated on: May 20, 2014

This threat is also detected as:
No known aliases