Step-by-Step Malware Removal Instructions

Screenshot Tool And Editor Adware
Adware

Screenshot Tool And Editor Adware

Screenshot Tool and Editor is advertised as a tool for taking screenshots of entire websites, capturing web page elements, and editing the screenshots (e.g., adding text). What is not advertised is that Screenshot Tool and Editor functions as adware, and thus generates unwanted advertisements. Ad

CryptoLocker-v3 Ransomware
Ransomware

CryptoLocker-v3 Ransomware

CryptoLocker-v3 is a malicious program belonging to the CryptoLocker ransomware family. It is designed to encrypt data and demand ransoms for decryption tools. During the encryption process, files are appended with the ".ecc" extension. For example, a file originally named something like "1.jpg" w

Clickmp3.com Suspicious Website
Adware

Clickmp3.com Suspicious Website

clickmp3[.]com offers download of videos from YouTube. Note that using websites such as clickmp3[.]com or third-party apps to download videos is against YouTube's Terms of Service. clickmp3[.]com also uses rogue advertising networks: the site contains dubious ads and opens other untrusted pages.

Resgateseup Ransomware
Ransomware

Resgateseup Ransomware

Discovered by 0x4143, Resgateseup is malicious software classified as ransomware. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption tools. Typically, ransomware renames affected files, however, the filenames of files encrypted by Resgatese

InitialDevice Adware (Mac)
Mac Virus

InitialDevice Adware (Mac)

InitialDevice changes browser settings, generates advertisements, and might also gather certain information. In this way, InitialDevice functions both as adware and as a browser hijacker. Typically, users download and install apps such as InitialDevice inadvertently and, therefore, they are cla

Spin The Wheel POP-UP Scam
Phishing/Scam

Spin The Wheel POP-UP Scam

"Spin The Wheel" is a scam promoted on various deceptive websites. There are several variants of this scam. In general, the scheme claims users have the chance to win a prize. Note that "Spin The Wheel" is in no way associated with Home Depot, Amazon, Apple, or other companies it mentions. Additi

URSA Ransomware
Ransomware

URSA Ransomware

URSA ransomware encrypts files and creates two ransom messages in "RECOVER_YOUR_FILES.HTML" and "RECOVER_YOUR_FILES.TXT" files, which it places in folders that contain encrypted files. Note that, unlike most ransomware, URSA does not rename any of the encrypted files. Screenshot of files encr

SearchConverterInc Browser Hijacker
Browser Hijacker

SearchConverterInc Browser Hijacker

SearchConverterInc is rogue software classified as a browser hijacker. It operates by making changes to browser settings to promote searchconverterinc.com (a fake search engine). Additionally, SearchConverterInc monitors users' browsing habits. Due to the dubious methods used to proliferate brows

LIZARD Ransomware
Ransomware

LIZARD Ransomware

LIZARD is a ransomware-type program, which is identical to LANDSLIDE malware. Systems infected with LIZARD experience data encryption and users receive ransom demands for decryption. During the encryption process, all affected files are renamed following this pattern: "[DeathSpicy@yandex.ru][id=v

Reander.net POP-UP Scam (Mac)
Mac Virus

Reander.net POP-UP Scam (Mac)

reander[.]net is a scam website. Its main purpose is to scare visitors into downloading and installing a potentially unwanted application (PUA) by displaying a fake virus notification stating that the device is infected. Users do not often visit reander[.]net or similar web pages intentionally