Step-by-Step Malware Removal Instructions

Super Colors Adware
Adware

Super Colors Adware

Super Colors is an advertising-supported application. It generates various intrusive advertisements and can read and change all data on all websites. We discovered this application on a shady website offering to add Super Colors before continuing to the page. Super Colors is described as a

Ytmp3.sh Ads
Notification Spam

Ytmp3.sh Ads

After examining ytmp3[.]sh, we learned that this website offers to download videos from YouTube (which is not entirely legal). Also, it asks for permission to show notifications and uses rogue advertising networks (it has untrustworthy ads on it and can redirect to questionable pages). Cli

TeachPad Adware (Mac)
Mac Virus

TeachPad Adware (Mac)

TeachPad is a rogue app that our researchers discovered while investigating new submissions to VirusTotal. After analyzing this piece of software, we learned that TeachPad operates as adware and belongs to the AdLoad malware family. Advertising-supported software (adware) is designed to

Ukentaspe.xyz Ads
Notification Spam

Ukentaspe.xyz Ads

Ukentaspe[.]xyz is one of the deceptive websites that display fake/deceptive messages to trick visitors into allowing them to show notifications. Also, this site can redirect to other shady websites. We discovered ukentaspe[.]xyz while checking out pages that use rogue advertising networks.

BITCOINPAYMENT Ransomware
Ransomware

BITCOINPAYMENT Ransomware

While inspecting new submissions to VirusTotal, our researchers found yet another malicious program belonging to the Phobos ransomware family. We acquired a sample of this ransomware-type program called BITCOINPAYMENT and executed it on our test machine. This ransomware encrypted files and append

Style-buzz-blog.com Ads
Notification Spam

Style-buzz-blog.com Ads

Style-buzz-blog[.]com is an untrustworthy page that shows deceptive messages to trick visitors into allowing it to show notifications. Also, style-buzz-blog[.]com redirects visitors to other pages of this kind. We discovered this site while examining pages that use rogue advertising networks (it i

Ccyu Ransomware
Ransomware

Ccyu Ransomware

Ccyu is ransomware belonging to the Djvu family. We discovered it while inspecting malware samples submitted to the VirusTotal site. Ccyu encrypts and renames files (by appending the ".ccyu" extension to filenames). It also drops a ransom note, a text file named "_readme.txt". An example of how C

Ccew Ransomware
Ransomware

Ccew Ransomware

We discovered a new Djvu ransomware called Ccew while examining malware samples submitted to the VirusTotal page. We learned that Ccew encrypts files, appends the ".ccew" extension to filenames, and drops the "_readme.txt" file (a ransom note) on the desktop. An example of how Ccew renames files:

Listen-heres.com Ads
Notification Spam

Listen-heres.com Ads

Our research team discovered the listen-heres[.]com rogue webpage while investigating suspicious sites. This page pushes browser notification spam and causes redirects to other (likely unreliable/malicious) websites. Users typically access such webpages via redirects caused by sites using rogue ad

Private-mastermind.com Ads
Notification Spam

Private-mastermind.com Ads

Private-mastermind[.]com is a rogue page that endorses scams, pushes spam browser notifications, and redirects users to different (likely untrustworthy/malicious) websites. Users typically enter these webpages via redirects caused by sites using rogue advertising networks. It is pertinent