Virus and Spyware Removal Guides, uninstall instructions

What kind of malware is JSOutProx?

JSOutProx is a JScript-based Remote Access Trojan (RAT). Malware within this classification operates by enabling remote access and control over infected machines. RATs tend to be highly multifunctional pieces of software capable of performing various actions.

JSOutProx has been in use since at least as early as 2020. Attacks featuring this RAT were observed targeting the government and finance related entities based in India. JSOutProx infections predominantly originated from malspam campaigns.

What kind of malware is ObserverStealer?

ObserverStealer is an information-stealing malware. It is available for purchase at a price of $150 per month, targeting Windows operating systems from Windows 8.1 to Windows 11. The creators of ObserverStealer claim that the malware is still in Beta, indicating ongoing development and potential for further enhancements by the cybercriminals involved.

What kind of page is securecaptcha[.]top?

Securecaptcha[.]top is a rogue page that promotes browser notification spam and redirects visitors to other (likely untrustworthy/malicious) sites. Our research team discovered this webpage while investigating suspicious websites.

Most visitors to pages like securecaptcha[.]top access them via redirects generated by sites that employ rogue advertising networks.

What is landscapestab.com?

During our examination of landscapestab.com, we determined that it operates as a fake search engine that displays results sourced from another search engine. Fake search engines like landscapestab.com are typically promoted through browser hijackers, which alter the settings of web browsers.

What kind of scam is "Multiple Unsuccessful Login Attempts"?

Upon careful examination, we have determined that the email in question has been crafted by scammers who impersonate an email service provider with malicious intentions. Their objective is to deceive recipients into divulging sensitive information on a fraudulent page (a phishing site). Consequently, it is strongly advised that recipients disregard this email.

What kind of application is SearchEmpire?

While analyzing newly submitted samples on VirusTotal, our researchers recently encountered the SearchEmpire application. After thoroughly examining the software, we have confirmed that SearchEmpire operates as adware. Its primary function is to display advertisements and may possess other potentially harmful functionalities.

What kind of page is allhypefeed[.]com?

We found the allhypefeed[.]com rogue page while reviewing untrustworthy websites. It operates by endorsing spam browser notifications and redirecting users to other (likely dubious/malicious) sites. Most users access webpages like allhypefeed[.]com via redirects generated by sites that employ rogue advertising networks.

What is EliteMaximus?

Our research team found the EliteMaximus rogue application during a routine investigation of new submissions to VirusTotal. Following our examination, we determined that this app is adware belonging to the AdLoad malware family. EliteMaximus runs intrusive advertisement campaigns and collects private information.

What is underwaternewtab.com?

While inspecting browser-hijacking software, our research team discovered the underwaternewtab.com fake search engine. Websites within this classification are typically incapable of providing search results, so they generate redirects to legitimate search engines.

These bogus sites are commonly promoted (via redirects) by browser hijackers. It is noteworthy that both illegitimate search engines and the software endorsing them usually have data-tracking abilities.

What is ViewpointTools?

ViewpointTools is a rogue application that we discovered while inspecting new submissions to the VirusTotal site. Our analysis of this app revealed that it is advertising-supported software (adware). Additionally, ViewpointTools is part of the AdLoad malware family.