Home / malware Spyware:Win32/Maxifiles
First posted on 29 July 2019.
Source: MicrosoftAliases :
Spyware:Win32/Maxifiles is also known as Adware.MaxSearch, Adware_Maxifiles, Matcash, not-a-virus:AdWare.Win32.Insider.c, Win-Trojan/Insider.147456, W32/Maxifiles.T, Win32/Adware.Maxifiles, SearchNugget.DNSCatcher, Adware/Maxifiles.
Explanation :
Spyware:Win32/Maxifiles displays targeted advertising to affected users while they are browsing the Internet, based on search terms entered into search engines. InstallationWin32/Maxifiles may be present as a Browser Helper Object, and possibly installed by third-party programs. When Win32/Maxifiles executes, it may perform the following actions: Connects to the site 'java.starsdoor.com' in the background Displays popup advertisements from the site 'trx66.lbann.com' when performing Internet searches Presence of Win32/Maxifiles may be marked by the creation of the following registry subkeys: HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects{FFF4E223-7019-4ce7-BE03-D7D3C8CCE884}HKEY_LOCAL_MACHINESoftwareClassesclsid{FFF4E223-7019-4ce7-BE03-D7D3C8CCE884}
HKEY_LOCAL_MACHINESoftwareClassesIECatcher.IEWebCatcher
HKEY_LOCAL_MACHINESoftwareClassesIECatcher.IEWebCatcher.1Last update 29 July 2019
