1. /
  2. Security Response/
  3. Spyware.CWSAddClass

Spyware.CWSAddClass

Updated:
February 13, 2007 11:39:40 AM
Type:
Spyware
Risk Impact:
High
File Names:
Addclass.exe
Systems Affected:
Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP

Behavior


Spyware.CWSAddClass is an Internet Explorer search function hijacker. It changes the search settings to a new search engine and adds a prefix to all the Web pages, so that typed Web addresses are channeled through an intermediary "enhanced-http site," which captures Internet-surfing information.

Symptoms


One or more files is detected as Spyware.CWSAddClass.

Transmission


Spyware.CWSAddClass is typically installed silently through an ActiveX installer.

Antivirus Protection Dates

  • Initial Rapid Release version September 25, 2004
  • Latest Rapid Release version September 25, 2004
  • Initial Daily Certified version September 25, 2004
  • Latest Daily Certified version December 18, 2007 revision 039
  • Initial Weekly Certified release date September 29, 2004
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report, Volume 17
Symantec DeepSight Screensaver