Maxthon is a web browser that was found to share users' data with Chinese developers
Maxthon is a potentially unwanted program that collects various information about the user and can share it with third-party companies.
Questions about Maxthon Browser virus
Maxthon — a browser that is presented as “the most secure browser on the web without viruses and malware.” However, it has been added to the category of the potentially unwanted programs (PUPs) due to its privacy-related issues. When conducting the analysis, experts also found that the virus creates a ueipdat.zip file on the infected computer which regularly sends the collected data to China, where the Maxthon’s servers are located. The ZIP file itself contains another document called dat.txt which requires a passcode to view it since the file is encrypted. Even when the browser is manually disabled, it remains persistent on the device and still connects to the server where tracked data is sent continuously. Due to that, we recommend you to get rid of Maxton browser completely.
|Category||Potentially unwanted program|
|Main danger||Collects various data about the user and sends it to China-based servers|
|Promoted as||Secure and fast web browser|
|Distribution technique||The official website, third party sites|
|Fix||Use Reimage Reimage Cleaner Intego to double check the system and make sure that it is virus-free|
Since the day Maxthon cloud browser was released, security experts and PC users have been discussing its trustworthiness. According to the researchers from SemVirus, the most questionable feature of this browser is data tracking. Of course, legitimate browsers (Google, Firefox, etc.) can also be used for collecting various information about their users. However, there is no risk that they could overstep the acceptable level.
Maxthon, on the other hand, collects all sorts of hardware and software information. The collected data includes the current version of the OS, CPU type, and speed, screen resolution, browsing history, the status of your ad blocker and many other details that are non-personally identifiable, but useful if the malicious parties decide to involve you in online marketing. All this data tracking is disclosed in the Privacy section of the official website that states:
Based on this information and questionable content that it delivers, the browser has been actively called as Maxthon virus. As it was discovered, the web browser sends ZIP files to servers in China. Information is sent no matter if the user disabled the feature of data sharing or not, unfortunately.
There are various versions of this browser and tons of different variants compatible with all existing OS's:
- Maxthon for XP;
- Maxthon for Android;
- Maxthon for Mac;
- Maxthon for Linux;
- and so on.
Maxthon Cloud Browser can also be found in various third-party sites online that present it as a useful product. However, note that getting something from a suspicious source can put the security of your device at high risk of getting cyber infections. You need to uninstall the browser and related extensions if you doubt that this is useful for you. If you still want to use this browser choose the official distributor and reinstall the tool.
Legitimate and acknowledged browsers would not involve in data gathering and exploitation. So, remove Maxthon from your computer by following the guide below. This will ensure that your device is not at risk and keeps your information safe. You can also clean the system using Reimage Reimage Cleaner Intego after the process to fix any possible damage.
Maxthon Cloud Browser data tracking activities
The computer analyst managed to bypass this AES-128-ECB encryption by extracting the passcode from the Maxthon browser's binary. It was found that this is exactly where all the aforementioned data is stored. In the meanwhile, the representatives of the company blame it all on the users and claim that the data gathering can be opted out in the browser’s settings.
Unfortunately, it is not what happens. Even after these settings are disabled the browser does not cease to send the information to predetermined services. Thus, the users who value their privacy are left with one option only, and that is one of the reasons you need to proceed with Maxthon removal. However, this is still a legitimate and popular browser, so don't treat it as malware uninstall the program instead.
Maxthon Update Tool causing more problems
Maxthon Update Tool is a component of the third version of Maxthon. However, it’s a browser’s vulnerability which might be exploited by cyber-criminals. The issue might be solved with the current version, of the browser.
Attackers might use Maxthon tool for various purposes. For instance, this vulnerability might allow installation of various tracking technologies to steal sensitive information. The browser might also display malware-laden ads or redirect to potentially dangerous websites
So-called Maxthon Update Tool virus does not create a tray icon and does not appear in the system tray. However, it runs under the parent process C:\Program Files\Maxthon3\Bin\MxUp.exe and takes 77.3 Kb of the disk space. Therefore, to detect the virus might not be easy.
However, Maxthon tool is associated with the browser itself. Therefore, to avoid potential threats or browsing-related problems, you should get rid of any suspicious program as soon as possible. We highly recommend relying on “traditional” and well-known web browsers, such as Google Chrome or Mozilla Firefox.
Maxthon browser virus might be installed indirectly, bundled with freeware or shareware.
Stay away from questionable websites
You can obtain this browser directly from its official website, file download sites or through peer-to-peer file sharing platforms. Since it is promoted as an innovative and useful application, it does not lack direct downloads, but cybercriminals still use shady software distribution techniques such as “bundling” to spread questionable tools.
This method allows the program to be delivered on the users’ computers along with other free applications. And the users do not even have to know the hijack has even occurred. Using the “Quick” or “Recommended” installation settings of the initially downloaded program, they automatically allow the potentially unwanted app to enter the computer.
Remove Maxthon from your device and scan the system to see if there any damage
You shouldn't treat this browser or associated tools as malicious programs. There is the quickest and the most guaranteed Maxthon removal method – uninstallation. You can uninstall the browser, extensions, and other related tools or applications safely.
However, if you are one of those people that need to make sure that uninstall worked on every element of the suspicious program. You can remove Maxthon from the system with steps below the article and then scan the machine with PC repair tool.
You may remove virus damage with a help of Reimage Reimage Cleaner Intego. SpyHunter 5Combo Cleaner and Malwarebytes are recommended to detect potentially unwanted programs and viruses with all their files and registry entries that are related to them.
To remove Maxthon Browser virus, follow these steps:
Delete Maxthon Browser from Windows systems
Go to Control Panel. Access installed programs and look up for Maxthon browser. Once you find it, uninstall without consideration.
- Click Start → Control Panel → Programs and Features (if you are Windows XP user, click on Add/Remove Programs).
- If you are Windows 10 / Windows 8 user, then right-click in the lower left corner of the screen. Once Quick Access Menu shows up, select Control Panel and Uninstall a Program.
- Uninstall Maxthon Browser and related programs
Here, look for Maxthon Browser or any other recently installed suspicious programs.
- Uninstall them and click OK to save these changes.
- Remove Maxthon Browser from Windows shortcuts
Right click on the shortcut of Mozilla Firefox and select Properties.
- Go to Shortcut tab and look at the Target field. Delete malicious URL that is related to your virus.
Repeat steps that are given above with all browsers' shortcuts, including Internet Explorer and Google Chrome. Make sure you check all locations of these shortcuts, including Desktop, Start Menu and taskbar.
Erase Maxthon Browser from Mac OS X system
These instructions will help you to remove Maxthon cloud browser from Mac OS X:
- If you are using OS X, click Go button at the top left of the screen and select Applications.
- Wait until you see Applications folder and look for Maxthon Browser or any other suspicious programs on it. Now right click on every of such entries and select Move to Trash.