Main Menu
Home
Bookmark
Contact Us



 
MediaTickets CDT Spyware Information

Name: MediaTickets CDT
Category: Spyware
Alias: - Alias: CWS.Systime
Advice: Remove
Risk: Elevated Risk Elevated threats are usually threats that fall into the range of adware in which data about a user's habits are tracked and sent back to a server for analysis without your consent or knowledge.
Description: Mediatickets is a spyware program that displays advertisements, reduces the security settings for the Trusted Sites zone in Internet Explorer, and attempts to fraudulently install trusted publishers.

When Mediatickets is executed, it performs the following actions:

Displays pop-up advertisements.

Adds the following domains into the Trusted Sites zone for Internet Explorer:

blazefind.com
clickspring.net
flingstone.com
mt-download.com
my-internet.info
searchbarcash.com
searchmeup.cc
searchmiracle.com
skoobidoo.com
slotch.com
xxxtoolbar.com

Adds the IP address, 69.31.87.223, into the Trusted Sites zone for Internet Explorer

Allows the downloading of active content and running ActiveX scripts, and enables ActiveX controls and plug-ins

Allows Internet Explorer to run .NET components regardless of whether they are signed with Authenticode

Attempts to fraudulently install the following trusted publishers:

CDT inc.
MediaTickets
Integrated Search Technologies

Signatures: process: winttr.exe: MD5 Hash: f3dd0ffb3e41c5f74b5... process: ndrv.exe: MD5 Hash: b9bb9b29c5be8e5820c... process: ctxad.exe: MD5 Hash: 5321520b50e39d5bfb8... process: ctxad.exe: MD5 Hash: bfd88f059989fec0c6b... process: ctxad.exe: MD5 Hash: f4e7ff9b1996d9ff7d0... process: wuaclt.exe: MD5 Hash: 7b95966d4f70c2c20eb... process: bundle_cdt1006.exe: MD5 Hash: 532ac21f72f7a5a5c7f..
Type: Spyware - Spyware's primary purpose is to collect demographic and usage information from your computer, usually for advertising purposes. Spyware usually that 'sneaks' onto a system or performs other activities hidden to the user. Spyware programs are usually bundled as a hidden component and downloaded from the Internet. These modules are almost always installed on the system secretively and try to run secretively as well.



Top Spyware Visited Pages:
IEPlugin - Alias: IMIServer IEPlugin, Webplugin, BHO3Lib, ExplWWW, IExpl, MimarSinan, Win Server, winobject, TrojanDow - 126 visits
Spyware.SearchAssistant - Alias: Troj/StartPa-EI - 96 visits
webHancer - Alias: Customer Companion, Webhancer Customer Companion, SpeedRank - 90 visits
PowerReg Scheduler - 90 visits
CWS.Cassandra - 84 visits
Conducent - Alias: Timesink - 79 visits
C2.Lop - Alias: C2 Media, Lop, LopAdvert, MP3Search, MpAdvert, TrojanClicker.Win32.Rotarran - 78 visits
007.msnnames - Alias: access.ocx, jokes.ocx, StopLiteCtrl, StopLite, 007installer - 77 visits
VX2.LocalNRD - Alias: LocalNRD - 77 visits
Aureate - Alias: Aureate Spy, Radiate - 76 visits

Random Spyware Pages:
Ramdud.BHO
CoolWebSearch.Neo - Alias: NeoToolbar, SearchBar Module, Neo Toolbar - Traffic Syndicate
Axexx CHM
IeHook
Spyware.DOASearch - Alias: Trojan/StartPage.GT, daosearch, Troj/Daodrop-B, Trojan-Dropper.Win32.Small.vn
INetBar
Spyware.v1rg - Alias: SECRETSERVICE, v1rg, virg
007.msnnames - Alias: access.ocx, jokes.ocx, StopLiteCtrl, StopLite, 007installer
MS SyS Restore
CoolWebSearch.Systime - Alias: CWS.Systime


 


2006-2008 spyware32.com - Privacy Policy