MediaTickets CDT Spyware Information
|| MediaTickets CDT
Elevated threats are usually threats that fall into the range of adware in which data about a user's habits are tracked and sent back to a server for analysis without your consent or knowledge.
||Mediatickets is a spyware program that displays advertisements, reduces the security settings for the Trusted Sites zone in Internet Explorer, and attempts to fraudulently install trusted publishers.
When Mediatickets is executed, it performs the following actions:
Displays pop-up advertisements.
Adds the following domains into the Trusted Sites zone for Internet Explorer:
Adds the IP address, 188.8.131.52, into the Trusted Sites zone for Internet Explorer
Allows the downloading of active content and running ActiveX scripts, and enables ActiveX controls and plug-ins
Allows Internet Explorer to run .NET components regardless of whether they are signed with Authenticode
Attempts to fraudulently install the following trusted publishers:
Integrated Search Technologies
||process: winttr.exe: MD5 Hash: f3dd0ffb3e41c5f74b5...
process: ndrv.exe: MD5 Hash: b9bb9b29c5be8e5820c...
process: ctxad.exe: MD5 Hash: 5321520b50e39d5bfb8...
process: ctxad.exe: MD5 Hash: bfd88f059989fec0c6b...
process: ctxad.exe: MD5 Hash: f4e7ff9b1996d9ff7d0...
process: wuaclt.exe: MD5 Hash: 7b95966d4f70c2c20eb...
process: bundle_cdt1006.exe: MD5 Hash: 532ac21f72f7a5a5c7f..
||Spyware - Spyware's primary purpose is to collect demographic and usage information from your computer, usually for advertising purposes. Spyware usually that 'sneaks' onto a system or performs other activities hidden to the user. Spyware programs are usually bundled as a hidden component and downloaded from the Internet. These modules are almost always installed on the system secretively and try to run secretively as well.
Top Spyware Visited Pages:
IEPlugin - Alias: IMIServer IEPlugin, Webplugin, BHO3Lib, ExplWWW, IExpl, MimarSinan, Win Server, winobject, TrojanDow - 126 visits
Spyware.SearchAssistant - Alias: Troj/StartPa-EI - 96 visits
webHancer - Alias: Customer Companion, Webhancer Customer Companion, SpeedRank - 90 visits
PowerReg Scheduler - 90 visits
CWS.Cassandra - 84 visits
Conducent - Alias: Timesink - 79 visits
C2.Lop - Alias: C2 Media, Lop, LopAdvert, MP3Search, MpAdvert, TrojanClicker.Win32.Rotarran - 78 visits
007.msnnames - Alias: access.ocx, jokes.ocx, StopLiteCtrl, StopLite, 007installer - 77 visits
VX2.LocalNRD - Alias: LocalNRD - 77 visits
Aureate - Alias: Aureate Spy, Radiate - 76 visits
Random Spyware Pages:
Spyware.SERVPacK2 - Alias: SERV PacK2, r34r
ShopAtHome - Alias: ShopAtHome.com, ShopAtHomeSelect, SAHAgent, Golden Retriever Software, GRS
Search3 Search Bar - Alias: Search3, SearchBar