virus logo Virus

Adware/MediaTickets

description-logoAnalysis

Adware/MediaTickets.F is an Adware inter-related to a small trojan. This trojan is also detected as Adware/MediaTickets.F or known as
   Trojan-Clicker.Win32.Small.ab
   QLowZones-1 trojan
   TROJ_SMALL.AB
   Trojan.Clicker.Small-16
   Trojan.Clicker.Small.AB

This trojan connects to www.searchmeup.cc through HTTP port using a random port around 1800, and sends an "Get" request type. The site is currently not returning any relevant value.

This trojan updates the registry to include a trusted provider from its own list. Below are the information for the added trusted provider.
Integrated Search Technologies
CDT inc.
MediaTickets

This trojan also updates the registry to remove the Browser Restriction under Internet Setting and adds the following particular sites.

blazefind.com
clickspring.net
flingstone.com
mt-download.com
my-internet.info
searchbarcash.com
searchmeup.cc
searchmiracle.com
skoobidoo.com
slotch.com
xxxtoolbar.com

Telemetry logoTelemetry

Detection Availability

FortiClient
Extreme
FortiMail
Extreme
FortiSandbox
Extreme
FortiWeb
Extreme
Web Application Firewall
Extreme
FortiIsolator
Extreme
FortiDeceptor
Extreme
FortiEDR

Version Updates

Date Version Detail
2023-11-13 91.08766
2023-11-08 91.08616
2023-09-30 91.07452
2023-09-24 91.07263
2021-12-23 89.08035
2021-07-20 87.00765
2021-05-05 85.00946
2020-09-08 80.22400 Sig Updated
2020-07-08 78.74300 Sig Added
2020-06-02 77.87200 Sig Updated
ID 42349
Released May 17, 2006
Description
Updated		 Mar 13, 2007
Aliases Adware-MediaTickets application [McAfee], Trojan.Downloader.Mediatickets-3 [ClamAV]
Platform Profile Adware typically display advertising content to the user. This advertising content may take many forms, but is typically in the form of web browser pop-up advertisements. In most circumstances, the user is not aware of the Adware component being installed on the local machine.