Updated: February 13, 2007 11:40:27 AM
Type: Adware
Version: 2.4.39
Publisher: MX-Targeting (www.mx-targeting.com)
Risk Impact: High
File Names: mxtarget.dll,speeryox.dll
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
When Adware.MXTarget runs, it does the following:
- May create some of the following registry subkeys:
HKEY_CURRENT_USER\Software\MxTarget
HKEY_CURRENT_USER\Software\sPeer
HKEY_CLASSES_ROOT\CLSID\{0000607D-D204-42C7-8E46-216055BF9918}
HKEY_CLASSES_ROOT\CLSID\{00000097-7C67-4BA6-8B42-05128941688A}
HKEY_CLASSES_ROOT\Interface\{4534CD6B-59D6-43FD-864B-06A0D843444A}
HKEY_CLASSES_ROOT\Interface\{C45C774D-5ECC-4D9E-94E1-AC57189C4435}
HKEY_CLASSES_ROOT\MxTargetDll.MxTargetDllObj.1
HKEY_CLASSES_ROOT\TypeLib\{690BCCB4-6B83-4203-AE77-038C116594EC}
HKEY_CLASSES_ROOT\TypeLib\{BBE6D461-41FC-4100-A629-B9D2162BEFAA}
HKEY_CLASSES_ROOT\VX2.VX2Obj
HKEY_CLASSES_ROOT\sPeerDll.sPeerDllObj
HKEY_CLASSES_ROOT\sPeerDll.sPeerDllObj.1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0000607D-D204-42C7-8E46-216055BF9918}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00000097-7C67-4BA6-8B42-05128941688A}
- Sends information gathered from the compromised computer to the master.mx-targeting.com domain.
http:/ /master.mx-targeting.com
- Creates the following binary data file:
%Windir%\[8 random characters].ini
Note: %Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows (Windows 95/98/Me/XP)or C:\Winnt (Windows NT/2000).
Technorati
Digg
Delicious
Reddit
StumbleUpon
Yahoo Buzz
Twitter
Facebook
Newsvine
