MasterDialer

By W3 Privacy
Published 05/8/2007
Parasites
Rating: Unrated

MasterDialer

Description

An ActiveX installer control for premium-rate phone diallers.

Variants

MasterDialer/AXDownload: installs AXDownload.dll; MasterDialer/WebInstall: installs webinstall.ocx; MasterDialer/WebUpdate: install webupdate.ocx.

Also known as

MasterConnector.

Distribution

Installed by ActiveX drive-by-download on a pop-up window that imitates a Windows software installation dialogue, from web pages operated by Firstway Medien GmbH and COMFIX newMedia.

The software may claim to be a webcam viewer, chat program or eDonkey, depending on the site.

What it does

Advertising

No.

Privacy violation

No.

Security issues

Yes. Any web page can direct it to install any executable code.

To work, the control needs a 'key' parameter, which theoretically only its owners can generate, to authorise the installation of code from a particular URL. However this key looks weak (it seems to be an ad hoc checksum rather than a proper cryptographic signature), so it's probably possible for any web page at all to install whatever code it likes.

Stability problems

No.

Removal

Open the Downloaded Program Files folder inside the Windows folder, and delete the control called 'Main class' (AXDownload), 'WebInstall' or 'WebUpdate'.

Spread The Word

Comments

No Comments Found.

How would you rate the quality of this article?

Rating: *	Poor Excellent
Your Name:
Your Email:
Your Comment: *
Verification *	Please copy the characters from the image above into the text field below. Doing this helps us prevent automated submissions.

MasterDialer

MasterDialer

Description

Variants

Also known as

Distribution

What it does

Advertising

Privacy violation

Security issues

Stability problems

Removal

Spread The Word

Comments

Categories

Recommended

Search

Site Menu

Article Options

Popular Articles