Trojan.TCClock
*file
C:\Users\{USERNAME}\AppData\Roaming\RAF\coffeeclock\TCC-ClockFace.exe
C:\Users\{USERNAME}\AppData\Roaming\RAF\coffeeclock\TCCalEvents.exe
C:\Users\{USERNAME}\AppData\Roaming\RAF\coffeeclock\TCClock.exe
C:\Users\{USERNAME}\AppData\Roaming\RAF\coffeeclock\TCCtrans.exe
*reg_val
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run:TCClock
Trojan.PDFCracker
*file
C\Users\{USERNAME}\Desktop\PDF Password Cracker Pro v2.0.lnk
C\Users\{USERNAME}\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\PDF Password Cracker Pro v2.0.lnk
C\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Password Cracker Pro v2.0\Uninstall PDF Password Cracker Pro v2.0.lnk
C\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Password Cracker Pro v2.0\PDF Password Cracker Pro v2.0.lnk
C\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Password Cracker Pro v2.0\PDF Password Cracker Pro v2.0 on the Web.lnk
C\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Password Cracker Pro v2.0\PDF Password Cracker Pro Help.lnk
C\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Password Cracker Pro v2.0
C\Program Files\PDF Password Cracker Pro v2.0\crackpdf.exe
*reg_key
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PDF Password Cracker Pro v2.0_is1
Adware.Ebuyer, SmartCloud
PUP.GrassValley, Heinote
