Trojan.Clocker
*file
C:\Prorogram Files\atomik\clocker\utilsdll.dll
C:\Prorogram Files\atomik\clocker\uninstall.exe
C:\Prorogram Files\atomik\clocker\timespeak.dll
C:\Prorogram Files\atomik\clocker\clocker.exe
C:\Users\{USERNAME}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\atomik\clocker\clocker readme!!!.lnk
C:\Users\{USERNAME}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\atomik\clocker\clocker uninstall.lnk
C:\Users\{USERNAME}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\atomik\clocker\clocker.lnk
C:\windows\clocker.lnk
*reg_key
HKLM\Software\Microsoft\Windows\CurrentVersion\uninstall\clocker v4.1 gold
HKCU\Software\Microsoft\Windows\CurrentVersion\run:atomik clocker
Toolbar.ASK
*file
c:\program files\asktoolbar4\asktoolbar4x.dll
c:\program files\asktoolbar4\searchresultstb.dll
c:\program files\asktoolbar4\uninstall.exe
*reg_key
HKCU\software\asktoolbar4
HKCU\software\microsoft\internet explorer\internetregistry\registry\user\s-1-5-21-2893608250-2205728168-3091723128-1001\software\asktoolbar4
HKCU\software\microsoft\internet explorer\searchscopes\{b9c7ce32-da91-43c2-b7e9-0e9aafc675cd}
HKLM\software\classes\clsid\{3cb073f3-be3c-4e8f-942d-8a747b54486f}
HKLM\software\microsoft\internet explorer\low rights\elevationpolicy\{1c50c302-c992-4042-8c57-69bd8d004cd0}
HKLM\software\microsoft\internet explorer\low rights\elevationpolicy\{3cb073f3-be3c-4e8f-942d-8a747b54486f}
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\browser helper objects\{3cb073f3-be3c-4e8f-942d-8a747b54486f}
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\uninstall\asktoolbar4
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\ext\settings\{3cb073f3-be3c-4e8f-942d-8a747b54486f}
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\ext\stats\{3cb073f3-be3c-4e8f-942d-8a747b54486f}
HKLM\software\microsoft\internet explorer\toolbar:{3cb073f3-be3c-4e8f-942d-8a747b54486f}
HKCU\software\microsoft\internet explorer\approved extensions:{3cb073f3-be3c-4e8f-942d-8a747b54486f}
Adware.TTwifi
Spyware.TypeRecorder
