DirectConnector

Description: Adware
Risk Level: Low
Date of First Occurence: Wednesday, June 18, 2008
Software Developer: (unknown)
Brief Info: Adware Software that is displaying pop-up/pop-under windows containing advertisements when the primary user interface is not visible or displayed advertisements are not related to the product.
Removal: This threat can be removed using "Spyware Terminator"

RIMUOVI SPYWARE »

Geographical Distribution of Threat "DirectConnector"

Threat Info

View All

Detected Items

  1. Detected Files:
  2. Detected Files with variable Filenames: MD5: 1EC3AE2BD7E0732949FDE888F24A753A Size: 236032 %PROGRAMFILES%\DC\dcUpdater.exe %SystemDiskRoot%\temp\DcUpdater.exe.bak.bak %SystemDiskRoot%\temp\dcUpdater.exe MD5: 44578B5F9B7C9DD8E8DFAB1E44DC7023 Size: 275968 %PROGRAMFILES%\DC\dAgent.exe %SystemDiskRoot%\temp\dAgent.exe.bak.bak MD5: 77E3728B2DB64C15EE185EAD61C18253 Size: 203264 %PROGRAMFILES%\DC\DirectButton.dll %SystemDiskRoot%\temp\DirectButton.dll.bak.bak MD5: 787AA18F8C1691B854490EC0DB11E384 Size: 23040 %PROGRAMFILES%\DC\hook.dll %SystemDiskRoot%\temp\hook.dll.bak.bak

Detecting items list:

  1. Files by Name %PROGRAMFILES%\DC\dAgent.exe %PROGRAMFILES%\DC\dcUpdater.exe %PROGRAMFILES%\DC\DirectButton.dll %PROGRAMFILES%\DC\hook.dll %SystemDiskRoot%\temp\dAgent.exe.bak.bak %SystemDiskRoot%\temp\dcUpdater.exe %SystemDiskRoot%\temp\DcUpdater.exe.bak.bak %SystemDiskRoot%\temp\DirectButton.dll.bak.bak %SystemDiskRoot%\temp\hook.dll.bak.bak
  2. Files by CLSID or Name CLSID=3EE937ED-CE4C-4416-AC3B-12A59F021185
  3. Registry Keys HKLM\SOFTWARE\DirectConnector HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{3EE937ED-CE4C-4416-AC3B-12A59F021185} HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DirectConnector
  4. Registry Values HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{3EE937ED-CE4C-4416-AC3B-12A59F021185} ValueName=ButtonText HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{3EE937ED-CE4C-4416-AC3B-12A59F021185} ValueName=CLSID HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{3EE937ED-CE4C-4416-AC3B-12A59F021185} ValueName=ClsidExtension HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{3EE937ED-CE4C-4416-AC3B-12A59F021185} ValueName=Default Visible HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{3EE937ED-CE4C-4416-AC3B-12A59F021185} ValueName=HotIcon HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{3EE937ED-CE4C-4416-AC3B-12A59F021185} ValueName=Icon HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ValueName=DirectConnector

« Go to Software Database