Naninf.c is an IRC-controlled backdoor that provides the attacker with unauthorized remote access to the compromised computer. The intruder can retrieve user sensitive information, delete specified objects, download and execute arbitrary files. Naninf.c terminates running antivirus and anti-spyware software, kills some system processes and third-party tools.
lsadst.exephoto and article.exe
HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRunWindowsProtocolLogHKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRunWindowsProtocolLog