Naninf.d is an IRC-controlled backdoor that gives the attacker unauthorized remote access to the compromised computer. The intruder can retrieve user sensitive information, download and execute arbitrary files and control the infected system. Naninf.d terminates running antivirus and anti-spyware software, kills some system processes and third-party tools. It also lowers system security settings.
photo and article.exesvcsvh32.exe
HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRunWindowsDiskEvtHKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRunWindowsDiskEvt