Код:
Registry Keys: 3
PUP.Optional.Blabbers, HKU\S-1-5-21-606747145-651377827-1177238915-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{963B125B-8B21-49A2-A3A8-E37092276531}, , [0a3309ff4e2d2016e32424efec1660a0],
PUP.Optional.Blabbers, HKLM\SOFTWARE\CLASSES\tdataprotocol.CTData, , [7bc2c93f017a9b9b94756ca7d032bd43],
PUP.Optional.Blabbers, HKLM\SOFTWARE\CLASSES\tdataprotocol.CTData.1, , [24195fa92f4c53e345c41003a26002fe],
Registry Values: 4
Hijack.ControlPanelStyle, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|ForceClassicControlPanel, 1, , [58e546c276051125dcf3706329d9be42]
Hijack.ControlPanelStyle, HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|ForceClassicControlPanel, 1, , [9da003058fecdc5a9a35c90afa0853ad]
Hijack.ControlPanelStyle, HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|ForceClassicControlPanel, 1, , [142916f21665c472c20d13c0a260f808]
Hijack.ControlPanelStyle, HKU\S-1-5-21-606747145-651377827-1177238915-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|ForceClassicControlPanel, 1, , [98a5ba4e32491b1ba6297d56c1412bd5]
Registry Data:
PUM.Hijack.StartMenu, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED|Start_ShowHelp, 0, Good: (1), Bad: (0),,[7ac3e12767149a9c1aa62ed526de11ef]
PUM.Hijack.Help, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|NoSMHelp, 1, Good: (0), Bad: (1),,[5ae381879fdc5dd9244eb34fae56db25]
PUM.Hijack.StartMenu, HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED|Start_ShowHelp, 0, Good: (1), Bad: (0),,[1f1eba4ebac12b0bf1cfa162d232e11f]
PUM.Hijack.Help, HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|NoSMHelp, 1, Good: (0), Bad: (1),,[d469ce3ac9b2ae88452dba482bd9c23e]
PUM.Hijack.StartMenu, HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED|Start_ShowHelp, 0, Good: (1), Bad: (0),,[ee4f18f04239171fd5ebf01317ed5ca4]
PUM.Hijack.Help, HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|NoSMHelp, 1, Good: (0), Bad: (1),,[6cd128e012691e18a4cea062c341a55b]
PUM.Hijack.StartMenu, HKU\S-1-5-21-606747145-651377827-1177238915-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED|Start_ShowHelp, 0, Good: (1), Bad: (0),,[69d446c22a5168ce6060a45fc440de22]
PUM.Hijack.Help, HKU\S-1-5-21-606747145-651377827-1177238915-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|NoSMHelp, 1, Good: (0), Bad: (1),,[211ce4240774be788de5c9397b89cc34]
Files:
PUP.Optional.Conduit.A, C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\8vhi4jz7.default\searchplugins\conduit.xml, , [c479e127ccaf320402dc362117eb3dc3],