Код:
Registry Keys: 10
PUP.Optional.SearchYah.A, HKLM\SOFTWARE\CLASSES\esrv.searchyaESrvc, , [67994fb138c8aa562468433aa45e0000],
PUP.Optional.SearchYah.A, HKLM\SOFTWARE\CLASSES\esrv.searchyaESrvc.1, , [de22629e31cfa65ae0ac027b7290758b],
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\cjpglkicenollcignonpgiafdgfeehoj, , [e11f7a8622dee21e1095176ced1633cd],
PUP.Optional.SearchYah.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\esrv.searchyaESrvc, , [9d63ea16ab5533cd068698e5857d27d9],
PUP.Optional.SearchYah.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\esrv.searchyaESrvc.1, , [d22e1fe1d42cce32b8d4dba205fd6f91],
PUP.Optional.FunMoods.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\cjpglkicenollcignonpgiafdgfeehoj, , [f808639d5ba528d8abfaafd4d2319e62],
PUP.Optional.FunMoods.A, HKU\S-1-5-21-3260043990-544904964-181159069-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\cjpglkicenollcignonpgiafdgfeehoj, , [23dd4db398685ca42185bfc455aef010],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-3260043990-544904964-181159069-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\1I1T1Q1S, , [a65a41bf669ac53b6c54f29b0bf715eb],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-3260043990-544904964-181159069-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, , [837df10fa759ce322fb7ccd7847ff709],
PUP.Optional.Softonic.A, HKU\S-1-5-21-3260043990-544904964-181159069-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader, , [ef11c7390cf415eb88711d5e25dd22de],
Registry Values: 1
PUP.Optional.InstallCore.A, HKU\S-1-5-21-3260043990-544904964-181159069-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 0H1L1J1L1S1R1N, , [837df10fa759ce322fb7ccd7847ff709]
Files: 20
Trojan.Dropped, D:\$RECYCLE.BIN\S-1-5-21-1349170436-2188593793-2295483191-1000\$RQPWQUP.exe, , [4ab6e31d56aabb45a36d126c2bd65da3],
PUP.Optional.PCPerformer.A, C:\Windows\System32\roboot64.exe, , [ad53a65a7f81e61a700baed919e960a0],