�� , �� HFPAPI.DLL, HFNAPI.DLL,

Wed, 25 Jun 2014 17:21:06 +0400

�� , �� HFPAPI.DLL, HFNAPI.DLL, � �� .
�� uVS:
- �� ;
- �� uVS(start.exe), �� : �� , �� - �� - �� ;
- �� ;
�� - �� _�� "��"
====code====


;uVS v3.82.8 [http://dsrt.dyndns.org]
;Target OS: NTv6.1

OFFSGNSAVE
zoo %SystemRoot%\SYSWOW64\NETHTSRV.EXE
addsgn 1A6C099A5583D98CF42B254E3143FE86C9AA77B381AC48128D9A7B04549471C15EF730F2B71065C26E8CDB1603EA177FBDABE48455D2C42BEA32502F879F23FE 8 NetworkUpdate.mbam

zoo %SystemRoot%\SYSWOW64\NETUPDSRV.EXE
addsgn 1AA9E79A5583D98CF42B254E3143FE86C9AA77B381AC48128D9A7B84B49771C15EF730F2B71065C26E8CDB1603EA177FBDABE48455D2C42BEA32502F879F23FE 8 NetUpdate.mbam

zoo %SystemDrive%\USERS\USER\APPDATA\LOCAL\SWVUPDATER\UPDATER.EXE
addsgn 925277FA136AC1CC0B64574E334BDFFACE9A6C66196A8FE80FC583345791709756104849BDBB6158F0F26927471649FA7C049D75DEC433C2D1667F3E0707F900 8 Adware.Downware.1528 [DrWeb]

zoo %SystemDrive%\USERS\USER\APPDATA\ROAMING\NEWNEXT.ME\NENGINE.DLL
addsgn 79132211B9E9317E0AA1AB59A52C1205DAFFF47DC4EA942D892B2942AF292811E11BC3DCC10016A57D0BF193CB50B67FBBABFC9ABACEB02CEA77B22FC706CA34 64 Trojan.Siggen6.685 [DrWeb]

zoo %SystemDrive%\USERS\USER\APPDATA\LOCAL\YANDEX\UPDATER\PRAETORIAN.EXE
addsgn 1AF67A9B5583358CF42B254E3143FE547601B9FA0A3A13F1C03FA1374DD6714C239CC0339D559D492B0BC197CD4B457110236311A9255077E4B5AC2F9F5FA577 8 praetorian

zoo %SystemDrive%\PROGRAM FILES (X86)\CONDUIT\COMMUNITY ALERTS\ALERT.DLL
addsgn 79132211B9E9317E0AA1AB59AE4B1205DAFFF47DC4EA942D892B2942AF292811E11BC3DCC10016A5A0C58CF9CD4345117AB9D3B821CBF06C22C0AC4942CF5782 64 Win32/Toolbar.Conduit.Y [ESET-NOD32]

delall %SystemDrive%\PROGRAM FILES (X86)\MOBOGENIE\DAEMONPROCESS.EXE
zoo %Sys32%\DRIVERS\NETHFDRV.SYS
zoo %SystemRoot%\SYSWOW64\HFNAPI.DLL
zoo %SystemRoot%\SYSWOW64\HFPAPI.DLL
addsgn 79132211B9E9317E0AA1AB593EE61205DAFFF47DC4EA942D892B2942AF292811E11BC3DCC10016A5AA6CAC9C4616EA2AD9DEF8FB5816142D3DFEB1E7630732FA 64 Netfilter

addsgn 79132211B9E9317E0AA1AB5922801205DAFFF47DC4EA942D892B2942AF292811E11BC3DCC10016A5A86CA414031E1FAD17D7B1CCC538B23CA00A44DC628F678B 64 Netfilter

;------------------------autoscript---------------------------

sreg

chklst
delvir

delref {8984B388-A5BB-4DF7-B274-77B879E179DB}\[CLSID]
delref %Sys32%\DRIVERS\NETHFDRV.SYS
del %Sys32%\DRIVERS\NETHFDRV.SYS

delref HTTP://SEARCH.CONDUIT.COM?SEARCHSOURCE=10&CTID=CT1750559&CUI=UN22094354981383587
; McAfee Security Scan Plus
exec C:\Program Files\McAfee Security Scan\uninstall.exe

; Bonjour
exec MsiExec.exe /X{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D} /quiet

; Better Surf Plus
exec C:\Program Files (x86)\BetterSurf\BetterSurfPlus\uninstall.exe

; Network System Driver
exec C:\Program Files (x86)\Common Files\Config\uninstinethnfd.exe

; OpenAL
exec C:\Program Files (x86)\OpenAL\OpenALwEAX.exe" /U

; SkyMonk Client
exec C:\Program Files (x86)\SkyMonk\uninstall.exe

; Ask Toolbar
exec MsiExec.exe /X{4F564F32-0076-A76A-76A7-A758B70C0F00} /quiet

deltmp
delnfr
czoo
areg

;-------------------------------------------------------------

=============
��, �� .
�� uVS (�� : ZOO_2012-12-31_23-59-59.rar/7z) �� sendvirus2011@gmail.com, support@esetnod32.ru
------------
��,
��
http://forum.esetnod32.ru/forum9/topic10688/
25.06.2014 17:21:06, santy.

�� , �� HFPAPI.DLL, HFNAPI.DLL,

Wed, 25 Jun 2014 17:05:11 +0400

�� , �� HFPAPI.DLL, HFNAPI.DLL, � �� .
�� , �� , �� , �� uVS, �� , �� , ��.
USER-PC_2014-06-25_16-45-54.7z
25.06.2014 17:05:11, �� .

����� esetnod32.ru [����: ������� � ���������, ������ � ����������� ������ HFPAPI.DLL, HFNAPI.DLL,]

������� � ���������, ������ � ����������� ������ HFPAPI.DLL, HFNAPI.DLL,

������� � ���������, ������ � ����������� ������ HFPAPI.DLL, HFNAPI.DLL,

�� esetnod32.ru [��: �� , �� HFPAPI.DLL, HFNAPI.DLL,]

�� , �� HFPAPI.DLL, HFNAPI.DLL,

�� , �� HFPAPI.DLL, HFNAPI.DLL,