�� , �� HFPAPI.DLL, HFNAPI.DLL,

Wed, 02 Jul 2014 19:19:59 +0400

�� , �� HFPAPI.DLL, HFNAPI.DLL, � �� .
�� :

====quote====
��,
��
http://forum.esetnod32.ru/forum9/topic10688/
=============

02.07.2014 19:19:59, santy.

�� , �� HFPAPI.DLL, HFNAPI.DLL,

Wed, 02 Jul 2014 17:55:09 +0400

�� , �� HFPAPI.DLL, HFNAPI.DLL, � �� .
��
02.07.2014 17:55:09, �� .

�� , �� HFPAPI.DLL, HFNAPI.DLL,

Wed, 02 Jul 2014 05:56:38 +0400

�� , �� HFPAPI.DLL, HFNAPI.DLL, � �� .
�� uVS:
- �� ;
- �� uVS(start.exe), �� : �� , �� - �� - �� ;
- �� ;
�� - �� _�� "��"
====code====

;uVS v3.82.8 [http://dsrt.dyndns.org]
;Target OS: NTv6.1

OFFSGNSAVE
zoo %SystemDrive%\PROGRAM FILES (X86)\MOBOGENIE\DAEMONPROCESS.EXE
addsgn 1A8E729A5583FF8FF42B627DA804DEC9E90A05B6FAEF9F81A5B0C3B3F514A2ACE09C1364FED57C56F86247AC86259B39B188BE2166253B680963AFEFBA1265F8 8 Adware.Mobogenie.4 [DrWeb]

zoo %SystemDrive%\PROGRAM FILES (X86)\FOCUSBASE\BIN\FOCUSBASE.PURBROWSE64.EXE
addsgn BA6F9BB2BD393B720B9C2D754C2164FBDA75303AC173435C958B4CC074CE2404A8FB8BD4D235D5C2D1C80F460E9B043A3552FD3B50DBB06D9537A42FC7EEAC97 8 BrowseFox.A [ESET-NOD32]

zoo %SystemDrive%\PROGRAM FILES (X86)\FOCUSBASE\BIN\FOCUSBASE.BROWSERADAPTER.EXE
addsgn 1A69579A5583C58CF42B95BC1488530550880F3560F63E7885483AE9DB3A2CA52435C357B5AAC8C2C703688FAD1BB68F7537D65055DAE9A9ED03ABD0B20ECAB6 8 Trojan.BPlug.48 [DrWeb]

zoo %SystemDrive%\PROGRAM FILES (X86)\FOCUSBASE\BIN\{2B929FE1-284B-4766-AFB9-19B0915B99B0}.DLL
addsgn 79132211B9E9317E0AA1AB59AF4C1205DAFFF47DC4EA942D892B2942AF292811E11BC3EF69F99F598808A79B56D14C765EDBF83FF6D8A0EB28E7872BD7078171 64 Win32/BrowseFox.K [ESET-NOD32]

zoo %SystemDrive%\USERS\1\APPDATA\ROAMING\DIGITALSITES\UPDATEPROC\UPDATETASK.EXE
addsgn A7679B19919AF4025095AE599827ECFA164AA99E6EA65E78E13CF5D8D9F699B5E9E93CD2FE5A13892B8084272A6A08FAC723B43355329AF3D3882712AB7A6373 9 Adware.Shopper.391 [DrWeb]

zoo %SystemRoot%\SYSWOW64\NETHTSRV.EXE
addsgn 1ABC099A5583D98CF42B254E3143FE86C9AA77B381AC48128D9A7B04549471C15EF730F2B71065C26E8CDB1603EA177FBDABE48455D2C42BEA32502F879F23FE 8 NetUpdate.mbam

zoo %SystemDrive%\USERS\1\APPDATA\ROAMING\NEWNEXT.ME\NENGINE.DLL
addsgn 79132211B9E9317E0AA1AB59A52C1205DAFFF47DC4EA942D892B2942AF292811E11BC3DCC10016A57D0BF193CB50B67FBBABFC9ABACEB02CEA77B22FC706CA34 64 Trojan.Siggen6.685 [DrWeb]

zoo %SystemDrive%\PROGRAM FILES (X86)\FOCUSBASE\BIN\FOCUSBASEBAAPP.DLL
addsgn 79132211B9E9317E0AA1AB592CBD1205DAFFF47DC4EA942D892B2942AF292811E11BC3DCC10016A5A86CA414031E1FAD17D7B1CCF5FFB23CA00A44DC628F678B 64 Win32/BrowseFox.I [ESET-NOD32]

zoo %SystemDrive%\PROGRAM FILES (X86)\FOCUSBASE\FOCUSBASEUNINSTALL.EXE
addsgn 7300F79B556A1F275DE775E6ED94361DE2CED8E6E96B5F78B63503F874C251B33627B3173E3D9CC92B807B8AF66609FA2E20FD0E279AB04625D49C408306CA82 60 Win32/BitCoinMiner.W

delall %SystemDrive%\USERS\1\APPDATA\LOCAL\AMIGO\APPLICATION\AMIGO.URL
addsgn 1A1ED59A5583C58CF42BFED59BFD1205258A71B2ADF6341CA1CF96EA075F59C7CBB6CFE17655AE8C7B7FF1638153B505822017FF102ED48F2D77A42F0456468C 8 Adware.BGuard.32 [DrWeb]

zoo %SystemDrive%\PROGRAM FILES (X86)\ZULA GAMES\BACKGROUNDHOST.EXE
zoo %SystemDrive%\PROGRAM FILES (X86)\SPEED TEST 127\BACKGROUNDHOST.EXE
zoo %SystemDrive%\PROGRAM FILES (X86)\FREE GAMES 111\BACKGROUNDHOST.EXE
zoo %SystemDrive%\PROGRAM FILES (X86)\SPEED ANALYSIS 2\BACKGROUNDHOST.EXE
addsgn BA6F9BB2BD8DC8720B9C2D754C2140FBDA75303AC9AF5E2CC49684EA118139CFCF478BDA5271DD01A2DDC4D7CF6301B2F4A2B83ADEDFA26A2E77EC1C024EAB36 8 Adware.BGuard.32 [DrWeb]

zoo %SystemDrive%\PROGRAM FILES (X86)\ZULA GAMES\BACKGROUNDHOST64.EXE
zoo %SystemDrive%\PROGRAM FILES (X86)\SPEED ANALYSIS 2\BACKGROUNDHOST64.EXE
delall %SystemDrive%\USERS\1\APPDATA\LOCAL\YANDEX\YANDEXBROWSER\APPLICATION\BROWSER.URL
deldirex %SystemDrive%\PROGRAM FILES (X86)\FREE GAMES 111
deldirex %SystemDrive%\PROGRAM FILES (X86)\SPEED TEST 127
deldirex %SystemDrive%\PROGRAM FILES (X86)\ZULA GAMES
deldirex %SystemDrive%\PROGRAM FILES (X86)\SPEED ANALYSIS 2
delall %SystemDrive%\USERS\1\APPDATA\LOCAL\AMIGO\APPLICATION\CHROME.URL
delall %SystemDrive%\USERS\1\APPDATA\LOCAL\XPOM\APPLICATION\CHROME.URL
delall %SystemDrive%\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.URL
delall %SystemDrive%\PROGRAM FILES (X86)\OPERA\LAUNCHER.URL
delall %SystemDrive%\PROGRAM FILES (X86)\OPERA\OPERA.URL
delall %SystemDrive%\USERS\1\APPDATA\ROAMING\WOTMODS\WOT-MODS.LNK
;------------------------autoscript---------------------------

sreg

chklst
delvir

delref %Sys32%\DRIVERS\NETHFDRV.SYS
ZOO %Sys32%\DRIVERS\NETHFDRV.SYS
del %Sys32%\DRIVERS\NETHFDRV.SYS

; McAfee Security Scan Plus
exec C:\Program Files\McAfee Security Scan\uninstall.exe

; Network System Driver
exec C:\Program Files (x86)\Common Files\Config\uninstinethnfd.exe

; Mobogenie
exec C:\Program Files (x86)\Mobogenie\uninst.exe

deltmp
delnfr
CZOO
areg

;-------------------------------------------------------------

=============
��, �� .
�� uVS (�� : ZOO_2012-12-31_23-59-59.rar/7z) �� sendvirus2011@gmail.com, support@esetnod32.ru

+
�� , � ��
+
------------
��,
��
http://forum.esetnod32.ru/forum9/topic10688/
02.07.2014 05:56:38, santy.

�� , �� HFPAPI.DLL, HFNAPI.DLL,

Tue, 01 Jul 2014 22:06:52 +0400

�� , �� HFPAPI.DLL, HFNAPI.DLL, � �� .
�� , ��
1-��_2014-07-01_21-22-51.rar
01.07.2014 22:06:52, �� .

����� esetnod32.ru [����: ������� � ���������, ������ � ����������� ������ HFPAPI.DLL, HFNAPI.DLL,]

������� � ���������, ������ � ����������� ������ HFPAPI.DLL, HFNAPI.DLL,

������� � ���������, ������ � ����������� ������ HFPAPI.DLL, HFNAPI.DLL,

������� � ���������, ������ � ����������� ������ HFPAPI.DLL, HFNAPI.DLL,

������� � ���������, ������ � ����������� ������ HFPAPI.DLL, HFNAPI.DLL,

�� esetnod32.ru [��: �� , �� HFPAPI.DLL, HFNAPI.DLL,]

�� , �� HFPAPI.DLL, HFNAPI.DLL,

�� , �� HFPAPI.DLL, HFNAPI.DLL,

�� , �� HFPAPI.DLL, HFNAPI.DLL,

�� , �� HFPAPI.DLL, HFNAPI.DLL,