Zeb Help Process | Analyseur de rapports de sécurité 
| ACCUEIL | PRESENTATION | TUTORIEL | INSTALL | HELPERS | ZHPDiag | ZHPFix | LIENS | MENACES | ACTUALITES | FEEDBACK | CHANGELOG |
| Général | BTFix | ComboFix | DiversFix | HaxFix | LopFix | NaviFix | SDFix | SmitFraudFix | USBFix | VundoFix | WareOutFix | DriverFix |
PAGES : 1
ChangeLog LopFix (Depuis le 09/11/2008) |
NOTE : Ce changelog liste seulement les lignes malwares qui sont détectées par Zeb Help Process lors de l'analyse de rapports de sécurité. Ces informations proviennent en partie des feedbacks de helpers francophones.
Lop S&D est un utilitaire développé par la team IDN. Il permet la détection et l'éradication de malwares LOP.
L''utilitaire LopxpMH2 permet la détection de malwares LOP.
February,2010
O4 - HKCU\..\Run: [startless] %USERPROFILE%\APPLIC~1\MFCDTE~1\Idle extra itch.exe
january,2010
O4 - HKCU\..\Run: [Mediaproxy] %USERPROFILE%\APPLIC~1\exitproc\Bind Bold Gram.exe
O4 - HKLM\..\Run: [dentbagsacidmode] %USERPROFILE%\Application Data\iso flag dent bags\Meal bone.exe
O4 - HKCU\..\Run: [dart shim] %USERPROFILE%\APPLIC~1\FLAPBO~1\Warn kind copy.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\stupid creative poll axis]
%USERPROFILE%\Application Data\Memo save stupid creative\Ford Browse.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Dalecreative]
%USERPROFILE%\APPLIC~1\DOWNLO~1\64 bash coal.exe
O4 - HKCU\..\Run: [Error mail] "C:\ProgramData\Upload Bags Bags.owimem"
O4 - HKCU\..\Run: [LESS CITY AMEN SETUP] "C:\ProgramData\Web move ooze.9cfvpss"
O4 - HKLM\..\Run: [the bone download 1] %USERPROFILE%\Application Data\axis wait the bone\film flag.exe
O4 - HKCU\..\Run: [Wipe rule] %USERPROFILE%\APPLIC~1\SECOND~1\BowsStupid.exe
O4 - HKLM\..\Run: [bend logo clock film] %ALLUSERS%\Application Data\Frag great bend logo\New Pop.exe
December,2009
O4 - HKLM\..\Run: [hold data mags move] "C:\ProgramData\boob extra sign.txn2f8"
O4 - HKCU\..\Run: [rect dumb] "C:\ProgramData\Bait Win Win.1ffwt"
O4 - HKCU\..\Run: [Kind Mess Surf Settings] "C:\ProgramData\more hide roam.rbi43xq"
O4 - HKCU\..\Run: [Second Help] %USERPROFILE%\APPLIC~1\IDLEPO~1\up comp bags.exe
O4 - HKLM\..\Run: [bait face type axis] %USERPROFILE%\Application Data\Meow Intra Bait Face\BUILD SEND.exe
November,2009
O4 - HKLM\..\Run: [file wave user bat] %USERPROFILE%\Application Data\Mail For File Wave\coal thunk.exe
O4 - HKCU\..\Run: [Long Error] %USERPROFILE%\APPLIC~1\1OPENA~1\Free Each.exe
October,2009
O4 - HKLM\..\Run: [Stupid Data Dart Wave] %USERPROFILE%\Application Data\flag ace stupid data\Wait mfcd.exe
O4 - HKCU\..\Run: [curb ping] %USERPROFILE%\APPLIC~1\BITSHT~1\Objspam.exe
O4 - HKCU\..\Run: [regs beep] %USERPROFILE%\APPLIC~1\GLOBAL~1\Media web tool.exe
O4 - HKLM\..\Run: [slow 1] "C:\ProgramData\warn user user.mw6ro"
O4 - HKLM\..\Run: [Ford mpeg road draw] "C:\ProgramData\Axis Knob Bat.k0ffga"
O4 - HKCU\..\Run: [For Sign] %USERPROFILE%\APPLIC~1\CHINNE~1\kind grid up.exe
O4 - HKCU\..\Run: [Vga Third] "C:\ProgramData\PLATFORMOPTIONOPTION.ktkps"
O4 - HKCU\..\Run: [Flag Owns Live Grim] "C:\ProgramData\Long Safe Real.y9corq"
September,2009
O4 - HKCU\..\Run: [Camp face] %USERPROFILE%\APPLIC~1\GRIMSE~1\more cast.exe
O4 - HKLM\..\Run: [mpeg heck log link] %USERPROFILE%\Application Data\Joy coal mpeg heck\Time proc.exe
August,2009
O4 - HKCU\..\Run: [LOGO OPEN] %USERPROFILE%\APPLIC~1\ANTIWE~1\RECT DEAF.exe
April,2009
C:\ProgramData\EncCopyCopy.thzv9s4
C:\ProgramData\Dale Flag Grid.z150ra
March,2009
O4 - HKCU\..\Run: [WarnJump] %USERPROFILE%\APPLIC~1\WAITVI~1\multi real more.exe
O4 - HKCU\..\Run: [Bike platform] %USERPROFILE%\APPLIC~1\HOLETO~1\1readme.exe
O4 - HKCU\..\Run: [1great] %USERPROFILE%\APPLIC~1\GRAMTI~1\binlistabout.exe
February,2009
O4 - HKLM\..\Run: [Win bold shim license] %USERPROFILE%\Application Data\Cdrom book win bold\PLATFORM HOLD.exe
O4 - HKCU\..\Run: [Dash Regs] %USERPROFILE%\APPLIC~1\DARTON~1\CityHelpPop.exe
O4 - HKCU\..\Run: [BITSUP] %USERPROFILE%\APPLIC~1\HOPEME~1\film dumb.exe
O4 - HKCU\..\Run: [list inter] %USERPROFILE%\APPLIC~1\INTRAV~1\wave bore show.exe
%ALLUSERS%\APPLIC~1\WMAGLOBALITCHONLINE
O4 - HKLM\..\Run: [Itchonlinemess4] %ALLUSERS%\Application Data\WMAGLOBALITCHONLINE\Nounlogo.exe
O4 - HKCU\..\Run: [MPEG REF] %USERPROFILE%\APPLIC~1\BASEBO~1\WARNMEETTRAY.exe
O4 - HKLM\..\Run: [Option Bib Logo Log] "C:\ProgramData\option joy lite.18qwc6h"
O4 - HKLM\..\Run: [Frag Keep] "C:\ProgramData\licensecopycopy.8bz9xrz"
O4 - HKCU\..\Run: [Itch ford four knob] "C:\ProgramData\Ball Ante Gram.kxegx"
O4 - HKCU\..\Run: [Curb tool help dart] "C:\ProgramData\draw body second.jbcw51z"
O4 - HKCU\..\Run: [Ball proc] "C:\ProgramData\Extra balm balm.9qo0d"
O4 - HKCU\..\Run: [mathdebug] %USERPROFILE%\APPLIC~1\STOPBR~1\Bore media lies.exe
O4 - HKCU\..\Run: [Idle test] %USERPROFILE%\APPLIC~1\INSIDE~1\Drv Warn Tool.exe
O4 - HKLM\..\Run: [COPY FRAG KEEP BLEH] %USERPROFILE%\Application Data\DRIVE EGGS COPY FRAG\FLAP FUNK.exe
O4 - HKCU\..\Run: [Noun Army] %USERPROFILE%\APPLIC~1\IDOLMA~1\boldgram.exe
O4 - HKCU\..\Run: [JoyElse] "C:\ProgramData\plan debug debug.k4nswx"
O4 - HKCU\..\Run: [Itch ford four knob] "C:\ProgramData\Sect 1 obj.far8y"
O4 - HKCU\..\Run: [Error deaf] %USERPROFILE%\APPLIC~1\blahcopy\Surf Spam Mode.exe
O4 - HKCU\..\Run: [DART JUNK] %USERPROFILE%\APPLIC~1\CORNSE~1\ownslogoonline.exe
January,2009
O4 - HKCU\..\Run: [WEBONE] %USERPROFILE%\APPLIC~1\LOGATO~1\Long ford store.exe
O4 - HKLM\..\Run: [WIPE MORE DART AMEN] %USERPROFILE%\Application Data\Slow eggs wipe more\Base Second.exe
O4 - HKCU\..\Run: [Stupid joy] %USERPROFILE%\APPLIC~1\FLAGSU~1\forkfree.exe
C:\ProgramData\The Vc Readme.pxa378b
C:\ProgramData\Holeelseelse.83hqf
2009-01-08 17:58:16 ----D---- %USERPROFILE%\Application Data\soft chic meet great
O4 - HKCU\..\Run: [owns curb] %USERPROFILE%\APPLIC~1\BIKE01~1\Bin Four Grid.exe
O4 - HKLM\..\Run: [creative bone audio draw] %USERPROFILE%\Application Data\defaulterrorcreativebone\Logmeow.exe
O4 - HKCU\..\Run: [Barb Joy] "%PROGRAMFILES%\nurbthatthat.dqaj183"
O4 - HKCU\..\Run: [vc log bows face] "%PROGRAMFILES%\remote bash cool.i8k468"
O4 - HKCU\..\Run: [borelog] %USERPROFILE%\APPLIC~1\SECOND~1\Pure film glue.exe
O4 - HKLM\..\Run: [face bin load show] %USERPROFILE%\Application Data\title tool face bin\gram start.exe
O4 - HKCU\..\Run: [NameBib] %USERPROFILE%\APPLIC~1\PROCFI~1\Boremagsdownload.exe
O4 - HKCU\..\Run: [Deaf Thunk] "%PROGRAMFILES%\64SoftwareSoftware.g3ul1r"
O4 - HKCU\..\Run: [Deaf Thunk] "%PROGRAMFILES%\64SoftwareSoftware.icr5n"
O4 - HKCU\..\Run: [Deaf Thunk] "%PROGRAMFILES%\64SoftwareSoftware.c2mm3bv"
O4 - HKCU\..\Run: [Bags Else Hole Lite] "%PROGRAMFILES%\Global City Shim.e2nk9
O4 - HKCU\..\Run: [Bags Else Hole Lite] "%PROGRAMFILES%\lite online readme.to5u9u5"
Lop.com Toolbar
O2 - BHO: (no name) - {EF3DA30D-2D9B-1A08-DDED-FEE5189B02B1} - %USERPROFILE%\APPLIC~1\EQFILE~1\Global Pop.exe
O4 - HKUS\S-1-5-21-2538966686-1566660433-3794016594-1006\..\Run: [book ante] %USERPROFILE%\APPLIC~1\ELSEPL~1\AXISNEW.exe (User '...')
O4 - HKLM\..\Run: [Sixthblue1intra] %USERPROFILE%\Application Data\Pile amen sixth blue\interfour.ex
O4 - HKLM\..\Run: [Support audio cool poll] %USERPROFILE%\Application Data\INTERNET SPAM SUPPORT AUDIO\soft manager.exe
O4 - HKCU\..\Run: [stopbold] %USERPROFILE%\APPLIC~1\WINDOW~1\reffaceball.exe
O4 - HKCU\..\Run: [base proxy] "%PROGRAMFILES%\Flagobjobj.ksfm3f"
O4 - HKCU\..\Run: [vc log bows face] "%PROGRAMFILES%\dent start bike.wvt7jx8"
December,2008
%USERPROFILE%\\Application Data\cake bold bend
%ALLUSERS%\Application Data\Wait Find Browse New
O4 - HKCU\..\Run: [five blue] %USERPROFILE%\APPLIC~1\CAKEBO~1\New Third.exe
O4 - HKLM\..\Run: [Browse new fork rule] %USERPROFILE%\Application Data\Wait Find Browse New\16 bat.exe
O4 - HKCU\..\Run: [idol barb] %USERPROFILE%\APPLIC~1\ENCMATH\send axis.exe
O4 - HKLM\..\Run: [pluswarnbalmtitle] %ALLUSERS%\Application Data\soapsendpluswarn\EACHMFCD.exe
O4 - HKCU\..\Run: [OWNSFAST] %USERPROFILE%\APPLIC~1\CLOSEG~1\Defaultknob.exe
O4 - HKCU\..\Run: [Exitlies] C:\DOCUME~1\THOMAS\APPLIC~1\64VGA~1\Type Meet Eggs.ex
O2 - BHO: (no name) - {E1F34BCB-BC06-28E2-D0F6-82835B5BFE9B} - %USERPROFILE%\APPLIC~1\Roadbarb\Readme stop.exe (file missing)
O4 - HKLM\..\Run: [Proc Deaf Delete Peak] %ALLUSERS%\Application Data\file joy proc deaf\link start.exe
O4 - HKCU\..\Run: [Tonsbait] %USERPROFILE%\APPLIC~1\Film Shim Jugs\Castface.exe
O4 - HKCU\..\Run: [viewproxy] %USERPROFILE\APPLIC~1\SOFTWA~1\Nurb Vga Mode.exe
O4 - HKCU\..\Run: [vga for] %USERPROFILE%\APPLIC~1\Greyidol\Wma Third.exe
O4 - HKUS\S-1-5-21-4260010653-3200473413-4177974999-1020\..\Run: [vga for] %USERPROFILE%\APPLIC~1\Greyidol\Wma Third.exe
O4 - HKLM\..\Run: [1 mags 16 more] %ALLUSERS%\Application Data\Admin Inter 1 Mags\Barb For.exe
O4 - HKCU\..\Run: [style cool 2 city] "C:\ProgramData\Shim Delete Lite.q4gnbe"
O4 - HKCU\..\Run: [GreatLog] "C:\ProgramData\chingramgram.wge7jq"
O4 - HKLM\..\Run: [Viewclockcastwin] %ALLUSERS%\Application Data\1 Start View Clock\optionerror.exe
O4 - HKCU\..\Run: [BITSUP] %USERPROFILE%\APPLIC~1\HOPEME~1\film dumb.exe
%USERPROFILE%\Application Data\MULTI IDOL FLAG\Settingsdog.exe
O4 - HKCU\..\Run: [Citysecond] %USERPROFILE%\APPLIC~1\ANTIME~1\mfcd four.exe
O4 - HKLM\..\Run: [eggs joy math type] %ALLUSERS%\Application Data\Bind army eggs joy\4 dupe.exe
%USERPROFILE%\Application Data\Once Dog Dupe Amok\kind one.exe
O4 - HKLM\..\Run: [dupe amok gram atom] %USERPROFILE%\Application Data\Once Dog Dupe Amok\kind one.exe
O4 - HKCU\..\Run: [AcidStyle] "C:\ProgramData\Poke Junk Junk.e6yeyv"
November,2008
%ALLUSERS%\APPLIC~1\Bib Dog Flap Long
%ALLUSERS%\APPLIC~1\Ball mapi owns ping
O4 - HKLM\..\Run: [Owns Ping Ante Admin] %ALLUSERS%\Application Data\Ball mapi owns ping\Chin find.exe
O4 - HKLM\..\Run: [Base road long save] %ALLUSERS%\Application Data\File dvd base road\Program lies.exe
O4 - HKCU\..\Run: [64 Poll] %USERPROFILE%\APPLIC~1\BUILDA~1\Dvd funk ooze.exe
O4 - HKUS\S-1-5-21-1251867559-3233363079-4060089106-1008\..\Run: [64 Poll] %USERPROFILE%\APPLIC~1\BUILDA~1\Dvd funk ooze.exe (User '?')
%ALLUSERS%\Application Data\Cast ping base frag\Admin atom.exe
O4 - HKLM\..\Run: [Base frag grid bows] %ALLUSERS%\Application Data\Cast ping base frag\Admin atom.exe
%USERPROFILE%\APPLIC~1\ITCHHI~1\Pile Heck Bleh.exe
O4 - HKCU\..\Run: [Tons slow] %USERPROFILE%\APPLIC~1\ITCHHI~1\Pile Heck Bleh.exe
%ALLUSERS%\Application Data\Remote Test Regs Setup\Play Rect.exe
O4 - HKLM\..\Run: [Regs Setup Idol Pop] %ALLUSERS%\Application Data\Remote Test Regs Setup\Play Rect.exe
%USERPROFILE%\Application Data\MEETMI~1\Batvccake.exe
O4 - HKCU\..\Run: [Move each] %USERPROFILE%\Application Data\MEETMI~1\Batvccake.exe
%ALLUSERS%\Application Data\Long slow road itch\slow cool.exe
O4 - HKLM\..\Run: [ROAD ITCH AMOK PING] %ALLUSERS%\Application Data\Long slow road itch\slow cool.exe
%USERPROFILE%\APPLIC~1\DEAFTY~1\cast bleh.exe
O4 - HKCU\..\Run: [Bags regs] %USERPROFILE%\APPLIC~1\DEAFTY~1\cast bleh.exe
%ALLUSERS%\Application Data\STORE LESS JUGS SURF\balm wait.exe
O4 - HKLM\..\Run: [Jugs Surf Inter Media] %ALLUSERS%\Application Data\STORE LESS JUGS SURF\balm wait.exe
PAGES : 1