Heure de démarrage Type Titre État 2016-08-19 16:14:13 Analyse antivirus Annulé Analyse antivirus avec G DATA INTERNET SECURITY Version 25.2.0.2 (01/07/2016) Signatures de virus du 19/08/2016 Heure de démarrage : 19/08/2016 16:14:13 Moteur(s) : Moteur A (AVA 25.7944), Moteur B (GD 25.7535) Heuristique : Entrer Archives : Entrer Zones de système : Entrer Détecter les RootKits : Supprimer Analyse des zones de système... Analyse des répertoires et fichiers suivants : C:\ C:\Users\hiba\ Exécution de l'analyse complète : 19/08/2016 19:25:07 268832 fichiers analysés 12 fichiers contaminés détectés 0 fichiers suspects détectés Archive: [STABLE]CD_Future_v8.1[Final].zip Chemin: C:\Users\hiba\Documents\SAMSUNG OUAHIBA État: Virus détecté Virus: Android.Riskware.SMSSend.gRPF, Android.Monitor.MobileTrack.B (Moteur A) Objet: system/app/wipereceiver.apk=>res/layout/main.xml In Archive: C:\Users\hiba\Documents\SAMSUNG OUAHIBA\[STABLE]CD_Future_v8.1[Final].zip État: Junkware (PUP) trouvé Junkware (PUP): Android.Riskware.SMSSend.gRPF Objet: system/app/MobileTrackerEngineTwo.apk=>res/layout/main.xml In Archive: C:\Users\hiba\Documents\SAMSUNG OUAHIBA\[STABLE]CD_Future_v8.1[Final].zip État: Virus détecté Virus: Android.Monitor.MobileTrack.B Archive: -5- Symantec Norton Ghost v15 Recovery Disc.iso Chemin: C:\Users\hiba\Desktop État: Junkware (PUP) trouvé Junkware (PUP): Application.Keygen.CA (Moteur A) Objet: -SYMANTEC NORTON GHOST V15.0.1.36526 (F)-/-3- KEYGEN.EXE In Archive: C:\Users\hiba\Desktop\-5- Symantec Norton Ghost v15 Recovery Disc.iso État: Junkware (PUP) trouvé Junkware (PUP): Application.Keygen.CA Archive: Hiren's.BootCD.15.2.iso Chemin: C:\Users\hiba\Desktop\boohiren État: Junkware (PUP) trouvé Junkware (PUP): Archive.Application.Agent.T90Y91 (Moteur B) Objet: HBCD\Boot\konboot.gz In Archive: C:\Users\hiba\Desktop\boohiren\Hiren's.BootCD.15.2.iso État: Junkware (PUP) trouvé Junkware (PUP): Archive.Application.Agent.T90Y91 Archive: -5- Symantec Norton Ghost v15 Recovery Disc.iso Chemin: C:\Users\hiba\Desktop\fichier de la usb\Symantec Norton Ghost v15.0.1.36526 (F) + SP1 + Recovery Disc [CORE] [WinROR] État: Junkware (PUP) trouvé Junkware (PUP): Application.Keygen.CA (Moteur A) Objet: -SYMANTEC NORTON GHOST V15.0.1.36526 (F)-/-3- KEYGEN.EXE In Archive: C:\Users\hiba\Desktop\fichier de la usb\Symantec Norton Ghost v15.0.1.36526 (F) + SP1 + Recovery Disc [CORE] [WinROR]\-5- Symantec Norton Ghost v15 Recovery Disc.iso État: Junkware (PUP) trouvé Junkware (PUP): Application.Keygen.CA Archive: 55 Chemin: C:\Users\scorebut\AppData\Roaming\IDM\DwnlData\scorebut\55_55 État: Junkware (PUP) trouvé Junkware (PUP): Win32.Application.OpenCandy.G (Moteur B) Objet: UPX In Archive: C:\Users\scorebut\AppData\Roaming\IDM\DwnlData\scorebut\55_55\55 État: Junkware (PUP) trouvé Junkware (PUP): Win32.Application.OpenCandy.G Archive: 63 Chemin: C:\Users\scorebut\AppData\Roaming\IDM\DwnlData\scorebut\63_63 État: Junkware (PUP) trouvé Junkware (PUP): Win32.Application.OpenCandy.G (Moteur B) Objet: UPX In Archive: C:\Users\scorebut\AppData\Roaming\IDM\DwnlData\scorebut\63_63\63 État: Junkware (PUP) trouvé Junkware (PUP): Win32.Application.OpenCandy.G Archive: system.rfs.tar Chemin: C:\Users\scorebut\Documents\SAV SAMSUNG GT S5360\2016-03-26.14.04.45 État: Virus détecté Virus: Android.Monitor.MobileTrack.B (Moteur A) Objet: system/app/MobileTrackerEngineTwo.apk=>resources.arsc In Archive: C:\Users\scorebut\Documents\SAV SAMSUNG GT S5360\2016-03-26.14.04.45\system.rfs.tar État: Virus détecté Virus: Android.Monitor.MobileTrack.B Archive: HYPERION-09.DXMJ1.GM-FINAL.BUILD-UPD.01.zip Chemin: C:\Users\scorebut\Downloads État: Virus détecté Virus: Android.Riskware.SMSSend.gRPF, Android.Monitor.MobileTrack.B (Moteur A) Objet: system/app/wipereceiver.apk=>classes.dex In Archive: C:\Users\scorebut\Downloads\HYPERION-09.DXMJ1.GM-FINAL.BUILD-UPD.01.zip État: Junkware (PUP) trouvé Junkware (PUP): Android.Riskware.SMSSend.gRPF Objet: system/app/MobileTrackerEngineTwo.apk=>classes.dex In Archive: C:\Users\scorebut\Downloads\HYPERION-09.DXMJ1.GM-FINAL.BUILD-UPD.01.zip État: Virus détecté Virus: Android.Monitor.MobileTrack.B Archive: SUPERAntiSpyware.Pro.6.0.1216.rar Chemin: C:\Users\scorebut\Downloads État: Virus détecté Virus: Archive.Trojan.Agent.BHN5F3 (Moteur B) Objet: SUPERAntiSpyware.Pro.6.0.1216\Keymaker.rar In Archive: C:\Users\scorebut\Downloads\SUPERAntiSpyware.Pro.6.0.1216.rar État: Virus détecté Virus: Archive.Trojan.Agent.BHN5F3 Archive: -5- Symantec Norton Ghost v15 Recovery Disc.iso Chemin: C:\Users\hiba\Desktop État: Junkware (PUP) trouvé Junkware (PUP): Application.Keygen.CA (Moteur A) Objet: -SYMANTEC NORTON GHOST V15.0.1.36526 (F)-/-3- KEYGEN.EXE In Archive: C:\Users\hiba\Desktop\-5- Symantec Norton Ghost v15 Recovery Disc.iso État: Junkware (PUP) trouvé Junkware (PUP): Application.Keygen.CA Archive: Hiren's.BootCD.15.2.iso Chemin: C:\Users\hiba\Desktop\boohiren État: Junkware (PUP) trouvé Junkware (PUP): Archive.Application.Agent.T90Y91 (Moteur B) Objet: HBCD\Boot\konboot.gz In Archive: C:\Users\hiba\Desktop\boohiren\Hiren's.BootCD.15.2.iso État: Junkware (PUP) trouvé Junkware (PUP): Archive.Application.Agent.T90Y91 Archive: -5- Symantec Norton Ghost v15 Recovery Disc.iso Chemin: C:\Users\hiba\Desktop\fichier de la usb\Symantec Norton Ghost v15.0.1.36526 (F) + SP1 + Recovery Disc [CORE] [WinROR] État: Junkware (PUP) trouvé Junkware (PUP): Application.Keygen.CA (Moteur A) Objet: -SYMANTEC NORTON GHOST V15.0.1.36526 (F)-/-3- KEYGEN.EXE In Archive: C:\Users\hiba\Desktop\fichier de la usb\Symantec Norton Ghost v15.0.1.36526 (F) + SP1 + Recovery Disc [CORE] [WinROR]\-5- Symantec Norton Ghost v15 Recovery Disc.iso État: Junkware (PUP) trouvé Junkware (PUP): Application.Keygen.CA Accès aux fichiers suivants refusé : C:\Windows\System32\config\BBI C:\Windows\System32\config\BBI.LOG1 C:\Windows\System32\config\BBI.LOG2 C:\Windows\System32\winevt\Logs\AirSpaceChannel.etl C:\Windows\System32\winevt\Logs\Microsoft-RMS-MSIPC%4Debug.etl C:\swapfile.sys C:\Boot\BCD C:\Boot\BCD.LOG C:\Users\hiba\AppData\Local\Google\Chrome\User Data\lockfile C:\Users\hiba\AppData\Local\Google\Chrome\User Data\Default\Current Session C:\Users\hiba\AppData\Local\Google\Chrome\User Data\Default\Current Tabs C:\Users\hiba\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0 C:\Users\hiba\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2 C:\Users\hiba\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1 C:\Users\hiba\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3 C:\Users\hiba\AppData\Local\Google\Chrome\User Data\Default\Cache\index C:\Users\hiba\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1 C:\Users\hiba\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_0 C:\Users\hiba\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_2 C:\Users\hiba\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_3 C:\Users\hiba\AppData\Local\Google\Chrome\User Data\Default\GPUCache\index C:\Users\hiba\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_0 C:\Users\hiba\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1 C:\Users\hiba\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_3 C:\Users\hiba\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_2 C:\Users\hiba\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\index C:\Users\hiba\AppData\Local\Microsoft\Windows\WebCacheLock.dat C:\Users\hiba\AppData\Local\Microsoft\Windows\Notifications\WPNPRMRY.tmp C:\Users\hiba\AppData\Local\Microsoft\Windows\WebCache\V01.log C:\Users\hiba\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat C:\Users\hiba\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\Settings\settings.dat.LOG1 C:\Users\hiba\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\Settings\settings.dat C:\Users\hiba\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\Settings\settings.dat.LOG2 C:\Users\hiba\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\Settings\settings.dat.LOG1 C:\Users\hiba\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\Settings\settings.dat C:\Users\hiba\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\Settings\settings.dat.LOG2 C:\Users\hiba\AppData\Local\TileDataLayer\Database\EDB.log C:\Users\hiba\AppData\Local\TileDataLayer\Database\vedatamodel.edb C:\Users\hiba\AppData\Local\TileDataLayer\Database\EDBtmp.log C:\Users\hiba\AppData\Local\Microsoft\Windows\WebCacheLock.dat C:\Users\hiba\AppData\Local\Microsoft\Windows\Notifications\WPNPRMRY.tmp C:\Users\hiba\AppData\Local\Microsoft\Windows\WebCache\V01.log C:\Users\hiba\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat C:\Users\hiba\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\Indexed DB\edb.log C:\Users\hiba\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\Indexed DB\IndexedDB.edb C:\Users\hiba\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\Settings\settings.dat.LOG1 C:\Users\hiba\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\Settings\settings.dat C:\Users\hiba\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\Settings\settings.dat.LOG2 C:\Users\hiba\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\Settings\settings.dat.LOG1 C:\Users\hiba\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\Settings\settings.dat C:\Users\hiba\AppData\Local\Packages\Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy\Settings\settings.dat.LOG2 C:\Users\hiba\AppData\Local\TileDataLayer\Database\EDB.log C:\Users\hiba\AppData\Local\TileDataLayer\Database\vedatamodel.edb C:\Users\hiba\AppData\Local\TileDataLayer\Database\EDBtmp.log C:\Users\hiba\AppData\Roaming\Mozilla\Firefox\Profiles\sv267p6y.default-1459363094042\parent.lock Les fichiers suivants sont protégés par mot de passe : C:\Program Files (x86)\InstallShield Installation Information\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}\SupportFiles.7z C:\Glary.Utilities.PRO.v5.52.0.73+V Portable.Multilang.Incl-Keygen---\gup5setup.exe C:\Glary.Utilities.PRO.v5.52.0.73+V Portable.Multilang.Incl-Keygen---\Edition Portable\Portable\data\junkcleaner.dat C:\Users\hiba\Desktop\recall.exe C:\Users\hiba\Desktop\boohiren\Hiren's.BootCD.15.2.iso C:\Users\hiba\Desktop\Glary.Utilities.PRO.v5.48.0.68+V Portable.Multilang.Incl-Keygen---\Edition Portable\Portable\data\junkcleaner.dat C:\Users\hiba\Desktop\L'islam en 3500 questions\Quiz_Islam_3500_med-it.be.part01.rar C:\Users\hiba\Desktop\L'islam en 3500 questions\Quiz_Islam_3500_med-it.be.part02.rar C:\Users\hiba\Desktop\L'islam en 3500 questions\Quiz_Islam_3500_med-it.be.part04.rar C:\Users\hiba\Desktop\Reg Organizer Portable 7.35\RegOrganizerPortable.exe C:\Users\hiba\Desktop\Wise Care 365 Pro 3.96 Build 357\WiseCare365.exe C:\Users\hiba\Desktop\Wondershare MobileTrans v7.6.1.480 Incl Key\2-mobiletrans_full1125.exe C:\Users\scorebut\Desktop\Glary Utilities Pro v5.44.0.64-P2P\gu5setup.exe C:\Users\scorebut\Desktop\VeryDoc Video to GIF Animation Converter 2.0\video-to-gif.exe C:\Users\scorebut\Documents\MEGAsync Downloads\Serif DrawPlus X6 ISO.rar C:\Users\scorebut\Downloads\Glary_Utilities_v5.49.0.69.exe C:\Users\scorebut\Downloads\Serif DrawPlus X8 V14 0 0 19 I Downloader.rar C:\Users\hiba\Desktop\boohiren\Hiren's.BootCD.15.2.iso C:\Users\hiba\Desktop\Glary.Utilities.PRO.v5.48.0.68+V Portable.Multilang.Incl-Keygen---\Edition Portable\Portable\data\junkcleaner.dat C:\Users\hiba\Desktop\L'islam en 3500 questions\Quiz_Islam_3500_med-it.be.part01.rar C:\Users\hiba\Desktop\L'islam en 3500 questions\Quiz_Islam_3500_med-it.be.part02.rar C:\Users\hiba\Desktop\L'islam en 3500 questions\Quiz_Islam_3500_med-it.be.part03.rar C:\Users\hiba\Desktop\L'islam en 3500 questions\Quiz_Islam_3500_med-it.be.part04.rar C:\Users\hiba\Desktop\Reg Organizer Portable 7.35\RegOrganizerPortable.exe