Auteur Sujet: SpeedItupFree  (Lu 1135 fois)

0 Membres et 1 Invité sur ce sujet

En ligne chantal11

  • Admin Formation
  • Mega Power Members
  • ****
  • Messages: 22966
    • Windows 10 - Windows 8 - Windows 7 - Windows Vista
SpeedItupFree
« le: août 10, 2017, 16:51:17 »
Contenu republié avec la permission de Malwarebytes

SpeedItupFree est un faux nettoyeur/optimiseur, affiche intentionnellement des faux-positifs pour convaincre l'utilisateur que son système a des problèmes et lui faire acheter le logiciel.
Plus d'infos : Registry Cleaners: Digital Snake Oil | Malwarebytes Labs



  • S'installe en tant que programme, soit à l'insu de l'utilisateur ou parce qu'il n'a pas décoché les sponsors proposés lors de l'installation d'un logiciel gratuit légitime, soit depuis le site de l'éditeur

  • Affiche ces alertes pendant l'installation

  • Affiche ces écrans pendant les opérations


  • Crée ces icônes dans la Barre des tâches, sur le Bureau et dans le Menu Démarrer








**********

Détection de SpeedItupFree dans des rapports FRST :

Citer
SpeeditupFree (HKLM-x32\...\SpeeditupFree) (Version: 11.20 - MicroSmarts LLC) <==== ATTENTION

() C:\Program Files (x86)\SpeedItup Free\spdfrmon.exe
(RJL Software, Inc.) C:\Program Files (x86)\Display Offer\delayexec.exe
(MicroSmarts LLC.) C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe
HKCU\...\Run: [SpeedItupFree] => C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe [7948448 2017-07-21] (MicroSmarts LLC.)
R2 spdfrmon; C:\Program Files (x86)\SpeedItup Free\spdfrmon.exe [921680 2013-11-01] ()
C:\Program Files (x86)\Display Offer
C:\Program Files (x86)\SpeedItup Free
C:\Windows\SpeedItup Free Setup Log.txt
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedItup Free.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\SpeedItup Free.lnk
C:\Users\Public\Desktop\SpeedItup Free.lnk
C:\Windows\SpeedItup Free
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedItup Free
C:\ProgramData\spds90.txt
C:\Users\{Nom_Utilisateur}\AppData\Local\Temp\spuad0.exe
C:\Users\{Nom_Utilisateur}\AppData\Local\Temp\spuad1.exe

**********

Détecté et traité par Malwarebytes en tant que PUP/LPI (Programme potentiellement Indésirable)


Citer
PUP.Optional.SpeedItUp
PUP.Optional.PCOptimizerPro

Citer
-Scan Details-
Process: 3
PUP.Optional.SpeedItUp, C:\PROGRAM FILES (X86)\SPEEDITUP FREE\SPDFRMON.EXE, Quarantined, [1201], [329424],1.0.2409
PUP.Optional.PCOptimizerPro, C:\Program Files (x86)\Display Offer\delayexec.exe, Quarantined, [202], [329412],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe, Quarantined, [1201], [329448],1.0.2409

Module: 3
PUP.Optional.SpeedItUp, C:\PROGRAM FILES (X86)\SPEEDITUP FREE\SPDFRMON.EXE, Quarantined, [1201], [329424],1.0.2409
PUP.Optional.PCOptimizerPro, C:\Program Files (x86)\Display Offer\delayexec.exe, Quarantined, [202], [329412],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe, Quarantined, [1201], [329448],1.0.2409

Registry Key: 24
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\TYPELIB\{A1011E88-B997-11CF-2222-0080C7B2D6BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\INTERFACE\{0142D788-C4FC-4ED8-2222-D654E27AF7F8}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\INTERFACE\{A1843388-EFC2-49C9-2222-FC0C403B0EBB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\INTERFACE\{A1D87888-DEAA-4971-2222-5D5046F2B3BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{0142D788-C4FC-4ED8-2222-D654E27AF7F8}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{A1843388-EFC2-49C9-2222-FC0C403B0EBB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{A1D87888-DEAA-4971-2222-5D5046F2B3BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{0142D788-C4FC-4ED8-2222-D654E27AF7F8}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A1843388-EFC2-49C9-2222-FC0C403B0EBB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A1D87888-DEAA-4971-2222-5D5046F2B3BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{A1011E88-B997-11CF-2222-0080C7B2D6BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{A1011E88-B997-11CF-2222-0080C7B2D6BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\spdfrmon, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\spdfrmon.Gate, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\spdfrmon.Gate.1, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\APPID\{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{A19F8F88-F91E-4E49-2222-BD21AB39D1BB}, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\APPID\SPDFRMON.EXE, Delete-on-Reboot, [1201], [329818],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SpeeditupFree, Delete-on-Reboot, [1201], [329420],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\SPDFRMON.EXE, Delete-on-Reboot, [1201], [329818],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\SPDFRMON.EXE, Delete-on-Reboot, [1201], [329818],1.0.2409

Registry Value: 4
PUP.Optional.SpeedItUp, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|SpeedItupFree, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\APPID\SPDFRMON.EXE|APPID, Delete-on-Reboot, [1201], [329818],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\SPDFRMON.EXE|APPID, Delete-on-Reboot, [1201], [329818],1.0.2409
PUP.Optional.SpeedItUp, HKLM\SOFTWARE\CLASSES\WOW6432NODE\APPID\SPDFRMON.EXE|APPID, Delete-on-Reboot, [1201], [329818],1.0.2409

Registry Data: 0
(No malicious items detected)

Data Stream: 0
(No malicious items detected)

Folder: 6
PUP.Optional.PCOptimizerPro, C:\PROGRAM FILES (X86)\DISPLAY OFFER, Delete-on-Reboot, [202], [329412],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\PROGRAM FILES (X86)\SPEEDITUP FREE, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\SPEEDITUP FREE, Delete-on-Reboot, [1201], [329450],1.0.2409
PUP.Optional.SpeedItUp, C:\WINDOWS\SPEEDITUP FREE, Delete-on-Reboot, [1201], [329420],1.0.2409

File: 56
PUP.Optional.SpeedItUp, C:\PROGRAM FILES (X86)\SPEEDITUP FREE\SPDFRMON.EXE, Delete-on-Reboot, [1201], [329424],1.0.2409
PUP.Optional.SpeedItUp, C:\PROGRAMDATA\SPDS90.TXT, Delete-on-Reboot, [1201], [329815],1.0.2409
PUP.Optional.SpeedItUp, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\SPEEDITUP FREE.LNK, Delete-on-Reboot, [1201], [329814],1.0.2409
PUP.Optional.SpeedItUp, C:\USERS\{username}\APPDATA\ROAMING\MICROSOFT\INTERNET EXPLORER\QUICK LAUNCH\SPEEDITUP FREE.LNK, Delete-on-Reboot, [1201], [329817],1.0.2409
PUP.Optional.SpeedItUp, C:\USERS\PUBLIC\DESKTOP\SPEEDITUP FREE.LNK, Delete-on-Reboot, [1201], [329418],1.0.2409
PUP.Optional.PCOptimizerPro, C:\PROGRAM FILES (X86)\DISPLAY OFFER\THANKYOU, Delete-on-Reboot, [202], [329412],1.0.2409
PUP.Optional.PCOptimizerPro, C:\Program Files (x86)\Display Offer\delayexec.exe, Delete-on-Reboot, [202], [329412],1.0.2409
PUP.Optional.PCOptimizerPro, C:\Program Files (x86)\Display Offer\wait.exe, Delete-on-Reboot, [202], [329412],1.0.2409
PUP.Optional.SpeedItUp, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\SPEEDITUP FREE.LNK, Delete-on-Reboot, [1201], [329449],1.0.2409
PUP.Optional.SpeedItUp, C:\PROGRAM FILES (X86)\SPEEDITUP FREE\CHECKUP.DAT, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\copyright.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\forhelpfile.jpg, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_01.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_02.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_03.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_04.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_05.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_06.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_07.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_08.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_09.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_10.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_11.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_12.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_13.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_14.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_15.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_16.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_17.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_18.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_19.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_20.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_21.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_22.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_23.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_24.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\index_25.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\Images\spacer.gif, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Help\index.html, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\delayexec.exe, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\Ext.dll, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\IRIMG1.JPG, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\IRIMG2.JPG, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\IRIMG3.JPG, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\irunin.dat, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\irunin.xml, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\order.ini, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\speeditupfree.exe_, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\ThankYou, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\Program Files (x86)\SpeedItup Free\upgradepath.ini, Delete-on-Reboot, [1201], [329448],1.0.2409
PUP.Optional.SpeedItUp, C:\WINDOWS\SPEEDITUP FREE SETUP LOG.TXT, Delete-on-Reboot, [1201], [329422],1.0.2409
PUP.Optional.SpeedItUp, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\SPEEDITUP FREE\SPEEDITUP FREE.LNK, Delete-on-Reboot, [1201], [329450],1.0.2409
PUP.Optional.SpeedItUp, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedItup Free\Uninstall SpeedItup Free.lnk, Delete-on-Reboot, [1201], [329450],1.0.2409
PUP.Optional.SpeedItUp, C:\WINDOWS\SPEEDITUP FREE\UNINSTALL.EXE, Delete-on-Reboot, [1201], [329420],1.0.2409
PUP.Optional.SpeedItUp, C:\Windows\SpeedItup Free\lua5.1.dll, Delete-on-Reboot, [1201], [329420],1.0.2409

Physical Sector: 0
(No malicious items detected)



Tutoriel d'utilisation Malwarebytes en images


Source : Removal instructions for SpeedItupFree de Metallica - Malwarebytes Forums



Toujours infecté ? Une question avant de faire des manipulations ?

Venez poster un nouveau sujet dans ce forum : http://forum.security-x.fr/desinfections/  en prenant soin de suivre la procédure http://forum.security-x.fr/desinfections/procedure-preliminaire/
 

Security-X

SpeedItupFree
« le: août 10, 2017, 16:51:17 »