'JS/Agent.TS' What is it?

Solved
TheFastBoost Posted messages 70 Status Member -  
TheFastBoost Posted messages 70 Status Member -
Hello everyone,

I'm reaching out to you this evening to ask if you could provide me with a brief description of the 'JS/Agent.TS' virus or malware, and whether there are any steps to ensure that it is no longer on my computer. For the description, I’m just asking for the type of virus malware, trojan, etc.
But most importantly, I want to know if it is actually damaging my computer?

Thank you in advance
Best regards
TheFastBoost
Configuration: Windows 7 / Chrome 31.0.1650.63

9 answers

  1. Malekal_morte- Posted messages 178136 Registration date   Status Moderator, Security Contributor Last intervention   24 712
     
    Hi,

    It's a javascript detected as malicious.
    Do a Malwarebytes scan just to be safe.

    --
    Like the angel you are, you laugh creating a lightness in my chest,
    Your eyes they penetrate me,
    (Your answer's always 'maybe')
    That's when I got up and left
    1
    1. kingk06 Posted messages 10790 Status Member 536
       
      ok thanks ;)
      0
  2. TheFastBoost Posted messages 70 Status Member 3
     
    How do I proceed to make a Malwarebyte?
    0
  3. TheFastBoost Posted messages 70 Status Member 3
     
    Okay, I'll do that in the morning and post it =)
    But mainly I want to know if it actually damages my computer?
    0
  4. TheFastBoost Posted messages 70 Status Member 3
     
    It's the only thing I found

    2014/01/04 09:10:27 +0100 JIPE-PC maxime MESSAGE Starting protection
    2014/01/04 09:10:27 +0100 JIPE-PC maxime MESSAGE Protection started successfully
    2014/01/04 09:10:27 +0100 JIPE-PC maxime MESSAGE Starting IP protection
    2014/01/04 09:10:42 +0100 JIPE-PC maxime MESSAGE IP Protection started successfully
    2014/01/04 09:11:07 +0100 JIPE-PC maxime MESSAGE Starting database refresh
    2014/01/04 09:11:07 +0100 JIPE-PC maxime MESSAGE Stopping IP protection
    2014/01/04 09:11:08 +0100 JIPE-PC maxime MESSAGE IP Protection stopped successfully
    2014/01/04 09:11:11 +0100 JIPE-PC maxime MESSAGE Database refreshed successfully
    2014/01/04 09:11:11 +0100 JIPE-PC maxime MESSAGE Starting IP protection
    2014/01/04 09:11:12 +0100 JIPE-PC maxime MESSAGE IP Protection started successfully
    2014/01/04 09:16:37 +0100 JIPE-PC maxime MESSAGE Executing scheduled update: Daily
    2014/01/04 09:16:38 +0100 JIPE-PC maxime MESSAGE Database already up-to-date
    2014/01/04 10:52:07 +0100 JIPE-PC (null) MESSAGE Starting protection
    2014/01/04 10:52:07 +0100 JIPE-PC (null) MESSAGE Protection started successfully
    2014/01/04 10:52:07 +0100 JIPE-PC (null) MESSAGE Starting IP protection
    2014/01/04 10:52:10 +0100 JIPE-PC (null) MESSAGE IP Protection started successfully
    0
    1. Malekal_morte- Posted messages 178136 Registration date   Status Moderator, Security Contributor Last intervention   24 712
       
      follow the tutorial.
      0
    2. TheFastBoost Posted messages 70 Status Member 3
       
      I will redo a scan; it's simpler anyway, no report found, and I just saw that it was indeed deleted.
      0
  5. TheFastBoost Posted messages 70 Status Member 3
     
    Here it is

    Malwarebytes Anti-Malware (Trial) 1.75.0.1300
    www.malwarebytes.org

    Database version: v2014.01.04.02

    Windows 7 Service Pack 1 x64 NTFS
    Internet Explorer 11.0.9600.16476
    maxime :: JIPE-PC [limited]

    Protection: Enabled

    01/04/2014 11:38:04
    MBAM-log-2014-01-04 (12-54-06).txt

    Scan type: Full scan (C:\|D:\|)
    Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
    Scan options disabled: P2P
    Objects scanned: 384363
    Time elapsed: 1 hour(s), 15 minute(s), 24 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 8
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{58124A0B-DC32-4180-9BFF-E0E21AE34026} (PUP.Optional.Iminent.A) -> No action taken.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{58124A0B-DC32-4180-9BFF-E0E21AE34026} (PUP.Optional.Iminent.A) -> No action taken.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{977AE9CC-AF83-45E8-9E03-E2798216E2D5} (PUP.Optional.Iminent.A) -> No action taken.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{977AE9CC-AF83-45E8-9E03-E2798216E2D5} (PUP.Optional.Iminent.A) -> No action taken.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} (PUP.Optional.Iminent.A) -> No action taken.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} (PUP.Optional.Iminent.A) -> No action taken.
    HKCU\SOFTWARE\BabylonToolbar (PUP.Optional.BabylonToolBar.A) -> No action taken.
    HKCU\Software\Iminent (PUP.Optional.Iminent.A) -> No action taken.

    Registry Values Detected: 2
    HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser|{977AE9CC-AF83-45E8-9E03-E2798216E2D5} (PUP.Optional.Iminent.A) -> Data: Ìéz--f¯èEzây'âÕ -> No action taken.
    HKCU\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{977AE9CC-AF83-45E8-9E03-E2798216E2D5} (PUP.Optional.Iminent.A) -> Data: -> No action taken.

    Registry Data Items Detected: 0
    (No malicious items detected)

    Folders Detected: 0
    (No malicious items detected)

    Files Detected: 0
    (No malicious items detected)

    (end)
    0
  6. Malekal_morte- Posted messages 178136 Registration date   Status Moderator, Security Contributor Last intervention   24 712
     
    Yep, no surprise, there's nothing.

    You can check everything and delete it, if it hasn't been done.

    --
    Comme l'ange que tu es, tu ris en créant une légèreté dans ma poitrine,
    Tes yeux, ils me pénètrent,
    (Ta réponse est toujours 'peut-être')
    C'est à ce moment-là que je me suis levé et suis parti.
    0
  7. TheFastBoost Posted messages 70 Status Member 3
     
    Here is a screenshot of the final menu
    So first scan 115
    second scan 10

    http://img95.xooimage.com/files/d/c/a/684-431bb00.png/img[/url]
    0
    1. Malekal_morte- Posted messages 178136 Registration date   Status Moderator, Security Contributor Last intervention   24 712
       
      yep remove all 'removed selected'
      0
    2. TheFastBoost Posted messages 70 Status Member 3
       
      already done
      0
  8. Malekal_morte- Posted messages 178136 Registration date   Status Moderator, Security Contributor Last intervention   24 712
     
    niquel alors :)

    --
    Comme l'ange que tu es, tu ris en éveillant une légèreté dans ma poitrine,
    Tes yeux me pénètrent,
    (Ta réponse est toujours 'peut-être')
    C'est à ce moment que je me suis levé et que je suis parti.
    0
  9. TheFastBoost Posted messages 70 Status Member 3
     
    Thank you very much! =)
    However, now that everything is finished, can you tell me if this 'JS/Agent.TS' is considered a virus or malware????

    Thanks again
    TheFastBoost
    0
    1. TheFastBoost Posted messages 70 Status Member 3
       
      Okay, thank you very much
      Good luck =)
      0