MajorGeeks Support Forums

Go Back   MajorGeeks Support Forums > ----------= PC, Desktop and Laptop Support =---------- > Malware Removal
Register FAQ Members List Calendar Casino Mark Forums Read

Malware Removal Malware removal forum. Please see the READ ME FIRST thread before you post. Forum is staffed by a small number of volunteers, please be patient.


Reply
 
Thread Tools Display Modes
  #1  
Old 03-10-14, 03:30
zaslee zaslee is offline
Private E-2
 
Join Date: Dec 2012
Posts: 5
Thanks: 0
Thanked 0 Times in 0 Posts
Unhappy Bestadbid Malware

I am new to Major Geeks and came really out of sheer desperation on the suggestion of my brother. I have serious pop-up issues with a website called bestadbids. After some research I think it's because something malicious was bundled with another download, although under Control Panel I can't see any suspicious programme I can try uninstalling.

(I think) I am uploading logs from some anti-adware programmes (TDSSKiller, RogueKiller, Hitman Pro, MGTools...) I ran after reading other threads. I also think I saw some suspicious pirrit.suggestor (who knows what this is).

Please help! I will probably perish without your kind assistance. Thank you!
Attached Files
File Type: log defogger_disable.log (472 Bytes, 0 views)
File Type: txt RKreport[0]_D_03102014_152252.txt (2.6 KB, 3 views)
File Type: txt RKreport[0]_S_03102014_152001.txt (2.7 KB, 1 views)
File Type: txt mbam-log-2014-03-10 (15-39-57).txt (1.9 KB, 4 views)
Reply With Quote
Sponsored links
  #2  
Old 03-10-14, 07:43
Kestrel13!'s Avatar
Kestrel13! Kestrel13! is offline
Super Malware Fighter - Major Dilemma
 
Join Date: Apr 2007
Location: cloud cuckoo land
Posts: 28,216
Thanks: 866
Thanked 3,543 Times in 3,462 Posts
Default Re: Bestadbid Malware

Hi there. I still need to see the logs from Hitman, Malware Bytes and MGTools please.
__________________
Have we been helpful? Did our services here at MajorGeeks save you a whole lot of cash? If you would like to bequest a small amount as a token of your appreciation, please look out for the yellow 'Donate' button on the top right of any page. Thanks!
Reply With Quote
  #3  
Old 03-10-14, 10:36
zaslee zaslee is offline
Private E-2
 
Join Date: Dec 2012
Posts: 5
Thanks: 0
Thanked 0 Times in 0 Posts
Default Re: Bestadbid Malware

THANK YOU so very much! I've attached the three logs requested.


Quote:
Originally Posted by zaslee View Post
I am new to Major Geeks and came really out of sheer desperation on the suggestion of my brother. I have serious pop-up issues with a website called bestadbids. After some research I think it's because something malicious was bundled with another download, although under Control Panel I can't see any suspicious programme I can try uninstalling.

(I think) I am uploading logs from some anti-adware programmes (TDSSKiller, RogueKiller, Hitman Pro, MGTools...) I ran after reading other threads. I also think I saw some suspicious pirrit.suggestor (who knows what this is).

Please help! I will probably perish without your kind assistance. Thank you!
Attached Files
File Type: zip MGlogs.zip (253.2 KB, 3 views)
File Type: log HitmanPro_20140310_2319.log (1.4 KB, 2 views)
File Type: txt mbam-log-2012-12-10 (01-17-14).txt (2.2 KB, 3 views)
Reply With Quote
  #4  
Old 03-11-14, 10:36
Kestrel13!'s Avatar
Kestrel13! Kestrel13! is offline
Super Malware Fighter - Major Dilemma
 
Join Date: Apr 2007
Location: cloud cuckoo land
Posts: 28,216
Thanks: 866
Thanked 3,543 Times in 3,462 Posts
Default Re: Bestadbid Malware

Hi there.

Are you deliberately set up to use a proxy?
__________________
Have we been helpful? Did our services here at MajorGeeks save you a whole lot of cash? If you would like to bequest a small amount as a token of your appreciation, please look out for the yellow 'Donate' button on the top right of any page. Thanks!
Reply With Quote
  #5  
Old 03-12-14, 20:14
zaslee zaslee is offline
Private E-2
 
Join Date: Dec 2012
Posts: 5
Thanks: 0
Thanked 0 Times in 0 Posts
Default Re: Bestadbid Malware

Dear Kestrel13!,

I'm not, I don't think. But I'm truly IT-illiterate. I also don't know how to read the logs produced by the various anti-malware tools. Basically I get lots of pop-ups every time I click anywhere on a website, even if it is just to scroll down. I had pirritsuggestor.exe and pirritdesktop.exe but they appear and disappear variously in the %appdata% > local file.

Quote:
Originally Posted by Kestrel13! View Post
Hi there.

Are you deliberately set up to use a proxy?
Reply With Quote
Sponsored links
  #6  
Old 03-13-14, 17:20
Kestrel13!'s Avatar
Kestrel13! Kestrel13! is offline
Super Malware Fighter - Major Dilemma
 
Join Date: Apr 2007
Location: cloud cuckoo land
Posts: 28,216
Thanks: 866
Thanked 3,543 Times in 3,462 Posts
Default Re: Bestadbid Malware

Fix items using RogueKiller.

Double-click RogueKiller.exe to run. (Vista/7/8 right-click and select Run as Administrator)
When it opens, press the Scan button
Now click the Registry tab (Or proxy tab) and locate these detections:
  • [PROXY IE][PUM] HKCU\[...]\Internet Settings : ProxyServer (hxxp=hxxp://127.0.0.1:9880 [Country: (Private Address) (XX), City: (Private Address)]) -> FOUND
  • [PROXY IE][PUM] HKCU\[...]\Internet Settings : ProxyEnable (1) -> FOUND
Place a checkmark next to each of these items, leave the others unchecked.
Now press the Delete button.
When it is finished, there will be a log on your desktop called: RKreport[2].txt
Attach RKreport[2].txt to your next message. (How to attach)
Reboot the machine.



Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Attach JRT.txt to your next message.



How are things running now?
__________________
Have we been helpful? Did our services here at MajorGeeks save you a whole lot of cash? If you would like to bequest a small amount as a token of your appreciation, please look out for the yellow 'Donate' button on the top right of any page. Thanks!
Reply With Quote
  #7  
Old 03-13-14, 20:48
zaslee zaslee is offline
Private E-2
 
Join Date: Dec 2012
Posts: 5
Thanks: 0
Thanked 0 Times in 0 Posts
Default Re: Bestadbid Malware

Dear Kestrel13!,

Thank you for the kind help! I have attached the logs from RK and JRT.

I don't have the strange live text on webpages anymore, but still get pop-ups from Bestadbid.
Attached Files
File Type: txt RKreport[0]_D_03142014_101747.txt (2.5 KB, 2 views)
File Type: txt RKreport[0]_S_03142014_101000.txt (2.5 KB, 1 views)
File Type: txt JRT.txt (980 Bytes, 2 views)

Last edited by Kestrel13!; 03-14-14 at 09:20.. Reason: deleted quoted text
Reply With Quote
  #8  
Old 03-14-14, 09:19
Kestrel13!'s Avatar
Kestrel13! Kestrel13! is offline
Super Malware Fighter - Major Dilemma
 
Join Date: Apr 2007
Location: cloud cuckoo land
Posts: 28,216
Thanks: 866
Thanked 3,543 Times in 3,462 Posts
Default Re: Bestadbid Malware

Which browser does this occur in please?
__________________
Have we been helpful? Did our services here at MajorGeeks save you a whole lot of cash? If you would like to bequest a small amount as a token of your appreciation, please look out for the yellow 'Donate' button on the top right of any page. Thanks!
Reply With Quote
  #9  
Old 03-16-14, 20:39
zaslee zaslee is offline
Private E-2
 
Join Date: Dec 2012
Posts: 5
Thanks: 0
Thanked 0 Times in 0 Posts
Default Re: Bestadbid Malware

Both in Chrome and in Internet Explorer. I don't (yet) have Firefox or any other browser.

Quote:
Originally Posted by Kestrel13! View Post
Which browser does this occur in please?
Reply With Quote
  #10  
Old 03-17-14, 15:01
Kestrel13!'s Avatar
Kestrel13! Kestrel13! is offline
Super Malware Fighter - Major Dilemma
 
Join Date: Apr 2007
Location: cloud cuckoo land
Posts: 28,216
Thanks: 866
Thanked 3,543 Times in 3,462 Posts
Default Re: Bestadbid Malware

Try running this and let me know if Google Chrome works normally then.

Reset Chrome to Defaults
__________________
Have we been helpful? Did our services here at MajorGeeks save you a whole lot of cash? If you would like to bequest a small amount as a token of your appreciation, please look out for the yellow 'Donate' button on the top right of any page. Thanks!
Reply With Quote
Sponsored links
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
weird malware bytes anti malware database update hugh750 Software 2 12-21-11 00:50
HELP-Requested Malware Removal (Infector.Gen2 / Malware Pacger Gen) geekmatt Malware Removal 6 08-03-10 01:57
Trojans/malware blocking virtually every malware remover tool badlydrawngirl Malware Removal 10 04-07-10 21:23
Malware Defender and System Security malware and trojans Pete22 Malware Removal 11 02-03-10 16:17
unable to run any anti-malware tools and also cant open any anit-malware related site kallam238 Malware Removal 6 01-21-09 15:07


All times are GMT -5. The time now is 18:15.

MajorGeeks.Com Menu

MajorGeeks.Com \ All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ NEW! PC Games \ System Tools \ Macintosh \ Demonews.Com \ Top Downloads

MajorGeeks.Com \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds


Powered by vBulletin® Version 3.8.4
Copyright © 2009 vBulletin Solutions, Inc. All rights reserved.
Ad Management by RedTyger