Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer infected -- Chitka pop-up ads


  • Please log in to reply
9 replies to this topic

#1 strikethegold

strikethegold

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 14 March 2013 - 09:41 AM

Hello, I'm having a problem with Chitka pop-up ads, and I can't get rid of them! I've run various virus scans, and nothing removes it. Please help!



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 62,649 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:03 AM

Posted 14 March 2013 - 10:08 AM

Welcome strikethegold

 

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:

  • Report IE Proxy Settings
  • List Installed Programs

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.


How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#3 strikethegold

strikethegold
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 14 March 2013 - 10:16 AM

Thank you!

 

MiniToolBox by Farbar  Version:05-03-2013
Ran on 14-03-2013 at

11:15:37
Running from "C:\Users\*********\Downloads"
Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
******************************************************

*********************

========================= IE Proxy Settings:

==============================

Proxy is not enabled.
No Proxy Server is set.

=========================== Installed Programs

============================

Adobe Acrobat X Pro - English, Français, Deutsch

(Version: 10.1.6)
Adobe AIR (Version: 3.3.0.3670)
Adobe Creative Suite 6 Design Standard (Version: 6)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.149)
Adobe Flash Player 11 Plugin (Version: 11.6.602.168)
Adobe Help Manager (Version: 4.0.244)
Adobe Reader X (10.1.5) (Version: 10.1.5)
Adobe® Content Viewer (Version: 2.9.0)
Akamai NetSession Interface
Amazon MP3 Downloader 1.0.17 (Version: 1.0.17)
Broadcom InConcert Maestro (Version: 1.0.1.1500)
Brocade CIM Provider (Version: 2.2.2.0)
Burn.Now 4.5 (Version: 4.5.0)
Cisco Systems VPN Client 5.0.07.0440 (Version: 5.0.7)
Conexant 20672 SmartAudio HD (Version: 8.32.23.2)
Corel Burn.Now Lenovo Edition (Version: 4.5.0)
Corel DVD MovieFactory 7 (Version: 7.0.0)
Corel DVD MovieFactory Lenovo Edition (Version: 7.0.0)
Corel WinDVD (Version: 10.0.5.890)
Create Recovery Media (Version: 1.20.0.00)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726)

64-Bit Edition
Direct DiscRecorder (Version: 1.00.0000)
Disable AMT Profile Synchronization Pop-up for Windows

XP/Vista/7 (Version: 1.00)
Dropbox (Version: 1.6.16)
ESET Online Scanner v3
Google Chrome (Version: 25.0.1364.172)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version:

7.4.3607.2246)
Google Update Helper (Version: 1.3.21.135)
GoToMeeting 5.2.0.952 (Version: 5.2.0.952)
IBM Director Agent Ext (Version: 6.2.1)
IBM SBMA SMI Provider 1.00.000 (Version: 00.17.0503)
IBM Systems Director Platform Agent (Version: 6.2.1)
ibmcbb (Version: 6.2.1)
IBMCIMBaseOS (Version: 6.2.1)
IBMCIMBaseServer (Version: 6.2.1)
IBMCIMNetwork (Version: 6.2.1)
ibmcimsp (Version: 6.2.1)
IBMPlatInst (Version: 6.2.1)
ICCore (Version: 6.2.1)
Integrated Camera Driver Installer Package

Ver.1.1.0.1147 (Version: 1.1.0.1147)
Integrated Camera TWAIN (Version: 1.0.11.1223)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Identity Protection Technology 1.1.2.0

(Version: 1.1.2.0)
Intel® Management Engine Components (Version:

7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2321)
Intel® PROSet/Wireless WiFi Software (Version:

14.2.0000)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
Kaseya Agent (ed-r9nhdwt.workstation.episcopal-diocese

- ks.electronicoffice.net) (Version: 6.3.0.6)
Kaspersky Anti-Virus 6.0 for Windows Workstations

(Version: 6.0.4.1424)
Lenovo Auto Scroll Utility (Version: 1.11)
Lenovo Patch Utility (Version: 1.0.1.1)
Lenovo Patch Utility 64 bit (Version: 1.2.0.1)
Lenovo Registration (Version: 1.0.4)
Lenovo System Interface Driver (Version: 1.05)
Lenovo User Guide (Version: 1.0.0008.00)
Lenovo Warranty Information (Version: 1.0.0005.00)
Lenovo Welcome (Version: 3.00.006.0)
LSI_MR_HHR (Version: 00.17.0503)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version:

4.0.30319)
Microsoft Application Error Reporting (Version:

12.0.6015.5000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version:

14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English)

2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version:

14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version:

14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version:

14.0.6029.1000)
Microsoft Office Office 32-bit Components 2010

(Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version:

14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version:

14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010

(Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version:

14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version:

14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version:

14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version:

14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version:

14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010

(Version: 14.0.6029.1000)
Microsoft Office Shared 32-bit MUI (English) 2010

(Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version:

14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English)

2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version:

14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU]

(Version: 3.1.0000)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version:

3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version:

3.5.8080.0)
Microsoft Visual C++ 2005 Redistributable (Version:

8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64)

(Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64)

(Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64)

(Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64

9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64

9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64

9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86

9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86

9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86

9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable -

10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable -

10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Mozilla Firefox 19.0.2 (x86 en-US) (Version: 19.0.2)
Mozilla Maintenance Service (Version: 19.0.2)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NVIDIA 3D Vision Driver 268.71 (Version: 268.71)
NVIDIA Control Panel 268.71 (Version: 268.71)
NVIDIA Graphics Driver 268.71 (Version: 268.71)
NVIDIA HD Audio Driver 1.2.23.3 (Version: 1.2.23.3)
NVIDIA Install Application (Version: 2.265.41.0)
NVIDIA Optimus 1.0.21 (Version: 1.0.21)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.6871)
NVIDIA Update Components (Version: 1.0.21)
On Screen Display (Version: 6.60.03)
PDF Settings CS6 (Version: 11.0)
Prism Video File Converter
QLogic CNA Providers (Version: 1.2.15)
RapidBoot (Version: 1.11)
Registry Patch to Enable Maximum Power Saving on WiFi

Adapters for Windows 7 (Version: 1.00)
Renesas Electronics USB 3.0 Host Controller Driver

(Version: 2.0.32.0)
RICOH_Media_Driver_v2.14.18.01 (Version: 2.14.18.01)
ServeRAID Manager for Platform Agent (Version:

9.10.17.16998)
SpyHunter (Version: 4.12.13.4202)
SUPERAntiSpyware (Version: 5.6.1014)
System Update (Version: 4.01.0015)
ThinkPad Bluetooth with Enhanced Data Rate Software

(Version: 6.4.0.1500)
ThinkPad FullScreen Magnifier (Version: 2.40)
ThinkPad Modem Adapter (Version: 7.80.5.0)
ThinkPad Power Management Driver (Version: 1.61.00.11)
ThinkPad Power Manager (Version: 3.67)
ThinkPad UltraNav Driver (Version: 15.3.8.0)
ThinkPad UltraNav Utility (Version: 2.13.0)
ThinkVantage Active Protection System (Version: 1.73)
ThinkVantage AutoLock (Version: 1.03)
ThinkVantage Communications Utility (Version: 2.07)
ThinkVantage Fingerprint Software (Version:

5.9.4.6882)
Update for Microsoft .NET Framework 4 Client Profile

(KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile

(KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile

(KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 64-Bit

Edition
Update for Microsoft Office 2010 (KB2553267) 64-Bit

Edition
Update for Microsoft Office 2010 (KB2553310) 64-Bit

Edition
Update for Microsoft Office 2010 (KB2553378) 64-Bit

Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2598242) 64-Bit

Edition
Update for Microsoft Office 2010 (KB2687509) 64-Bit

Edition
Update for Microsoft Office 2010 (KB2760631) 64-Bit

Edition
Update for Microsoft Office 2010 (KB2767886) 64-Bit

Edition
Update for Microsoft OneNote 2010 (KB2553290) 64-Bit

Edition
Update for Microsoft Outlook 2010 (KB2597090) 64-Bit

Edition
Update for Microsoft Outlook 2010 (KB2687623) 64-Bit

Edition
Update for Microsoft Outlook Social Connector 2010

(KB2553406) 64-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 64-

Bit Edition
Update for Microsoft SharePoint Workspace 2010

(KB2589371) 64-Bit Edition
VNC Enterprise Edition E4.5.1 (Version: E4.5.1)
WebSlingPlayer ActiveX (Version: 1.5.12732)
Windows Driver Package - Intel (e1cexpress) Net  

(12/21/2010 11.8.84.0) (Version: 12/21/2010 11.8.84.0)
Windows Driver Package - Intel System  (09/10/2010

9.2.0.1011) (Version: 09/10/2010 9.2.0.1011)
Windows Driver Package - Intel System  (11/20/2010

9.2.0.1016) (Version: 11/20/2010 9.2.0.1016)
Windows Driver Package - Intel USB  (12/21/2010

9.2.0.1021) (Version: 12/21/2010 9.2.0.1021)
Windows Driver Package - Lenovo 1.61.00.11 (11/11/2010

1.61.00.11) (Version: 11/11/2010 1.61.00.11)
Windows Driver Package - Synaptics (SynTP) Mouse  

(05/19/2011 15.3.8.0) (Version: 05/19/2011 15.3.8.0)
Windows Live Communications Platform (Version:

15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version:

7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version:

15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote

Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version:

15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version:

15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version:

15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version:

15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version:

15.4.3502.0922)

**** End of log ****
 



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 62,649 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:03 AM

Posted 14 March 2013 - 08:10 PM

Hello again. Do this now and let me know how it is after.

 


Download Rogue killer

Right click on it and select run as administrator

Now,click on HOSTS FIX option on right side

A log should get generated after the fix, post the log here
 

 

>>>>

Run Minitoolbox with  and check mark

•List content of Hosts alone

Click on GO,post the log,


Edited by boopme, 14 March 2013 - 08:10 PM.

How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#5 strikethegold

strikethegold
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 15 March 2013 - 08:28 AM

I did choose "Run as administrator," but I'm not sure if that's what it did. Here's the log:

 

RogueKiller V8.5.3 [Mar 13 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : cgoldman [Admin rights]
Mode : HOSTSFix -- Date : 03/15/2013 09:25:01
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 0 ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1       localhost
::1             localhost
95.211.0.119 www.google-analytics.com.
95.211.0.119 ad-emea.doubleclick.net.
95.211.0.119 www.statcounter.com.
93.115.241.27 www.google-analytics.com.
93.115.241.27 ad-emea.doubleclick.net.
93.115.241.27 www.statcounter.com.


¤¤¤ Reset HOSTS: ¤¤¤
127.0.0.1    localhost

Finished : << RKreport[4]_H_03152013_02d0925.txt >>
RKreport[1]_S_03082013_02d1620.txt ; RKreport[3]_H_03082013_02d1621.txt ; RKreport[4]_H_03152013_02d0925.txt

 

xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

And here's the log for the MiniToolBox:

 

MiniToolBox by Farbar  Version:05-03-2013
Ran by cgoldman (administrator) on 15-03-2013 at 09:27:02
Running from "C:\Users\cgoldman\Downloads"
Windows 7 Professional Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
========================= Hosts content: =================================
127.0.0.1    localhost
127.0.0.1    localhost


**** End of log ****


 



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 62,649 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:03 AM

Posted 15 March 2013 - 02:24 PM

Looks OK, the pop ups stopped?


How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#7 strikethegold

strikethegold
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 15 March 2013 - 08:17 PM

I'm away from my computer this weekend, but I'll check on Monday. Thanks!

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 62,649 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:03 AM

Posted 15 March 2013 - 09:29 PM

OK, let me know. have a great weekend!


How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#9 strikethegold

strikethegold
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:03 PM

Posted 18 March 2013 - 10:20 AM

That appears to have worked. Thanks again, what a relief!



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 62,649 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:03 AM

Posted 18 March 2013 - 11:18 AM

Great!! You're welcome.

 

Now you should Create a New Restore Point (alternate method) to prevent possible reinfection from an old one. Some of the malware you picked up could have been backed up, renamed and saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can reinfect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.

The easiest and safest way to do this is:

  • Go to Start > All Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.

Then use Disk Cleanup to remove all but the newly created Restore Point.


How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users