bestdrivestar.net and anythicago.com malware problems

[REDACTED]

I keep getting alerts from Avast about threats trying to direct me to bestdrivestar.net, anythicago.com and atleast one other that I didn't have time to see. When it fires off I get several warnings pop up in quick succession. It even seems to do it when I'm not browsing the internet, it seems to happen at start-up sometimes too.

I've attached the logs from MBAM, FRST and aswMBR.

I hope you can help me resolve this.

Thanks

[TwinHeadedEagle]

Monitoring...

[TwinHeadedEagle]

Scan with ZOEK

Please download ZOEK by Smeenk and save it to your desktop (preferred version is the *.exe one)
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.

• Right-click on icon and select Run as Administrator to start the tool.
  
• Wait patiently until the main console will appear, it may take a minute or two.
• In the main box please paste in the following script:

Code: [Select]

createsrpoint;
autoclean;
emptyalltemp;
C:\Users\Monica\AppData\Local\Google\Chrome\User Data\Default\Preferences;f
chrdefaults;
bitsadmin /reset /allusers;b
ipconfig /flushdns;b

• Make sure that Scan All Users option is checked.
  
• Push Run Script and wait patiently. The scan may take a couple of minutes.
  
• When the scan completes, a zoek-results logfile should open in notepad.
  
• If a reboot is needed, it will be opened after it. You may also find it at your main drive (usually C:\ drive)

Post its content into your next reply.

[REDACTED]

Thanks for the quick response.
I've just finished the Zoek scan, the log is attached, hope it helps.

[TwinHeadedEagle]

How is your PC behaving now?

[REDACTED]

Hi there,

So far so good, it looks like it has worked, no more threat announcements.
Thanks for the help, and the speed with which you provided it.

I've donated a few dollars so you can get a coffee or beer next time you're out.

Thanks again 

[TwinHeadedEagle]

• The following will implement some post-cleanup procedures:

=> Please download DelFix by Xplode to your Desktop.

Run the tool and check the following boxes below;
Remove disinfection tools
Create registry backup
Purge System Restore
Click Run button and wait a few seconds for the programme completes his work.
At this point all the tools we used here should be gone. Tool will create an report for you (C:\DelFix.txt)

The tool will also record healthy state of registry and make a backup using ERUNT program in %windir%\ERUNT\DelFix
Tool deletes old system restore points and create a fresh system restore point after cleaning.

[REDACTED]

Thanks TwinHeadedEagle,

I've ran DelFix as you said and everything seems to be back to normal.

Once again, thanks for all your help it's very much appreciated.