also @ TechSpot: Microsoft wants Xbox to be the entertainment hub for all your devices

TechSpot

[Active] HJT Log for Not able to access Task Manager

Discussion in 'Virus and Malware Removal' started by asteeley, Dec 19, 2010.

Thread Status:
Not open for further replies.

  1. asteeley Newcomer, in training

    Please see the attached log file. I am unable to access Task Manager, and have a Win32 process that ultimately locks up the PC. Also getting redirects from the Yahoo search bar to other random search websites instead of going to the page selected. This PC was without antivirus for several weeks so this stuff could be deeply embedded.

    Thanks much for the help in advance...

    Attached Files:

    asteeley, Dec 19, 2010
    #1

  2. Bobbye Helper on the Fringe

    Welcome to TechSpot! We don't use HijackThis to screen for malware. However, your Host files have been hijacked, so you can go ahead with this, then do the preliminary scans:

    Please reopen HijackThis to 'do system scan only.' Check each of the following if presemnt:

    O1 - Hosts: 74.125.45.100 4-open-davinci.com
    O1 - Hosts: 74.125.45.100 securitysoftwarepayments.com
    O1 - Hosts: 74.125.45.100 privatesecuredpayments.com
    O1 - Hosts: 74.125.45.100 secure.privatesecuredpayments.com
    O1 - Hosts: 74.125.45.100 getantivirusplusnow.com
    O1 - Hosts: 74.125.45.100 secure-plus-payments.com
    O1 - Hosts: 74.125.45.100 www.getantivirusplusnow.com
    O1 - Hosts: 74.125.45.100 www.secure-plus-payments.com
    O1 - Hosts: 74.125.45.100 www.getavplusnow.com
    O1 - Hosts: 74.125.45.100 safebrowsing-cache.google.com
    O1 - Hosts: 74.125.45.100 urs.microsoft.com
    O1 - Hosts: 74.125.45.100 www.securesoftwarebill.com
    O1 - Hosts: 74.125.45.100 secure.paysecuresystem.com
    O1 - Hosts: 74.125.45.100 paysoftbillsolution.com
    O1 - Hosts: 74.125.45.100 protected.maxisoftwaremart.com
    O1 - Hosts: 69.72.227.44 www.google.com
    O1 - Hosts: 69.72.227.44 google.com
    O1 - Hosts: 69.72.227.44 google.com.au
    O1 - Hosts: 69.72.227.44 www.google.com.au
    O1 - Hosts: 69.72.227.44 google.be
    O1 - Hosts: 69.72.227.44 www.google.be
    O1 - Hosts: 69.72.227.44 google.com.br
    O1 - Hosts: 69.72.227.44 www.google.com.br
    O1 - Hosts: 69.72.227.44 google.ca
    O1 - Hosts: 69.72.227.44 www.google.ca
    O1 - Hosts: 69.72.227.44 google.ch
    O1 - Hosts: 69.72.227.44 www.google.ch
    O1 - Hosts: 69.72.227.44 google.de
    O1 - Hosts: 69.72.227.44 www.google.de
    O1 - Hosts: 69.72.227.44 google.dk
    O1 - Hosts: 69.72.227.44 www.google.dk
    O1 - Hosts: 69.72.227.44 google.fr
    O1 - Hosts: 69.72.227.44 www.google.fr
    O1 - Hosts: 69.72.227.44 google.ie
    O1 - Hosts: 69.72.227.44 www.google.ie
    O1 - Hosts: 69.72.227.44 google.it
    O1 - Hosts: 69.72.227.44 www.google.it
    O1 - Hosts: 69.72.227.44 google.co.jp
    O1 - Hosts: 69.72.227.44 www.google.co.jp
    O1 - Hosts: 69.72.227.44 google.nl
    O1 - Hosts: 69.72.227.44 www.google.nl
    O1 - Hosts: 69.72.227.44 google.no
    O1 - Hosts: 69.72.227.44 www.google.no
    O1 - Hosts: 69.72.227.44 google.co.nz
    O1 - Hosts: 69.72.227.44 www.google.co.nz
    O1 - Hosts: 69.72.227.44 google.pl
    O1 - Hosts: 69.72.227.44 www.google.pl
    O1 - Hosts: 69.72.227.44 google.se
    O1 - Hosts: 69.72.227.44 www.google.se
    O1 - Hosts: 69.72.227.44 google.co.uk
    O1 - Hosts: 69.72.227.44 www.google.co.uk
    O1 - Hosts: 69.72.227.44 google.co.za
    O1 - Hosts: 69.72.227.44 www.google.co.za
    O1 - Hosts: 69.72.227.44 www.google-analytics.com
    O1 - Hosts: 69.72.227.44 www.bing.com
    O1 - Hosts: 69.72.227.44 search.yahoo.com
    O1 - Hosts: 69.72.227.44 www.search.yahoo.com
    O1 - Hosts: 69.72.227.44 uk.search.yahoo.com
    O1 - Hosts: 69.72.227.44 ca.search.yahoo.com
    O1 - Hosts: 69.72.227.44 de.search.yahoo.com
    O1 - Hosts: 69.72.227.44 fr.search.yahoo.com
    O1 - Hosts: 69.72.227.44 au.search.yahoo.com
    O1 - Hosts: 69.72.227.44 www.youtube.com

    Close all Windows except HijackThis and click on "Fix Checked."
    =================================================
    You will need to do a DNS Flush, then reset your router.
    Start> Run> type cmd> enter> at the C prompt type ipconfig /flushdns (note space before the /)

    Exit the Command prompt when finished and shut the system down.-

    • [1]. Shut down your computer, and any other computer connected to your router.
      [2]. On the back of the router, there should be a small hole or button labelled RESET. Using a bent paper clip or similar item, hold that in continuously for twenty seconds.
      [3]. Unplug the router. Wait sixty seconds.
      [4].Now holding again the reset button, plug it back in. Continue holding the reset button for twenty seconds. Unplug the router again.
      [5].With the router unplugged, start your computer.
      [6].Connect to the router again. The turn the router back on.
      [7].When it stabilizes, reboot your workstation and try to access the internet. If you have any issues, access the Router configuration page and re-enter your authentication information.
      [8]. Reboot the system and test the internet. You may have to reconfigure the router settings based on your setup.
    =========================================
    Now please follow the steps in the Preliminary Virus and Malware Removal thread HERE.

    When you have finished, leave the logs for review in your next reply .
    NOTE: Logs must be pasted in the replies. Attached logs will not be reviewed.

    Please do not use any other cleaning programs or scans while I'm helping you, unless I direct you to. Do not use a Registry cleaner or make any changes in the Registry.
    Bobbye, Dec 20, 2010
    #2
Thread Status:
Not open for further replies.