Bobbye
Posts: 16,313 +36
I note that the Host reset you did previously was on the Trend Micros site. After the reset you told the helper that the system was fine. But you only said you wanted to HJT log checked and did not mention search problems: http://community.trendmicro.com/t5/Malware-Discussions/My-Hijackthis-log-for-analysis/td-p/48009
It seems like many users (or maybe just a few but with different user name) are putting HJT logs out and asking them to be checked, all with this same listing of Hosts. Only 2 of them were completed however, yours being one of them.
I am not a programmer, but I think the problem is related to the VPN and that is all in the Start menu to start on boot. I think there may be conflicts that are stopping you from getting out of the VPN, unless you use the Opera Turbo which specifically:
You mentioned a Help Desk. I understand you are a small business without a resident IT, but I am limited here in what I can do. Let's clean up from the scans:
Removing all of the tools we used and the files and folders they created
Note: If you receive a warning from your firewall or other security programs regarding OTC attempting to contact the internet, please allow it to do so.
Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.
------------------------------------------
Empty the Recycle Bin
=====================================
Hopefully you can find someone with 'hands on' to see what is not configured correctly and help you fix it.
It seems like many users (or maybe just a few but with different user name) are putting HJT logs out and asking them to be checked, all with this same listing of Hosts. Only 2 of them were completed however, yours being one of them.
I am not a programmer, but I think the problem is related to the VPN and that is all in the Start menu to start on boot. I think there may be conflicts that are stopping you from getting out of the VPN, unless you use the Opera Turbo which specifically:
The Hosts files you showed are not a normal host file listing. I think you said you removed LogMeIn(??) so where you reset the host files, you then had no way to access work.Opera Turbo could also be used to access websites that are blocked on a school or work network, because the browser sends the request to the Opera servers when using this feature, preventing the network from understanding which website it is trying to access.
You mentioned a Help Desk. I understand you are a small business without a resident IT, but I am limited here in what I can do. Let's clean up from the scans:
Removing all of the tools we used and the files and folders they created
- Uninstall ComboFix and all Backups of the files it deleted
- Click START> then RUN
- Now type Combofix /Uninstall in the runbox and click OK. Note the space between the X and the U, it needs to be there.
- Download OTCleanIt by OldTimer and save it to your Desktop.
- Double click OTCleanIt.exe.
- Click the CleanUp! button.
- Select Yes when the "Begin cleanup Process?" prompt appears.
- If you are prompted to Reboot during the cleanup, select Yes.
- The tool will delete itself once it finishes.
Note: If you receive a warning from your firewall or other security programs regarding OTC attempting to contact the internet, please allow it to do so.
Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.
------------------------------------------
- You should now set a new Restore Point and remove the old restore points to prevent infection from any previous Restore Points.
- Go to Start > All Programs > Accessories > System Tools
- Click "System Restore".
- Choose "Create a Restore Point" on the first screen then click "Next".
- Give the Restore Point a name> click "Create".
- Go back and follow the path to > System Tools.
[*]Choose Disc Cleanup
[*]Click "OK" to select the partition or drive you want.
[*]Click the "More Options" Tab.
[*]Click "Clean Up" in the System Restore section to remove all previous Restore Points except the newly created one.
Empty the Recycle Bin
=====================================
Hopefully you can find someone with 'hands on' to see what is not configured correctly and help you fix it.