X
Tap here to go to the mobile version of the site.

Support Forum

When i open google it say "We have noticed some unusual activity from u recently" so many websites is blocked

Posted

I cannot access any trusted websites and it say prove your human but i cannot do that it say "error loading gateway.This action has been logged."

I cannot access any trusted websites and it say prove your human but i cannot do that it say "error loading gateway.This action has been logged."

Modified by Ziyad

Chosen solution

then maybe some malicious software has overwritten your hosts-file or dns configuration. could you download the hijackthis tool from http://sourceforge.net/projects/hjt/, right-click the downloaded file & run it as administrator, perform a scan and post the log here on the forum again.

edit: you only'd have to do this in case malwarebytes or the other programs cannot fix the issue

Read this answer in context 0

Additional System Details

Installed Plug-ins

  • Shockwave Flash 11.7 r700
  • The plugin allows you to have a better experience with Microsoft Lync
  • Next Generation Java Plug-in 10.17.2 for Mozilla browsers
  • NPRuntime Script Plug-in Library for Java(TM) Deploy
  • The plugin allows you to have a better experience with Microsoft SharePoint
  • 4.1.10329.0

Application

  • User Agent: Mozilla/5.0 (Windows NT 6.2; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0

More Information

philipp
  • Top 25 Contributor
  • Moderator
5320 solutions 23502 answers

Helpful Reply

hello, please try to reset firefox and see if this can address the issue...

in addition run a full scan of your system with the security software already in place and different other tools like the free version of malwarebytes, adwcleaner, microsoft safety scanner & kaspersky security scan.

hello, please try to [[Reset Firefox – easily fix most problems|reset firefox]] and see if this can address the issue... in addition run a full scan of your system with the security software already in place and different other tools like the [http://www.malwarebytes.org/products/malwarebytes_free free version of malwarebytes], [http://www.bleepingcomputer.com/download/adwcleaner/ adwcleaner], [http://www.microsoft.com/security/scanner/default.aspx microsoft safety scanner] & [http://www.kaspersky.com/security-scan kaspersky security scan].

Modified by philipp

Helpful Reply

i did reset and tried again but nothing

i did reset and tried again but nothing

Question owner

and i do have adw cleaner but it did not help after a full scan

and i do have adw cleaner but it did not help after a full scan
philipp
  • Top 25 Contributor
  • Moderator
5320 solutions 23502 answers

ok, thanks for the screenshot - this seems malware related, please try a scan with the various products i've recommended above...

Troubleshoot Firefox issues caused by malware

ok, thanks for the screenshot - this seems malware related, please try a scan with the various products i've recommended above... [[Troubleshoot Firefox issues caused by malware]]

Question owner

Okay i will see and try and tell u my feedback

Okay i will see and try and tell u my feedback
philipp
  • Top 25 Contributor
  • Moderator
5320 solutions 23502 answers

thank you - in addition, could you go to firefox > help > troubleshooting information, copy the contents of the page and paste them here into a forum reply. in case this is caused by a malicious addon this would help us taking further actions against it...

thank you - in addition, could you go to ''firefox > help > troubleshooting information'', copy the contents of the page and paste them here into a forum reply. in case this is caused by a malicious addon this would help us taking further actions against it...

Question owner

Application Basics

       Name
       Firefox
       Version
       20.0.1
       User Agent
       Mozilla/5.0 (Windows NT 6.2; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0
       Build Configuration
         about:buildconfig
 Extensions
       Name
       Version
       Enabled
       ID
       IDM CC
       7.3.41
       false
       mozilla_cc@internetdownloadmanager.com
 Important Modified Preferences
     Name
     Value
       browser.cache.disk.capacity
       358400
       browser.cache.disk.smart_size.first_run
       false
       browser.cache.disk.smart_size.use_old_max
       false
       browser.cache.disk.smart_size_cached_value
       358400
       browser.places.smartBookmarksVersion
       4
       browser.startup.homepage_override.buildID
       20130409194949
       browser.startup.homepage_override.mstone
       20.0.1
       dom.w3c_touch_events.expose
       false
       extensions.lastAppVersion
       20.0.1
       gfx.direct3d.checkDX10
       false
       network.cookie.prefsMigrated
       true
       places.history.expiration.transient_current_max_pages
       46734
       plugin.disable_full_page_plugin_for_types
       application/pdf
       privacy.sanitize.migrateFx3Prefs
       true
 Graphics
       Adapter Description
       Intel(R) HD Graphics
       Adapter Drivers
       igdumd64 igd10umd64 igdumdx32 igd10umd32
       Adapter RAM
       Unknown
       Device ID
       0x0046
       Direct2D Enabled
       true
       DirectWrite Enabled
       true (6.2.9200.16384)
       Driver Date
       10-9-2012
       Driver Version
       8.15.10.2858
       GPU #2 Active
       false
       GPU Accelerated Windows
       1/1 Direct3D 10
       Vendor ID
       0x8086
       WebGL Renderer
       Google Inc. -- ANGLE (Intel(R) HD Graphics)
       AzureCanvasBackend
       direct2d
       AzureContentBackend
       direct2d
       AzureFallbackCanvasBackend
       cairo
 JavaScript
       Incremental GC
       true
 Accessibility
       Activated
       false
       Prevent Accessibility
       0
 Library Versions
       Expected minimum version
       Version in use
       NSPR
       4.9.5
       4.9.5
       NSS
       3.14.3.0 Basic ECC
       3.14.3.0 Basic ECC
       NSSSMIME
       3.14.3.0 Basic ECC
       3.14.3.0 Basic ECC
       NSSSSL
       3.14.3.0 Basic ECC
       3.14.3.0 Basic ECC
       NSSUTIL
       3.14.3.0
       3.14.3.0
Application Basics Name Firefox Version 20.0.1 User Agent Mozilla/5.0 (Windows NT 6.2; WOW64; rv:20.0) Gecko/20100101 Firefox/20.0 Build Configuration about:buildconfig Extensions Name Version Enabled ID IDM CC 7.3.41 false mozilla_cc@internetdownloadmanager.com Important Modified Preferences Name Value browser.cache.disk.capacity 358400 browser.cache.disk.smart_size.first_run false browser.cache.disk.smart_size.use_old_max false browser.cache.disk.smart_size_cached_value 358400 browser.places.smartBookmarksVersion 4 browser.startup.homepage_override.buildID 20130409194949 browser.startup.homepage_override.mstone 20.0.1 dom.w3c_touch_events.expose false extensions.lastAppVersion 20.0.1 gfx.direct3d.checkDX10 false network.cookie.prefsMigrated true places.history.expiration.transient_current_max_pages 46734 plugin.disable_full_page_plugin_for_types application/pdf privacy.sanitize.migrateFx3Prefs true Graphics Adapter Description Intel(R) HD Graphics Adapter Drivers igdumd64 igd10umd64 igdumdx32 igd10umd32 Adapter RAM Unknown Device ID 0x0046 Direct2D Enabled true DirectWrite Enabled true (6.2.9200.16384) Driver Date 10-9-2012 Driver Version 8.15.10.2858 GPU #2 Active false GPU Accelerated Windows 1/1 Direct3D 10 Vendor ID 0x8086 WebGL Renderer Google Inc. -- ANGLE (Intel(R) HD Graphics) AzureCanvasBackend direct2d AzureContentBackend direct2d AzureFallbackCanvasBackend cairo JavaScript Incremental GC true Accessibility Activated false Prevent Accessibility 0 Library Versions Expected minimum version Version in use NSPR 4.9.5 4.9.5 NSS 3.14.3.0 Basic ECC 3.14.3.0 Basic ECC NSSSMIME 3.14.3.0 Basic ECC 3.14.3.0 Basic ECC NSSSSL 3.14.3.0 Basic ECC 3.14.3.0 Basic ECC NSSUTIL 3.14.3.0 3.14.3.0
philipp
  • Top 25 Contributor
  • Moderator
5320 solutions 23502 answers

ok, this all looks pretty normal - i suppose you've installed the IDM software intentionally on the pc (its extension is disabled anyway). does the same also happen with other browsers & can you access google by entering 173.194.39.46 into the address bar ?

ok, this all looks pretty normal - i suppose you've installed the IDM software intentionally on the pc (its extension is disabled anyway). does the same also happen with other browsers & can you access google by entering '''173.194.39.46''' into the address bar ?

Question owner

i can access google by 173.194.39.46 but i cannot access it by google.com even on IE

i can access google by 173.194.39.46 but i cannot access it by google.com even on IE

Question owner

And it shows this too if i used google.com and by the way i am scanning my computer with male ware bytes and it detected some male ware so i wait until it finishes

And it shows this too if i used google.com and by the way i am scanning my computer with male ware bytes and it detected some male ware so i wait until it finishes
philipp
  • Top 25 Contributor
  • Moderator
5320 solutions 23502 answers

Chosen Solution

then maybe some malicious software has overwritten your hosts-file or dns configuration. could you download the hijackthis tool from http://sourceforge.net/projects/hjt/, right-click the downloaded file & run it as administrator, perform a scan and post the log here on the forum again.

edit: you only'd have to do this in case malwarebytes or the other programs cannot fix the issue

then maybe some malicious software has overwritten your hosts-file or dns configuration. could you download the hijackthis tool from http://sourceforge.net/projects/hjt/, right-click the downloaded file & run it as administrator, perform a scan and post the log here on the forum again. ''edit: you only'd have to do this in case malwarebytes or the other programs cannot fix the issue''

Modified by philipp

Question owner

Thank you, you solved my problem.

Thank you, you solved my problem.
philipp
  • Top 25 Contributor
  • Moderator
5320 solutions 23502 answers

great, what did it?! - maybe it will help other users searching for a solution here too...

great, what did it?! - maybe it will help other users searching for a solution here too...
kobe 441 solutions 5048 answers

You can also try Spybot Search and Destroy, it could be a host hijack type malware. http://www.safer-networking.org/

You can also try Spybot Search and Destroy, it could be a host hijack type malware. http://www.safer-networking.org/

Question owner

ohh sorry it didn't here is a part of the log files that hijach got i see that the hosts are changed and hijack gave me a dialogue box saying i have many hijacked host files it say i may delete host files and replace.

O1 - Hosts: 198.167.139.193 google.com O1 - Hosts: 198.167.139.193 www.google.ae O1 - Hosts: 198.167.139.193 www.google.com.af O1 - Hosts: 198.167.139.193 www.google.com.ag O1 - Hosts: 198.167.139.193 www.google.off.ai O1 - Hosts: 198.167.139.193 www.google.am O1 - Hosts: 198.167.139.193 www.google.com.ar O1 - Hosts: 198.167.139.193 www.google.as O1 - Hosts: 198.167.139.193 www.google.at O1 - Hosts: 198.167.139.193 www.google.com.au O1 - Hosts: 198.167.139.193 www.google.az O1 - Hosts: 198.167.139.193 www.google.ba O1 - Hosts: 198.167.139.193 www.google.com.bd O1 - Hosts: 198.167.139.193 www.google.be O1 - Hosts: 198.167.139.193 www.google.bg O1 - Hosts: 198.167.139.193 www.google.com.bh O1 - Hosts: 198.167.139.193 www.google.bi O1 - Hosts: 198.167.139.193 www.google.com.bo O1 - Hosts: 198.167.139.193 www.google.com.br O1 - Hosts: 198.167.139.193 www.google.bs O1 - Hosts: 198.167.139.193 www.google.co.bw O1 - Hosts: 198.167.139.193 www.google.com.bz O1 - Hosts: 198.167.139.193 www.google.ca O1 - Hosts: 198.167.139.193 www.google.cd O1 - Hosts: 198.167.139.193 www.google.cg O1 - Hosts: 198.167.139.193 www.google.ch O1 - Hosts: 198.167.139.193 www.google.ci O1 - Hosts: 198.167.139.193 www.google.co.ck O1 - Hosts: 198.167.139.193 www.google.cl O1 - Hosts: 198.167.139.193 www.google.cn O1 - Hosts: 198.167.139.193 www.google.com.co O1 - Hosts: 198.167.139.193 www.google.co.cr O1 - Hosts: 198.167.139.193 www.google.com.cu O1 - Hosts: 198.167.139.193 www.google.cz O1 - Hosts: 198.167.139.193 www.google.de O1 - Hosts: 198.167.139.193 www.google.dj O1 - Hosts: 198.167.139.193 www.google.dk O1 - Hosts: 198.167.139.193 www.google.dm O1 - Hosts: 198.167.139.193 www.google.com.do O1 - Hosts: 198.167.139.193 www.google.com.ec O1 - Hosts: 198.167.139.193 www.google.ee O1 - Hosts: 198.167.139.193 www.google.com.eg O1 - Hosts: 198.167.139.193 www.google.es O1 - Hosts: 198.167.139.193 www.google.com.et O1 - Hosts: 198.167.139.193 www.google.fi O1 - Hosts: 198.167.139.193 www.google.com.fj O1 - Hosts: 198.167.139.193 www.google.fm O1 - Hosts: 198.167.139.193 www.google.fr O1 - Hosts: 198.167.139.193 www.google.ge O1 - Hosts: 198.167.139.193 www.google.gg O1 - Hosts: 198.167.139.193 www.google.com.gi O1 - Hosts: 198.167.139.193 www.google.gl O1 - Hosts: 198.167.139.193 www.google.gm O1 - Hosts: 198.167.139.193 www.google.gr O1 - Hosts: 198.167.139.193 www.google.com.gt O1 - Hosts: 198.167.139.193 www.google.gy O1 - Hosts: 198.167.139.193 www.google.com.hk O1 - Hosts: 198.167.139.193 www.google.hn O1 - Hosts: 198.167.139.193 www.google.hr O1 - Hosts: 198.167.139.193 www.google.ht O1 - Hosts: 198.167.139.193 www.google.hu O1 - Hosts: 198.167.139.193 www.google.co.id O1 - Hosts: 198.167.139.193 www.google.ie O1 - Hosts: 198.167.139.193 www.google.co.il O1 - Hosts: 198.167.139.193 www.google.co.im O1 - Hosts: 198.167.139.193 www.google.co.in O1 - Hosts: 198.167.139.193 www.google.is O1 - Hosts: 198.167.139.193 www.google.it O1 - Hosts: 198.167.139.193 www.google.co.je O1 - Hosts: 198.167.139.193 www.google.com.jm O1 - Hosts: 198.167.139.193 www.google.jo O1 - Hosts: 198.167.139.193 www.google.co.jp O1 - Hosts: 198.167.139.193 www.google.co.ke O1 - Hosts: 198.167.139.193 www.google.kg O1 - Hosts: 198.167.139.193 www.google.co.kr O1 - Hosts: 198.167.139.193 www.google.kz O1 - Hosts: 198.167.139.193 www.google.li O1 - Hosts: 198.167.139.193 www.google.lk O1 - Hosts: 198.167.139.193 www.google.co.ls O1 - Hosts: 198.167.139.193 www.google.lt O1 - Hosts: 198.167.139.193 www.google.lu O1 - Hosts: 198.167.139.193 www.google.lv O1 - Hosts: 198.167.139.193 www.google.com.ly O1 - Hosts: 198.167.139.193 www.google.co.ma O1 - Hosts: 198.167.139.193 www.google.md O1 - Hosts: 198.167.139.193 www.google.mn O1 - Hosts: 198.167.139.193 www.google.ms O1 - Hosts: 198.167.139.193 www.google.com.mt O1 - Hosts: 198.167.139.193 www.google.mu O1 - Hosts: 198.167.139.193 www.google.mw O1 - Hosts: 198.167.139.193 www.google.com.mx O1 - Hosts: 198.167.139.193 www.google.com.my O1 - Hosts: 198.167.139.193 www.google.com.na O1 - Hosts: 198.167.139.193 www.google.com.nf O1 - Hosts: 198.167.139.193 www.google.com.ng O1 - Hosts: 198.167.139.193 www.google.com.ni O1 - Hosts: 198.167.139.193 www.google.nl O1 - Hosts: 198.167.139.193 www.google.no O1 - Hosts: 198.167.139.193 www.google.com.np O1 - Hosts: 198.167.139.193 www.google.nr O1 - Hosts: 198.167.139.193 www.google.nu


P.S.: Still in the process of male-ware search by male ware bytes

ohh sorry it didn't here is a part of the log files that hijach got i see that the hosts are changed and hijack gave me a dialogue box saying i have many hijacked host files it say i may delete host files and replace. O1 - Hosts: 198.167.139.193 google.com O1 - Hosts: 198.167.139.193 www.google.ae O1 - Hosts: 198.167.139.193 www.google.com.af O1 - Hosts: 198.167.139.193 www.google.com.ag O1 - Hosts: 198.167.139.193 www.google.off.ai O1 - Hosts: 198.167.139.193 www.google.am O1 - Hosts: 198.167.139.193 www.google.com.ar O1 - Hosts: 198.167.139.193 www.google.as O1 - Hosts: 198.167.139.193 www.google.at O1 - Hosts: 198.167.139.193 www.google.com.au O1 - Hosts: 198.167.139.193 www.google.az O1 - Hosts: 198.167.139.193 www.google.ba O1 - Hosts: 198.167.139.193 www.google.com.bd O1 - Hosts: 198.167.139.193 www.google.be O1 - Hosts: 198.167.139.193 www.google.bg O1 - Hosts: 198.167.139.193 www.google.com.bh O1 - Hosts: 198.167.139.193 www.google.bi O1 - Hosts: 198.167.139.193 www.google.com.bo O1 - Hosts: 198.167.139.193 www.google.com.br O1 - Hosts: 198.167.139.193 www.google.bs O1 - Hosts: 198.167.139.193 www.google.co.bw O1 - Hosts: 198.167.139.193 www.google.com.bz O1 - Hosts: 198.167.139.193 www.google.ca O1 - Hosts: 198.167.139.193 www.google.cd O1 - Hosts: 198.167.139.193 www.google.cg O1 - Hosts: 198.167.139.193 www.google.ch O1 - Hosts: 198.167.139.193 www.google.ci O1 - Hosts: 198.167.139.193 www.google.co.ck O1 - Hosts: 198.167.139.193 www.google.cl O1 - Hosts: 198.167.139.193 www.google.cn O1 - Hosts: 198.167.139.193 www.google.com.co O1 - Hosts: 198.167.139.193 www.google.co.cr O1 - Hosts: 198.167.139.193 www.google.com.cu O1 - Hosts: 198.167.139.193 www.google.cz O1 - Hosts: 198.167.139.193 www.google.de O1 - Hosts: 198.167.139.193 www.google.dj O1 - Hosts: 198.167.139.193 www.google.dk O1 - Hosts: 198.167.139.193 www.google.dm O1 - Hosts: 198.167.139.193 www.google.com.do O1 - Hosts: 198.167.139.193 www.google.com.ec O1 - Hosts: 198.167.139.193 www.google.ee O1 - Hosts: 198.167.139.193 www.google.com.eg O1 - Hosts: 198.167.139.193 www.google.es O1 - Hosts: 198.167.139.193 www.google.com.et O1 - Hosts: 198.167.139.193 www.google.fi O1 - Hosts: 198.167.139.193 www.google.com.fj O1 - Hosts: 198.167.139.193 www.google.fm O1 - Hosts: 198.167.139.193 www.google.fr O1 - Hosts: 198.167.139.193 www.google.ge O1 - Hosts: 198.167.139.193 www.google.gg O1 - Hosts: 198.167.139.193 www.google.com.gi O1 - Hosts: 198.167.139.193 www.google.gl O1 - Hosts: 198.167.139.193 www.google.gm O1 - Hosts: 198.167.139.193 www.google.gr O1 - Hosts: 198.167.139.193 www.google.com.gt O1 - Hosts: 198.167.139.193 www.google.gy O1 - Hosts: 198.167.139.193 www.google.com.hk O1 - Hosts: 198.167.139.193 www.google.hn O1 - Hosts: 198.167.139.193 www.google.hr O1 - Hosts: 198.167.139.193 www.google.ht O1 - Hosts: 198.167.139.193 www.google.hu O1 - Hosts: 198.167.139.193 www.google.co.id O1 - Hosts: 198.167.139.193 www.google.ie O1 - Hosts: 198.167.139.193 www.google.co.il O1 - Hosts: 198.167.139.193 www.google.co.im O1 - Hosts: 198.167.139.193 www.google.co.in O1 - Hosts: 198.167.139.193 www.google.is O1 - Hosts: 198.167.139.193 www.google.it O1 - Hosts: 198.167.139.193 www.google.co.je O1 - Hosts: 198.167.139.193 www.google.com.jm O1 - Hosts: 198.167.139.193 www.google.jo O1 - Hosts: 198.167.139.193 www.google.co.jp O1 - Hosts: 198.167.139.193 www.google.co.ke O1 - Hosts: 198.167.139.193 www.google.kg O1 - Hosts: 198.167.139.193 www.google.co.kr O1 - Hosts: 198.167.139.193 www.google.kz O1 - Hosts: 198.167.139.193 www.google.li O1 - Hosts: 198.167.139.193 www.google.lk O1 - Hosts: 198.167.139.193 www.google.co.ls O1 - Hosts: 198.167.139.193 www.google.lt O1 - Hosts: 198.167.139.193 www.google.lu O1 - Hosts: 198.167.139.193 www.google.lv O1 - Hosts: 198.167.139.193 www.google.com.ly O1 - Hosts: 198.167.139.193 www.google.co.ma O1 - Hosts: 198.167.139.193 www.google.md O1 - Hosts: 198.167.139.193 www.google.mn O1 - Hosts: 198.167.139.193 www.google.ms O1 - Hosts: 198.167.139.193 www.google.com.mt O1 - Hosts: 198.167.139.193 www.google.mu O1 - Hosts: 198.167.139.193 www.google.mw O1 - Hosts: 198.167.139.193 www.google.com.mx O1 - Hosts: 198.167.139.193 www.google.com.my O1 - Hosts: 198.167.139.193 www.google.com.na O1 - Hosts: 198.167.139.193 www.google.com.nf O1 - Hosts: 198.167.139.193 www.google.com.ng O1 - Hosts: 198.167.139.193 www.google.com.ni O1 - Hosts: 198.167.139.193 www.google.nl O1 - Hosts: 198.167.139.193 www.google.no O1 - Hosts: 198.167.139.193 www.google.com.np O1 - Hosts: 198.167.139.193 www.google.nr O1 - Hosts: 198.167.139.193 www.google.nu P.S.: Still in the process of male-ware search by male ware bytes

Modified by Ziyad

Question owner

and i found how to reset hosts file to default for windows 8 http://answers.microsoft.com/en-us/windows/forum/windows_8-networking/how-can-i-reset-ms-host-files-in-windows-8/4057335b-6160-4073-aafb-4412db9db971

Modified by Ziyad

kobe 441 solutions 5048 answers

can you load google now?

can you load google now?

Question owner

i just used the ip 173.194.39.46 that philipp mentioned to me

i just used the ip 173.194.39.46 that philipp mentioned to me
kobe 441 solutions 5048 answers

and also keep checking cuz the malware may hijack it again on reboot http://www.safer-networking.org/

and also keep checking cuz the malware may hijack it again on reboot http://www.safer-networking.org/

Question owner

Okay i will thank u i see that the answer at last is resetting the hosts file and using a software to stop happening this again

Okay i will thank u i see that the answer at last is resetting the hosts file and using a software to stop happening this again